FATOUMATA SAKHO
Richmond,TX
Summary
Experienced IT SOX and Risk Auditor with 6+ years, with a prolific record of performing IT internal audits and compliance management in organization s IT Systems. Specialized in ITGC, ITAC, SOC I, SOC II reviews and IT Infrastructure control testing , while adapting to evolving control environments. Expert understanding of IT related control frameworks, such as NIST, COBIT, or COSO s Internal Control framework. SOX Section. Skilled in Business Processes, Risk Management, test of design and operating effectiveness of IT controls, reporting, and remediation testing..
Overview
5
5
years of professional experience
1
1
Certification
Work History
Information Technology Auditor
Ernst and Young
10.2021 - Current
- Conducted comprehensive IT audits, including planning, system walkthrough, and risk identification, under senior management guidance
- Developed audit programs and executed IT general controls (ITGC), infrastructure reviews, and IT governance audits
- Executed the SOX program including the performance of walkthroughs, rationalization of controls, and IT general controls testing
- Reviewed the adequacy of critical controls such as Access Control (both Physical and Logical), Change Management Control, IT Operations, Audit log events, Data Integrity and Security, Segregation of duties
- Conducted IT audit testing in areas such as identity and access management, change management, vulnerability and patch management, and cyber security
- Collaborated with cross-functional teams to evaluate internal controls and recommend improvements for increased operational efficiency and security
- Prepared detailed reports and presented findings to management, leading to the implementation of strategic improvements
- Evaluated the overall control environment and internal controls over financial reporting, including defining new and assessing existing controls in a public company, developing, and performing various audit and control test procedures, and reporting results to management
Staff IT Auditor
Tenet Health
06.2019 - 10.2021
- Conducted audit planning, fieldwork, and engagement wrap-up, including the development and refinement of work programs
- Assisted in drafting audit reports, summarizing key findings and recommendations, and consolidating metrics and graphing
- Developed and communicated audit observations, recommendations, process improvement opportunities, and best practices, obtaining management responses
- Pioneered a change management audit program that became critical in navigating healthcare system updates, ensuring compliance and continuity of care
- Forged strong relationships with key healthcare stakeholders, advising on technological and regulatory risk factors affecting Tenet Healthcare's operations
- Performed detailed IT audit testing using industry-standard tools such as ACL, IDEA, and TeamMate to analyze data and identify control weaknesses
- Utilized GRC (Governance, Risk, and Compliance) software to track audit issues, manage risks, and ensure continuous compliance
- Collaborated with IT and business teams to audit network security controls, utilizing systems such as Splunk and SolarWinds for log analysis and monitoring
- Engaged in continuous professional development to stay current with emerging technologies, audit methodologies, and regulatory changes, ensuring the application of best practices in all audit activities
Education
Master's - Public Health
New York University
New York, NYBachelor's - Psychology
State University of New York at New Paltz
New Paltz, NYSkills
- Auditboard
- Vulnerability Assessment
- IT Governance
- Audit Planning
- Access Control
- Microsoft Office (Vlookups, Data Analytics, Pivot tables)
- Teammate
- Risk Management
- Self-Starter
- Problem-Solver
- COBIT
- HITRUST
Certification
- CISA - Certified Information Systems Auditor
- PSM I
Timeline
Information Technology Auditor
Ernst and Young
10.2021 - Current
Staff IT Auditor
Tenet Health
06.2019 - 10.2021
Master's - Public Health
New York University
Bachelor's - Psychology
State University of New York at New Paltz
Similar Profiles
Sandhya CSandhya C
Assistant Manager – People Advisory Services at Ernst and YoungAssistant Manager – People Advisory Services at Ernst and Young
Ammar AlqatawiAmmar Alqatawi
Audit Staff at Ernst and YoungAudit Staff at Ernst and Young
Tom JosephTom Joseph
Advanced Analyst at Ernst and Young Global Delivery ServicesAdvanced Analyst at Ernst and Young Global Delivery Services
Lamyaa AltuwairqiLamyaa Altuwairqi
Consultant at Ernst and YoungConsultant at Ernst and Young
Lindsey CaudilloLindsey Caudillo
MA-NCT at Next Level Urgent CareMA-NCT at Next Level Urgent Care