Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Jessica Wilson

Dallas

Summary

Experienced with regulatory compliance, risk management internal controls design, project management and Sarbanes-Oxley compliance in IT environments. Utilizes deep knowledge of industry standards to develop and implement effective compliance strategies. Track record of fostering culture of compliance through training and audit processes, ensuring minimal risk and maximum efficiency.

Overview

11
11
years of professional experience
1
1
Certification

Work History

Sr. IT Compliance Analyst

Toyota
06.2023 - Current
  • Company Overview: Toyota Financial Services
  • Planned and executed IT Compliance audits to assess the effectiveness of controls
  • Assisted with internal controls, walkthroughs and obtaining evidence requested from internal and external audit
  • Provided recommendations and corrective actions to address identified issues
  • In 2023, remediated a Significant Deficiency related to User Access Reviews
  • We accomplished this remediation by completing weekly access reviews and comparisons to ensure the user listings pulled from SailPoint were aligned with the application user listing
  • Collaborated with multiple groups and teams internally to develop an annual control testing schedule
  • Trained Business and Control Owners on IT audits, Control Monitoring and Exception and Remediation management
  • Lead and trained a team of Junior Compliance Analyst
  • Developed Standard Operating Procedures
  • Toyota Financial Services
  • Strengthened audit readiness by maintaining accurate documentation of all IT compliance activities and findings.
  • Reduced instances of non-compliance through proactive monitoring and timely corrective action plans.
  • Improved IT compliance by conducting regular audits and monitoring system performance.
  • Streamlined internal processes by implementing effective IT controls, policies, and procedures.
  • Promoted clear communication among stakeholders through detailed reporting on compliance status and issues resolution progress.
  • Supported and trained customers on compliance-related issues.

Sr. IT Compliance Analyst

Bright Horizons
03.2022 - 06.2023
  • Company Overview: Remote
  • Developed and executed internal IT compliance testing program for application assessments, internal IT controls and remediation testing of issues identified during audits
  • Evaluated and analyzed issues for improvements in processes and communicated results to management and key stakeholders
  • Proactively identified technology risks and developed recommendations for improvements to mitigate risks
  • Participated in annual risk assessment activities
  • Partnered with internal and external business partners to evaluate the effectiveness of IT controls and implemented corrective action plans
  • Managed SOX and SOC audit request from vendors, internal and external auditors and security teams
  • Trained systems owners and IT professionals on IT controls and tools
  • Conducted ITGC walkthroughs and testing the operational effectiveness business processes
  • Created Process flow charts and Standard Operation of Procedures on new applications and processes
  • Tested over 30 Quarterly Access Reviews for applications and tools
  • Remote

Sr. IT Compliance Analyst

Nainov Inc.
09.2019 - 03.2022
  • Company Overview: Insurance Industry Client
  • Tracked internal control gaps and provided remediation steps
  • Tested and documented IT SOX controls on a project basis
  • Developed detailed audit reports, charts, exhibits, etc
  • And reported overall conclusions and recommendations to local and corporate senior management
  • Developed and conducted compliance training for staff
  • Served as the liaison between the external auditors and internal departments for various lines of businesses
  • Conducted oral presentations of findings and prepared the drafts of audit reports
  • Assisted with monthly, quarterly, and annual financial reporting
  • Advised on the requirements, liabilities, and penalties of compliance and noncompliance, and recommend improved accounting or management operation systems controls
  • Application Controls and Systems audit – Input, Processing and Output Controls
  • Assessed ITGC as part of internal and operational audits
  • Assessed segregation of duties over applications security and implemented audit strategies
  • Assisted in conducting ITGC walkthroughs and testing the operational effectiveness business processes
  • Communicate with the company's external auditors on general computer control related matters and SOX test procedures
  • Conduct risk-based audits including all aspects of the audit lifecycle, including risk assessment, planning, coordination, fieldwork, data analysis, workpaper documentation, reporting, and remediation validation, with direction by manager
  • Conduct testing of Sarbanes-Oxley (SOX) and Service Organization Control (SOC) SSAE 18 Review, using COBIT framework
  • Conducted operational, financial, and Enterprise risk assessments, developing audit plans, and conducting audits
  • Insurance Industry Client

Nainov Inc.
05.2015 - 08.2019
  • Company Overview: Financial Industry Client
  • Conduct Sarbanes – Oxley (SOX) compliance test on controls over applications that will impact financial statements
  • Implement process improvements to SOX testing, resulting in efficiency in review time and desirable financial reporting
  • Knowledgeable in ERP (SAP) business processes and testing of relevant controls
  • Perform all stages of Audit including, planning preparing the Audit program, fieldwork executing, reporting and follow up
  • Manage Project status, facilitate audit status meetings to communicate findings, issues, and areas for improvement to client management, executive leadership, and corporate internal audit leadership
  • Create final audit reports and oversee implementation of creative action plans while maintaining communication with all levels of management
  • Perform walkthroughs and document process flows and process narratives
  • Planned, executed, directed, and completed all aspects of the life cycle for internal controls including the planning, design, performance of testing, and reporting
  • Prepare audit scope, reported findings, and presented recommendations for improving data integrity and internal controls
  • Performed application controls testing on input, process, and output controls
  • Assessed Corporate Governance and IT Controls related to critical applications used for processing financial reports to ensure compliance with SOX
  • Financial Industry Client

IT Auditor

Swanston Consulting
01.2014 - 04.2015
  • Company Overview: Dallas TX
  • Conducts IT risk assessment and documents the controls
  • Develop test plans, testing procedures, documents testing results and exceptions
  • Conducts walk through, formulate test plans, document gaps, test results and exceptions
  • Perform assessment of IT internal controls as part of internal and operational audits
  • Document controls weakness and related testing exceptions
  • Identify and communicate audit findings to senior management and client
  • Review of IT general controls (ITGC) on various applications such as SAP, databases, and operating systems such as Windows OS, Unix/Linux OS
  • Conduct Sarbanes – Oxley (SOX) compliance test on controls over applications that will impact financial statements
  • Implement process improvements to SOX testing, resulting in efficiency in review time and desirable financial reporting
  • Knowledgeable in ERP (SAP) business processes and testing of relevant controls
  • Perform all stages of Audit including, planning preparing the Audit program, fieldwork executing, reporting and follow up
  • Manage Project status, facilitate audit status meetings to communicate findings, issues, and areas for improvement to client management, executive leadership, and corporate internal audit leadership
  • Create final audit reports and oversee implementation of creative action plans while maintaining communication with all levels of management
  • Created risk-based audit programs related to IT processes and technologies and developed testing methodologies to evaluate the adequacy of controls
  • Reviewed work papers during audit engagements to ensure that appropriate audit procedures have been performed and have been documented properly with sufficient supporting evidence
  • Led and mentored audit staff assigned and managed work effectively to meet deliverable requirements
  • Worked with control owners on various audit engagements in different sectors to include, Energy, Financial Services, Insurance, Manufacturing, Healthcare, Industrial and Technology to understand and document control processes, identify areas of process improvement, and complete remediation of identified gaps
  • Dallas TX

Education

Master of Business Administration -

Texas Women’s University

Bachelor of Business Administration - Human Resource Management

Texas Women’s University

Skills

  • SOX ITGC
  • NYDFS
  • SSAE18 Reviews
  • GDPR
  • COBIT
  • SDLC Audits
  • Risk Assessments / Impact Analysis
  • GRC
  • Access control

Certification

Certified Information Systems Auditor (CISA), 01/01/23

Timeline

Sr. IT Compliance Analyst

Toyota
06.2023 - Current

Sr. IT Compliance Analyst

Bright Horizons
03.2022 - 06.2023

Sr. IT Compliance Analyst

Nainov Inc.
09.2019 - 03.2022

Nainov Inc.
05.2015 - 08.2019

IT Auditor

Swanston Consulting
01.2014 - 04.2015

Bachelor of Business Administration - Human Resource Management

Texas Women’s University

Master of Business Administration -

Texas Women’s University

Similar Profiles

CREATE PROFILE
Jessica Wilson