KESTER AKPATI
Katy,Tx
Summary
Detail-oriented IT Auditor with Over 8 years’ in internal Audit, SOX testing, cyber security risk management and compliance experience in Telecoms, Oil and Gas and Consulting. Driving execution of key areas of audit engagements that work cross-functionally with across business units. Reviewing of various aspects of Information Technology controls like policy and procedure, systems and processes, system development, technology risk, IT general controls, applications, networks, databases, security and regulatory compliance and effectively delivering results to all levels.
Worked in highly matrix organizations and in teams and able to relate well in multicultural and diverse environments.
Overview
11
11
years of professional experience
1
1
Certification
Work History
Technology Auditor
Kanshe InfoTech
03.2019 - Current
- Ensured scope, testing, and remediation activities are accurate by validating and updating SOX documentation as needed
- Conducted Service Organization Control (SOC 1 Type 2) reviews
- Reviewed test findings, facilitated the remediation of ITGC control gaps, and escalated possible critical issues to senior management within IT
- Worked with control owners and operators to ensure quality, consistency, and operability of new and existing controls
- Provided technical support in the assessment, design, and implementation of ITGC requirements
- Evaluated IT general controls and collaborated with auditors for compliance reviews
- Collaborated effectively with the audit team and business owners to communicate findings, draft reports, and facilitate corrective actions
- Support the review of IT tools, control designs, and control remediation planning efforts
- Performed walk throughs and assessed internal control environment through control testing
IT Auditor, Internal Audit and Risk Assessment
TYP Consulting
12.2015 - 02.2019
- Determined that established policies and procedures are adequate and being followed
- Worked closely with client process owners to assess controls and evaluate action plans for control deficiencies and to ensure deficiencies are satisfactorily remediated in a timely manner
- Recommended improvements to policies and procedures and assisted in the development of audit methodologies
- Performed interviews with client process and business owners at all levels and across the company to gather information, ascertain key risks, areas of concerns, and the expected internal control that should be in place
- Performed follow-up reviews to verify that necessary corrective actions have been implemented to correct previously identified internal control weaknesses
- Assessed risk, identified relevant controls, evaluated/validated controls and compliance with internal policies and procedures, and drafted audit reports
- Produced report that clearly documented the audit work performed, which met or exceeded the division standards while adhering to schedules and deadlines
- Performed and supervised IT General Controls (ITGC) and Application Controls (ITAC) audits over Applications and Databases, Enterprise Resource Planning applications for compliance
- Performed assessment of IT controls as part of financial statement audit, Operational audits, Attestation engagement, and Audit readiness
- Coordinated and consulted on data security compliance trends, best practice and recommendations for risk management & security design
Business Analyst
TYP Consulting
12.2013 - 11.2014
- Prepared project plan and execution strategy for the requirement gathering stage
- Elicited requirements using interviews, document analysis, requirements workshops, surveys, site visits, business process descriptions, use cases, scenarios, business analysis, task and workflow analysis
- Identifying the scope of process improvement and effective management
- Collaborated with developers and subject matter experts to establish the technical vision and analyze trade-offs between usability and performance needs
- Performed gap analysis between requirements and product features, identified custom requirements and defined solutions
- Prepared memo on key project takeaways
- Configured and maintained custom objects, record types, fields, page layouts etc
- Gained alignment and approval of requirements & acceptance criteria while managing user stories throughout the duration of their lifecycle
- Produced the required monthly reports
- Interacted with internal customers to understand business needs and translate into requirements and project scope.
Education
MBA -
Lagos State University
Lagos06.2002
Skills
- Technology Audit
- Risk & Compliance
- Third-Party Security Risk Assessment
- Internal Auditing
- SOX testing
- Team Management
- Control Testing and Review
- ServiceNow
- Salesforce
- MS Teams
- Jira
- Confluence
- Audit Tool (Audit Board)
- Archer(eGRC)
- Use of data mining tools (ACL & IDEA)
- COBIT 5
- ISO 27001/27002
- COSO
- GDPR
- NIST 800-30/37/53
- Audit documentation
- IT risk management
- Emerging technologies (Cloud, IaaS, PaaS, SaaS, Mobile)
Certification
- Certified Information Systems Auditor (CISA) Passer
- Certified CompTIA Security Plus (Security+)in Progress
- PMI-ACP Passer
- AWS Certified Cloud Practitioner (AWS-CCP) in Progress
Timeline
Technology Auditor
Kanshe InfoTech
03.2019 - Current
IT Auditor, Internal Audit and Risk Assessment
TYP Consulting
12.2015 - 02.2019
Business Analyst
TYP Consulting
12.2013 - 11.2014
- Certified Information Systems Auditor (CISA) Passer
- Certified CompTIA Security Plus (Security+)in Progress
- PMI-ACP Passer
- AWS Certified Cloud Practitioner (AWS-CCP) in Progress
MBA -
Lagos State University
Similar Profiles
Samuel AyilolaSamuel Ayilola
Business Analyst/Scrum Master at Kanshe InfotechBusiness Analyst/Scrum Master at Kanshe Infotech
TUNDE OLADUGBAGBETUNDE OLADUGBAGBE
Audit Manager at Kanshe InfotechAudit Manager at Kanshe Infotech
Olu EgwaikhideOlu Egwaikhide
Scrum Master at Employer: Kanshe Infotech. Client: HCA HospitalsScrum Master at Employer: Kanshe Infotech. Client: HCA Hospitals