Perform audit procedures, including collecting, reviewing and analyzing relevant information, documenting business processes, and completing audit documentation
- Led a team of 5 auditors, overseeing all the aspects of IT audit lifecycle
- Devised and implemented an automated system for tracking audit findings, improving productivity by 90/%
- Conduct IT infrastructure control testing, including applications, databases, servers, and operating systems, to assess control design and identify gaps
- Execute detailed testing of IT General Controls and IT Application Controls, ensuring compliance with COSO framework and regulatory standards
- Collaborated cross-functionally with IT, security, and compliance teams to implement audit recommendations
- Translated complex technical issues into business terms for non-technical stakeholders
- Facilitate 80% of Kick-off meetings between external auditors, internal audit department and stakeholders
- Conduct application, process, and system walk-throughs with application owners to identify the end-to-end process of a transaction, identify control gaps and assess if controls are designed appropriately
- Perform detailed testing of IT General controls (ITGC) and IT Application controls (ITAC) to determine if the internal controls are operating effectively
- Test internal controls relating to Access Management, Change Management, and Backup & Recovery
- Perform detail testing on security controls related to vulnerability management, incident management, business continuity, and network infrastructure
- Test both commercial-off-the-shelf (COTS) applications & in-house applications
- Identify deficiencies in the design and operating effectiveness of internal controls
- Support in the testing of business controls related to operations and enterprise projects
- Collaborate with external auditors by testing reliance controls and liaising with system or process owners
- Conduct IT risk assessments of newly scoped in applications and control deficiencies
- Facilitate coordination among external auditors, internal audit teams, and stakeholders during the kick-off and throughout the IT audit process
- Presented audit findings and recommendations to senior management and the Board of Directors
- Conducts follow-up to monitor disposition of audit results communicated to management