Summary
Overview
Work History
Education
Skills
Timeline
Generic

Lucky Chukwuma

Humble,TX

Summary

Accomplished IT Auditor with wide knowledge of different areas of IT Audit. Have extensive experience in Technology Infrastructure, Cyber Security Audits, SOX Compliance audit, SOC 2 Type 2, SOC 1 Type 2, PCI DSS Audits, HIPAA Audits, using COSO, COBIT, NIST 800-53, FFIEC and other related frameworks. Overall experience spans across IT auditing, Risk assessments and Information security. Have extensive experience in successfully performing IT Audit Control testing to support integrated audits. Key areas of focus include testing applications, IT infrastructure, and databases and cyber security compliance across different domains.

Overview

5
5
years of professional experience

Work History

IT Auditor

Premiere Renal Physicians
Houston, TX
03.2018 - Current
  • Key Accomplishments
  • Have been successful in helping management identify gaps between policies and processes and making recommendations to remediate control weaknesses. Maintained enterprise-wide security program which ensured that organization’s assets are protected under appropriate security controls, processes, and procedures.
  • Also collaborated with physical security, risk management, business continuity, and secure operations center (SOC) teams during periods of joint operations such as incident response, disaster recovery and business continuity activities. Furthermore, was subject matter expert for SOC 2 audits and performed enterprise-wide gap analysis for all 5 trust services criteria while performing audit readiness.
  • PROFESSIONAL EXPERIENCE
  • Premiere Renal Physicians, Houston Texas
  • IT Auditor March 2018-Present
  • • Perform audit engagements covering IT general controls (e.g., access controls, change management and system operations)
  • • Test effectiveness of application-level controls (e.g., Input validation, output completeness and accuracy and processing accuracy)
  • • Evaluate IT Security controls.
  • • Identify and communicate potential issues or risks to management.
  • • Implement knowledge of common IT Framework and Standards (COBIT and NIST)
  • • Liaise with external auditors as part of IT Compliance Controls to ensure information systems risks are sufficiently identified and evaluated.
  • • Assist in execution of annual internal audit plan as directed and prepare reports to communicate audit results to management and make recommendations as appropriate
  • Assisted IT Audit Security Manager in executing framework for compliance with PCI-DSS, NIST 800-53, HIPAA etc. and in executing comprehensive, risk-based internal audit plan for company's IT security compliance requirements.
  • United Bank Africa Plc Lagos
  • IT Auditor Feb. 2013 – Feb. 2014
  • Facilitated planning, process understanding meetings and control validation meetings with line of business on several engagements like SOX Audit., Security Incident and Management, Change Management, Disaster Recovery, User Access Audit and SOC Audit.
  • Performed role-based Access review for Users on several Applications while ensuring that Least Privilege Principle is followed during User Access Approval.
  • • Reviewed systems for adequate management controls, efficiency, and compliance with policies and regulations. Made recommendations when necessary.
  • • Performed audit readiness to identify and correct internal control weakness to comply for annual SOX Compliance audit.
  • • Raised issues of control weaknesses with management and proposed recommendations and reach agreement in timely manner as to remediation actions.
  • • Responsible for planning and managing Global ITGC SOX audit, reviewing audit work papers, and providing testing directions to team.
  • • Performed continuous monitoring on PCIDSS Assessment in preparation for annual audit, while evaluating and summarizing IT control deficiencies to provide senior management with regular updates on IT control environment.
  • • Managed IT audit projects from planning to reporting phase, summarizing audit results and recommendations.
  • LGSC Delta State, Nigeria
  • Revenue Auditor Jan 2010– Dec 2013
  • Revenue auditor with 4 years experience identifying and correcting discrepancies, reviewing financial statements, and providing recommendations to improve revenue and cash flow. Key achievement; attended several national seminars for auditors on discussion of best practices for critical audit issues across country
  • Completed audits of businesses. reconciling taxpayers books/records, bank accounts, and remittance to determine tax liability
  • Established scope of examinations and formulate audit plans
  • Conducted research and analysis for new cases with potential for additional revenues and future audits
  • Audit all revenue and revenue related source documentation in accordance with government and IGR policy, investigate discrepancies and suspicious
  • Task were to audit vendors invoices, debit notes, credit notes, and trade contracts to ensure contractual obligations were fully complied
  • Inconsistencies were reported and highlighted to management for recovery from respective vendor companies
  • Ensured accuracy of data and promote operational efficiency

Education

Bachelor of Science - Business Marketing

University of Nigeria
Nsukka, Nigeria
03.1998

High School Diploma -

Omumu Grammar School
Agbor
06.1988

Skills

  • Policy & Procedure Enhancement
  • Program Implementation
  • Relationship Management
  • Enterprise collaboration
  • Attention to detail

Timeline

IT Auditor

Premiere Renal Physicians
03.2018 - Current

Bachelor of Science - Business Marketing

University of Nigeria

High School Diploma -

Omumu Grammar School

Similar Profiles

CREATE PROFILE
Lucky Chukwuma