Summary
Overview
Work History
Education
Skills
Certification
Section name
Timeline
Generic

MARTINS OMIDIJI

Arlington,TX

Summary

Result Driven Information Technology professional with specialties in Internal IT Auditing, Information Security Compliance, Risk Management, Fraud Prevention, and with proven experience in reducing operational risks by identifying vulnerabilities within information technology business realms. Professional work experience includes clients in financial services, health services, energy, manufacturing, technology, and IT service provider industries.

Overview

12
12
years of professional experience
1
1
Certification

Work History

Sr. IT Auditor

Ribbon Communications
06.2022 - Current
  • Performed risk assessment; audit planning, developing scope, schedule audit and reporting of findings noted during assessment.
  • Perform walkthroughs for all in scope systems to identify gaps, work with system owners to propose remediation action plan.
  • Serve as POC to external IT auditors to provide the required resources and support necessary for SOX testing.
  • Responsible for reporting on 362 IT general controls for over 27 applications.
  • Perform Access security control – password settings, termination controls, new access provisioning, administrator controls and user access reviews.
  • Perform change management control, emergency changes control, new system implementation changes control and quarterly SOD review control testing.
  • Perform IT operation testing- Scheduled job testing, network control testing and data backup testing.
  • Identify deficiencies, recommendation and get the buy-ins of system owners.
  • Provide input slides required for presentation of IT audit findings to the audit committee.
  • Follow up on remediation actions plans
  • Review of the work papers of associate and report to Sr. Audit manager
  • Perform peer reviews of Security Assessment Reports.
  • Perform ITAC – IT application control testing to review control designs and test of operatinf effectiveness.

Sr. Compliance Analyst

Flexon Technologies
07.2019 - 06.2022
  • Conduct IT Compliance auditing for SOX, PCI, SSAE18, ITGCs projects, and IT Infrastructures.
  • Coordinated quarterly penetration testing with various vendors to harden servers with stakeholders.
  • Analyzed incident response, foreign threats, firewall attempts, DoS attack
  • Responsible for identifying and escalating vulnerability assessment and Penetration testing results.
  • Perform peer reviews of Security Assessment Reports.
  • Performed risk assessment; audit planning, developing scope, schedule audit and reporting of findings noted during assessment.
  • Perform risk assessment of new system on-boarding both pre-implementation, post-implementation and control design.
  • Presents identified risks to the Risk & Compliance team.
  • Perform third party risk lifecycle assessment: onboarding, classification. contracting, monitoring, reporting and disengaging.
  • Support review of IT tools, control designs, and control remediation planning efforts.
  • Reviewed entity's access control policy (software and physical) to determine its adequacy and effectiveness.
  • Documented application security controls (Review and analyze audit evidence) processes and procedures.
  • Performed test for data migration: unit test, interface test, system test, UAT, hyper care, 'go live' and sign offs.
  • Worked with audit teams for planning and scope assessments for SOX testing.

IT Auditor

Kimberly - Clark
04.2016 - 06.2019
  • Participate in audit scheduling, audit planning, write audit papers and report with minimal supervision by audit manager
  • Perform test for Segregation of Duties (SoD) and access control in System components in compliance with SOX.
  • Tested Application Controls, including both Logical and Physical Access controls to ensure effectiveness of functionality, good reporting and interfaces.
  • Review change management procedure in logical IT environment and validate appropriateness of changes.
  • Review Network security arrangement and ensure compliance to CIA standard.
  • Provided advisory support to Implementation and assessment of security and business process controls.
  • Review adequacy and effectiveness of independent Auditors Attestation report (SSAE 18) in satisfying client control requirement on it
  • Perform Audit Log reviews to test controls around user activity and/or login/logout attempts.
  • Prepare a summary of findings and exceptions and reference all relevant documents.
  • Review change management documentation, policies, SOX controls and implement necessary changes to review processes.
  • Communicate weekly with IT on status of outstanding audit recommendations, both internal and external; and facilitate timely remediation.
  • Communicate effectively with all levels of management to ensure full understanding of IT objectives, risks and controls.
  • Review and test users' access control – physical access relating to server room or data center, and logical access control relating various applications, operating systems, database, networks and Active Directory.
  • Determine root cause of identified issue during assessment of ITGCs to evaluate risks impact.

IT Compliance Analyst

Insight Resourcing
02.2014 - 03.2016
  • Perform IT Compliance auditing for SOX, SSAE18, ITGCs projects, and IT Infrastructures.
  • Analyzed incident response, foreign threats, firewall attempts, DoS attack
  • Responsible for identifying and escalating vulnerability assessment and Penetration testing results.
  • Presented identified risks to the Risk & Compliance team.
  • Reviewed and recommended industry best practice in areas of user access and password security.
  • Performed tests to validate Integrity and effectiveness of IT controls that are in place.
  • Evaluated and reviewed business continuity planning of organization to determine adequacy and effectiveness.
  • Reviewed adequacy and effectiveness of independent Auditors Attestation report (SSAE 18) in satisfying client control requirement at client engagements.
  • Reviewed adequacies of key systems and application controls – Access control, Data Integrity, Segregation of duties, disaster recovery, and change management among others.
  • Reviewed systems and application strength and weakness as well as recommend appropriate compensatory controls to mitigate against any potential risk.

Education

Bachelor of Science - International Business Management

Cardiff Metropolitan University
Cardiff, UK

Bachelor of Science - Accounting and Finance

The Ibadan Polytechnic
Nigeria

Skills

  • ITGC Compliance
  • SOX 404
  • PCI-DSS Compliance
  • Third party Risk Management
  • Incident Management
  • Change Management
  • PCP & Disaster Recovery
  • HIPAA Compliance
  • ITIL
  • NIST 800-53
  • ISO 27001 Compliance

Certification

  • CISA (Active)
  • CISM (Active)
  • CASP (Not active)

Section name

Tools used include Teammate Plus, RSA Archer, Microsoft excel/Words/Power Point, AI.

Timeline

Sr. IT Auditor

Ribbon Communications
06.2022 - Current

Sr. Compliance Analyst

Flexon Technologies
07.2019 - 06.2022

IT Auditor

Kimberly - Clark
04.2016 - 06.2019

IT Compliance Analyst

Insight Resourcing
02.2014 - 03.2016

Bachelor of Science - Accounting and Finance

The Ibadan Polytechnic

Bachelor of Science - International Business Management

Cardiff Metropolitan University