SADEEQ ODUPEYIN
Hyattsville,MD
Summary
A Skilled IT auditor with experience in compliance tasks and monitoring changes to SOX controls such as custom reports, business processes and integrations to assess, document and reinforce compliance with SOX change controls. Proficient in performing system administration for Governance, Risk and Compliance (GRC) tool and providing support to audit and compliance oriented business partners for IT related requests. Implementing best practices for internal control over financial reporting (ICFR), Strong understanding of risks and controls audit concepts with years of experience in performing Audit for Commercial Clients using the applicable frameworks; ISO 27001; ISO 27002; NIST 800-53. In-depth knowledge of Sarbanes-Oxley Act (SOX), HIPAA, ISO, COSO, Risk Assessment, IT General Controls (ITGC).
Overview
6
6
years of professional experience
1
1
Certification
Work History
IT Sox Compliance Analyst
PEMS LLC
09.2021 - Current
- Performs design and operating effectiveness testing for Sarbanes Oxley (SOX) ITGC independently
- Conduct comprehensive IT audits to evaluate the effectiveness of internal controls and ensure compliance with ICFR requirements
- Conduct risk assessments to identify control weaknesses and develop remediation plans
- Coordinate with internal audit teams and external auditors to facilitate SOX compliance audits
- Executed IT audit engagements, including ICFR assessments, to evaluate the integrity and security of financial reporting systems
- Provide support to IT SOX Audits and related activities such as planning and conducting periodic User Access Reviews, business and IT process walkthroughs, evidence management, verification of C&A of evidence, audit issues management, manage remediation of deficiencies, identify area of improvements etc
- Collaborate with IT, Business, and Financial Control teams to identify and manage lifecycle of IT General Controls, key IT Automated Controls, Key IPEs and all IT Compliance related activities to ensure they are well established, documented, and followed
- Identify control weaknesses and vulnerabilities within IT systems, providing actionable recommendations to enhance ICFR compliance
- This includes creating and administering training and awareness programs for control owners and end users
- Collaborate with Financial Controls team and Business to identify business process controls that should be automated, identify appropriate interface controls to ensure accuracy and completeness of transactional data, and ensure that design of ITACs, IPEs and ITGCs meet WDC standards and guidelines
- Actively participated in the annual IT risk assessment process, providing valuable input and insights to identify and prioritize IT risks
- Participate in the opening, status, exit and closing meetings
- Understanding, adequate usage of VLOOKUP comparing spreadsheets of listed users, journal entries and giving close attention to details
- Attend in person training/virtual training and team meetings as required
- Analyze informations, give conclusions based on professional perspective
- Led, planned, implemented, and delivered audit testing and relevant documentation in support of IT audit assignments, ensuring optimal results
- Successfully executed audit tactics and employed effective communication skills to build strong client relationships
- Support various projects and provide compliance oversight to ensure that ITACs, IPEs and IT General Controls are imbibed into IT solutions development that ultimately culminates into a SOX-compliant solution
- Performed Segregation of Duty (SOD) and privilege access monitoring of user groups, giving permission to users based on their roles
- Managing all phases of audit independently (Objective, Scope, planning, kick off meeting, walkthrough, fieldwork, reporting, follow-up, exit meeting and Re performance)
- Reviewed processes to identify areas for improvement in control design and effectiveness, seeking guidance from mentors like Senior Internal Auditor & Compliance
- Worked closely with departmental management to evaluate the effectiveness of end-to-end processes, conducting detailed testing of financial, operational, compliance, and IT internal control activities
- Support and manage detailed testing of controls to ensure risks are appropriately identified, associated audit procedures are applied, related controls are designed and operating effectively, and mitigate the identified risks
- Made recommendations for improvement based on audit findings, ensuring clients' operations were optimized and compliant with regulations
- Assists in annual planning and maintenance of the IT risk control matrix for relevant IT systems and controls
- Review and help refine controls and compliance processes and identify opportunities to ensure proactive management and mitigation of Risks
- Establish, track and provide updates on IT SOX related initiatives to Management
- Collaborate with internal and external auditors to ensure IT SOX and compliance requirements are being met
- Collaborate with IT control owners to ensure timely completion of quarterly, half-yearly and periodical controls and compliance
- Facilitate control walk through activities and help develop test procedures to test IT controls with control owners
- Assist Information Security and Compliance team in documenting and reporting control deficiencies upon discussion with business owners, Internal Auditors/External Auditors
- Conducted audit projects in adherence to established methodologies and within allocated timeframes, ensuring the completion of all assigned tasks
- Performed audit procedures including interviews, issue identification and definition, criteria development, evidence review, and process documentation, with minimal supervision
- Examine IT controls, performing Test of Design and Test of effectiveness
- Conduct thorough audits of financial processes, transactions and data within Acumatica ERP systems to identify findings
- Develop and implement audit procedures, checklists, and testing methodologies for Acumatica ERP
- Identified support issues and initiated actions for resolution
- Developed presentations with meaningful visuals to communicate complex findings to senior management teams
- Tracked and managed status of requirements throughout project lifecycle
IT Auditor
Mary T inc.
Bowie, MD
11.2018 - 08.2021
- Identifies, analyzes, monitors and minimizes most complex areas of control testing, control and risk education, and operational and risk support activities to the business and manages projects to adjust controls required to meet regulatory and corporate expectations
- Performing audit and compliance services including: SSAE-18 (SOC 1/SOC 2) examinations, ITGC testing (Access control, change management control, IT operations, Application controls), and CMS
- Leads the control and risk management testing and reporting including Error / Near Miss analyses
- Operating with a high degree of independence, conducts analyses and leads projects to improve internal controls that keep up with regulations and corporate standards
- Ensures that existing control and business recovery practices and procedures are documented
- Perform detail testing, writing of report and speaking with business owner
- Engaged in other duties and special projects based on business needs and personal growth ambitions
- Perform IT general controls and application controls reviews and monitor segregation of duties and other key management controls
- Auditing and reviewing logs, user access of controls
- Monitoring and performed in change management process in hand with the Change Advisory Board
- Monitoring and remediating risks from Audit findings/risks logs
- Examine IT controls, performing Test of Design and Test of effectiveness of controls
- Collaborated with vital team members, management, and colleagues to diagnose IT risks and identify process improvement opportunities
- Tracked and followed up on the completion of corrective action plans based on specified due dates
- Testing security networks using NMAP, PING
- Monitoring security firewalls on network using office 365 security and End point security
- Performed Risk management and compliance testing, using NIST 800-53 and HIPAA frameworks
- Assisted in achieving ISO 27001 certification for organization
Education
Bachelor of Science - Cybersecurity
UNIVERSITY OF MARYLAND GLOBAL CAMPUS
MarylandSkills
- Documentation
- In-depth accounting and controls knowledge
- Policy development
- SOX compliance
- Reporting and analysis
- MS Office proficient
- Department coordination
- Internal Control Over Financial Reporting (ICFR)
- Time management
- Strategic planning
- Analytical solving
- Problem solving
- Understanding risk management
- Multi-tasking
- Detail oriented
- Written/oral communication strength
- Collaborative worker
- Regulatory Compliance
- Report Preparation
- Documentation and Reporting
- Information Gathering
Certification
- CISA
- Certified Scrum Master (CSM)
- CompTIA Security +
References
References available upon request.
Timeline
IT Sox Compliance Analyst
PEMS LLC
09.2021 - Current
IT Auditor
Mary T inc.
11.2018 - 08.2021
Bachelor of Science - Cybersecurity
UNIVERSITY OF MARYLAND GLOBAL CAMPUS
Similar Profiles
Arpit SinghArpit Singh
Civil Supervisor at PEMS Engineering ConsultantsCivil Supervisor at PEMS Engineering Consultants
Nofel ShaikhNofel Shaikh
Talent Accquisition Executive at PEMS Engineering ConsultantsTalent Accquisition Executive at PEMS Engineering Consultants
Kevin PenteltonKevin Pentelton
Delivery Driver/Dispatch Supervisor at Upstate Fulfillment LLC./UB Logistics LLC.Delivery Driver/Dispatch Supervisor at Upstate Fulfillment LLC./UB Logistics LLC.
Danaya MercerDanaya Mercer
Shift Manager at KFCShift Manager at KFC
Robert WhiteRobert White
Food and Beverage Manager at Bethesda Blues & Jazz Supper ClubFood and Beverage Manager at Bethesda Blues & Jazz Supper Club