
Results-driven IT, Audit, and Risk professional with 5 years of specialized experience in SOX IT General Controls (ITGC), IT risk assessments, control testing, and audit readiness across consulting and regulated industries, with a proven ability to collaborate effectively with IT, product, and business teams to identify and close control gaps, remediate deficiencies, and ensure compliance for both internal and external audits. Proficient in access management, change management, and IT operations controls, demonstrating expertise in navigating complex multi-system environments within financial services, technology, and other regulated sectors. Committed to enhancing organizational resilience through strategic risk management and robust control frameworks.
• Tested IT General Controls across applications, databases, and infrastructure environments to evaluate design adequacy and operating effectiveness.
• Conducted IT risk assessments across access management, change management, and IT operations processes and identified multiple control deficiencies with remediation recommendations.
• Evaluated technology risks associated with new system implementations and upgrades and confirmed control readiness prior to deployment.
• Documented compensating controls where gaps were identified and mapped remediation strategies to SOX and COSO framework requirements.
• Maintained an inventory of more than seventy five IT controls and ensured documentation remained current and audit ready.
• Performed walkthrough with control owners to understand processes, collect evidence, and prepare workpapers used by external auditors.
• Supported audit planning activities including ITGC scoping, risk ranking, and control mapping across multiple client engagements.
• Reviewed SOC 1 and SOC 2 reports for third party vendors and identified complementary user entity controls required within client environments.
Certified Information Systems Auditor (CISA) ISACA (In View)