Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Seun Sotonade

Dallas,TX

Summary

Results-driven IT, Audit, and Risk professional with 5 years of specialized experience in SOX IT General Controls (ITGC), IT risk assessments, control testing, and audit readiness across consulting and regulated industries, with a proven ability to collaborate effectively with IT, product, and business teams to identify and close control gaps, remediate deficiencies, and ensure compliance for both internal and external audits. Proficient in access management, change management, and IT operations controls, demonstrating expertise in navigating complex multi-system environments within financial services, technology, and other regulated sectors. Committed to enhancing organizational resilience through strategic risk management and robust control frameworks.

Overview

5
5
years of professional experience
1
1
Certification

Work History

IT Risk and Compliance Analyst

Uber
Dallas, TX
09.2024 - 03.2026
  • Oversaw implementation of SOX IT general controls compliance programs, ensuring preparedness for both internal and external audits.
  • Ensured adherence to SOX ITGC compliance standards across more than twenty systems, enhancing access management, change management, and IT operations controls for six client engagements annually.
  • Facilitated discussions with IT and business stakeholders to outline SOX control requirements and audit expectations, resulting in a significant decrease in external auditor inquiries.
  • Analyzed eight new applications entering SOX environment to confirm that essential controls were effectively established and operational ahead of launch.
  • Conducted comprehensive control walkthroughs with process owners to ensure effective validation of control design related to access provisioning change approvals and operational monitoring.
  • Executed meticulous preparation and organization of over one hundred audit workpapers and evidence packages, ensuring compliance with audit standards.
  • Identified control deficiencies and collaborated with control owners to establish and monitor remediation plans until resolution.
  • Analyzed management remediation responses and monitored implementation of corrective actions to facilitate prompt resolution of identified issues.
  • Analyzed and refined control documentation and compliance frameworks, resulting in a decrease of repeat findings during audit cycles.

SOX IT Controls Consultant

Ettain Group
Dallas, TX
05.2022 - 08.2024

• Tested IT General Controls across applications, databases, and infrastructure environments to evaluate design adequacy and operating effectiveness.
• Conducted IT risk assessments across access management, change management, and IT operations processes and identified multiple control deficiencies with remediation recommendations.
• Evaluated technology risks associated with new system implementations and upgrades and confirmed control readiness prior to deployment.
• Documented compensating controls where gaps were identified and mapped remediation strategies to SOX and COSO framework requirements.
• Maintained an inventory of more than seventy five IT controls and ensured documentation remained current and audit ready.
• Performed walkthrough with control owners to understand processes, collect evidence, and prepare workpapers used by external auditors.
• Supported audit planning activities including ITGC scoping, risk ranking, and control mapping across multiple client engagements.
• Reviewed SOC 1 and SOC 2 reports for third party vendors and identified complementary user entity controls required within client environments.

IT AUDITOR

Centraprise
Dallas, TX
10.2020 - 04.2022
  • Reviewed and challenged front line operational risk program execution with focus on external fraud, logical and physical security, transaction processing and execution.
  • Utilized subject matter expertise and industry knowledge to provide independent oversight and credible challenge to the business’s operational risk management activities.
  • Performed analysis on extremely complex business systems to determine risks and impact.
  • Assisted project teams to evaluate IT Risk and compliance consideration for projects.
  • Managed daily operational processes and drove business improvements, ensuring commercial and best practice objectives were met.
  • Identified control gaps and potential remediation steps; lead and/or assist process re-design and coordination of remediation efforts.
  • Assisted with IT-related aspects of vendor risk management program functions such as risk assessments, due diligence documentation reviews, control testing, contract reviews.
  • Continuously monitor control compliance and prevalent risk environment to ensure that exposures are kept at acceptable levels.
  • Conducted comprehensive IT audits to evaluate system integrity and compliance with regulatory standards.
  • Developed audit plans and strategies to enhance operational efficiency across IT processes.
  • Collaborated with cross-functional teams to identify and mitigate risks within technology systems.
  • Led training sessions for junior auditors, fostering knowledge sharing and skill development in auditing techniques.
  • Implemented process improvements based on audit results, enhancing overall effectiveness of IT controls.
  • Prepared detailed reports outlining audit findings, recommendations, and actionable insights for management review.

Education

MBA - Business Administration And Management

Olabisi Onabanjo University
Ng

Master of Science - Project Management

PRINCE2 & PMP (CUPE LTD, UK)
UK

B.Sc. - Economics

Tai Solarin University
Ng
2016

Skills

  • ITGC testing and compliance
  • IT Risk Assessment and Scoping
  • Control Design and Implementation
  • Audit Readiness and Support
  • Deficiency and Remediation Management
  • Access Management Controls
  • Change Management Controls
  • IT Operations Controls
  • SOC 1 and SOC 2 Report Reviews
  • Internal and External Audit Support
  • Regulatory Compliance (SOX, COSO)
  • Control Effectiveness Testing
  • Audit Finding Tracking and Closure
  • IT Process Documentation
  • Business Continuity and DR Controls
  • New System Scoping and Onboarding
  • Risk and Control Matrix (RCM)
  • Continuous Control Monitoring
  • Tools: AuditBoard, TeamMate, Jira, Salesforce, SharePoint, Microsoft Excel, PowerPoint, Word, Project

Certification

Certified Information Systems Auditor (CISA) ISACA (In View)

Timeline

IT Risk and Compliance Analyst

Uber
09.2024 - 03.2026

SOX IT Controls Consultant

Ettain Group
05.2022 - 08.2024

IT AUDITOR

Centraprise
10.2020 - 04.2022

MBA - Business Administration And Management

Olabisi Onabanjo University

Master of Science - Project Management

PRINCE2 & PMP (CUPE LTD, UK)

B.Sc. - Economics

Tai Solarin University
Seun Sotonade