With an extensive background spanning over five years in IT compliance and audit, I possess a fervent dedication to ensuring the security, dependability, and authenticity of IT systems and procedures. My expertise lies in IT general controls (ITGC), Sarbanes-Oxley (SOX) compliance, vendor-oriented applications, and change management. Serving as an IT Compliance Analyst II at IIE, my responsibilities encompass orchestrating IT policies, spearheading yearly assessments, conducting reviews of privileged/user access, and managing inquiries from both internal and external auditors. I draw inspiration from IIE's mission to deliver inventive, customer-centric solutions for communication and entertainment necessities. My ethos revolves around collaboration, diversity, and perpetual learning, principles that I am committed to instilling within my team and the entire organization.
● Perform testing around vendor-based applications along with supporting infrastructures i.e., Windows os, sql database.
● Conduct process reviews to assess design and operational effectiveness around access security control, change management, Segregation Of duties (SOD)
● Experience in Performing assessment of IT internal controls as part of financial statement audit, Internal and operational audits, Attestation engagement, and Audit readiness.
● Review of IT General Controls (ITGC) and various applications, databases, and operating systems.
● Identify and communicate IT audit findings to senior management and clients.
● Conduct Audit interviews and assignments, review work papers and reports, documented and analyze Audit evidence
● Maintain a good working relationship with clients to enhance customer satisfaction and work with client management and staff at all levels to perform audit services
• Strong writing skills and the ability to communicate complex issues to stakeholders clearly and succinctly
● Handle of special projects such as Segregation of Duties (SOD) and SOX Compliance business challenge projects and identify conflicts or inadequate internal controls and provide recommendations
● Conduct the review of key Information Technology controls such as Backup, Data Integrity Testing, Segregation of Duties, Access Control, Audit Log, Remote Access Control, Application-Level Security and Environmental Control.
● Perform testing around vendor-based applications along with supporting infrastructures i.e., Windows os, sql database.