Summary
Overview
Work History
Education
Skills
Accomplishments
Timeline
Generic

TOSIN OLUWASANMI-GRANDEUR

Dallas,Texas

Summary

A result-driven Information Systems Auditor with proficiency in risk-based operational, financial, and compliance audit and risk management. Able to work independently or as a member of a team and excellent in critical thinking, communication, and people skills. Able to explain complex information to all levels of staff and management in a clear and accessible manner. Result-driven towards helping organizations manage risk, achieve strategic objectives, and stay competitive.

Overview

8
8
years of professional experience

Work History

IT SOX Compliance Analyst

DIAMOND LOGIC CONSULTING
Dallas, TX
05.2021 - Current
  • Creates and/or remediates ITGC (IT General Controls) in support of meeting audit objectives for all ITGC SOX areas resulting in successful audit
  • Designs and performs IT testing procedures to identify and evaluate risk exposures and determine effectiveness and efficiency of controls
  • Assists with creation of effective remediation solutions and/or exception documentation where applicable
  • Serves as subject matter expert and point of contact to Internal and External Auditors resulting in smooth, effective audit
  • Assists project teams with creation and implementation of IT control objectives resulting in strengthening of organization's internal control environment
  • Assists with successful completion of quarterly UAR (User Access Review) audit process resulting in identification of issues and prompt remediation
  • Collaborates with Internal Audit in developing, testing, and devising solutions to effectively meet applicable IT control objectives.

Internal Controls Senior Analyst

REALPAGE, INC
Richardson, TX
11.2019 - 03.2021
  • Performed Sarbanes-Oxley (SOX) compliance testing on new acquisitions, identification and communicated deficiencies to clients, and prepared ITGC narrative for both Internal Audit/External Audit use
  • This resulted in accurate identification and timely remediation of control weaknesses
  • Managed and accurately documented work papers, provided proper documentation of audit steps performed, evidence gathered, and ensured audit issues are well defined with root causes identified
  • This resulted in audit activities being performed according to industry standards
  • Collaborated with control owners on documentation that supports compliance with various laws and industry requirements, especially information security-related requirements, which resulted in 100% compliance
  • Lead assessment and evaluation of systems security and mitigation of IT-related business risks resulting in effective organizational risk treatment
  • Maintained good relationships with personnel throughout organization to ensure proper understanding and acceptance of audit issues in connection with business risks and controls with resultant effective and timely remediation
  • Recommended and perform activities related to improvement of SOX program such as reassessing risks, active monitoring of SOX deficiencies and remediation, education of control owners on better understanding of business processes, and creation of flowcharts that foster visual appreciation
  • This reduced significantly time spent on substantive testing by Internal Audit team
  • Performed SOC 1 and 2 report review and documented findings in comprehensive SOC evaluation workbook
  • Assisted in evaluation of governance practices including authorizations, management reviews, policies and procedures, segregation of duties, system access rights, and compliance with accounting standards
  • Conducted periodic relationship meetings with business executives to review, monitor, and discuss risks in their respective business areas, based on any prior findings and/or audit issues
  • This resulted in effective enterprise risk management and ensured that audits are risk-based
  • Participated in development and facilitation of risk management strategies, executed third-party control risk assessment to identify control weaknesses, ensured remediation action plans are properly documented, monitored action plans through resolution, and escalated third-party risk management as appropriate
  • Ensured required risk management activities and control weaknesses are remediated before contract execution with third-party provider or appropriate risk acceptance is documented and approved by management
  • Conducted IT risk assessment; documented related risks and noted key control issues; developed appropriate audit programs to test control risks identified and subsequently evaluate control designs, optimization, and assurance over operational and compliance processes
  • Assisted in development and rollout of IT-related internal controls and procedures and this resulted in improved IT control environment
  • Provided supporting information for reporting results of activities and tracking open audit issues and discussing results with stakeholders
  • Performed termination analysis to ensure that disengaged or transferred employees have access revoked promptly; performed look back analysis where termination is inappropriate
  • Performed user access review quality assurance as well as providing user access review trend analysis that helped management to be better prepared for process improvement.

Senior IT Auditor

DIAMOND LOGICS CONSULTING
Dallas, TX
08.2014 - 11.2019
  • Lead all phases of IT Audit including planning, fieldwork, work paper documentation, audit report presentation, and follow-up using applicable framework (COBIT, COSO) and prepared testing matrix
  • Prepared audit scopes based on Risk Assessment, developed test plans and testing procedures, conducted walkthroughs of controls, performed detailed testing, accurately documented test results and exceptions, reported findings, and presented recommendations to stakeholders
  • Lead audits follow up to determine if control weaknesses have been remediated
  • Provided oral and written presentations to IT and general management to discuss identified deficiencies, best practices, and recommendations for implementation of modifications to improve operations and mitigate risk
  • Documented control weaknesses related to testing exceptions and prepared draft audit reports to communicate findings and recommendations to senior management
  • Assessed design and operating effectiveness of internal controls in support of financial audit engagement of clients requiring SOX, PCI-DSS, HIPAA, and within Windows, Unix, Linux, SAP ERP, and Oracle Financials environments
  • Performed audit of infrastructure and applicable database (SQL, Oracle, DB2), operating system (Windows, Unix, Linux), physical security, data center, IT operations, and network communications security
  • Performed attestation engagements such as Service Organization Control (SOC) SSAE 16 Review as part of SOX audit or financial statement audit of clients
  • Evaluated IT and business processes for effectiveness and efficiency, through obtaining understanding of and documenting key business processes and internal controls
  • Reviewed internal policies and procedures and existing laws, rules, and regulations to determine applicable compliance and adequacy of underlying internal controls
  • Ensured successful integration of software into existing infrastructure, reviewed test reports, tested GCC on post-system integration, and reported to management
  • Provided liaison between in-house managers/IT department and External Financial and Operational Auditors
  • Evaluated segregation of duties over application security involving company’s ERP systems (SAP, PeopleSoft, and Oracles Financials) and executed audit strategy
  • Supervised and guided staff auditors, assign controls to test, review work paper documentation, and provided feedback, when necessary, to ensure high-quality and accurate audit reports.

Education

M.D. - Medicine

University of Ibadan
Ibadan
11.2001

Skills

  • Excellent communication skills, oral and written Ability to interact effectively with management and staff at all levels
  • Strong interpersonal skills - ability to work in collaborative environment and effectively interface with all levels of organization
  • Strong leadership skills in leading through influence, relationship building, strategy development, and execution
  • Excellent technical, analytical, and problem-solving skills, attention to detail, multitasking, and ability to work in fast-paced environment
  • Strong computer and technical skills including
  • ACL, IDEA, Power BI, Tableau, TeamMate, MS Sharepoint, Auto Audit, and Wdesk
  • Competency in SAP, Oracle Financial, Delteck CostPoint, PeopleSoft, Microsoft Dynamics, servers of Windows, Linux, Unix, SQL, and Oracle database
  • Expertise in frameworks such as COBIT, COSO, ITIL, and NIST
  • Excellent MS Office skills (including Excel, Word, PowerPoint, Visio, Outlook), Lucid Chart, Google Slides, and Google Sheets

Accomplishments

  • Certified Information Systems Auditor (CISA): https://www.credly.com/badges/19a4a738-9fb6-4bb6-af0e-24f5534f5bb0

Timeline

IT SOX Compliance Analyst

DIAMOND LOGIC CONSULTING
05.2021 - Current

Internal Controls Senior Analyst

REALPAGE, INC
11.2019 - 03.2021

Senior IT Auditor

DIAMOND LOGICS CONSULTING
08.2014 - 11.2019

M.D. - Medicine

University of Ibadan

Similar Profiles

  • Eva Coffman

    Eva CoffmanEva Coffman

    Curator/Editor at Avance Consulting/Global LogicCurator/Editor at Avance Consulting/Global Logic

    View Profile
  • Moses Watson

    Moses WatsonMoses Watson

    Sr. Virtualization Engineer (VMWare) at Cloud Logic Consulting And Solutions, LLCSr. Virtualization Engineer (VMWare) at Cloud Logic Consulting And Solutions, LLC

    View Profile
  • Lovepreet

    Lovepreet Lovepreet null

    Retail Sales Supervisor at Diamond Jubilee Consulting IncRetail Sales Supervisor at Diamond Jubilee Consulting Inc

    View Profile
TOSIN OLUWASANMI-GRANDEUR