Highly motivated and results-driven IT auditor and Third-Party Risk Management Specialist with experience in Audit and Control, and Risk Assessments. In-depth knowledge of the Sarbanes-Oxley Act
(SOX), Application Control, IT General Controls (ITGC), and SAS70/SSAE18 attestation. Security Control Assessment with deep knowledge of HITRUST, SIG, SSAE 18 (SOC 1, SOC 2), NIST 800-
53, NIST 800-37, NIST 800 -137, PCI-DSS to achieve Confidentiality, Integrity, Availability of Information Systems