SUMMARY:

• Project/Program and Audit, Experience includes over 10 years of experience in IAM and IT Projects, analyzing data, implementing IT COTS solutions and Auditing.
• IT experience includes analyzing and working with data from Active Directory, LDAP, and RACF / ZOS inclusive of request - based and policy-based Automated Account & Access Provisioning (RBAC & ABAC) and manually provisioned entitlement exceptions to Cloud and On-Premise data stores
• Applications include Cloud and on-Premise COTS and client developed applications. Scope included SIEM, API’s, Data Integration, analytics, monitoring and reporting.

PROFESSIONAL EXPERIENCE:

Confidential

Senior IAM Analyst /Project Manager

Responsibilities:

• Flowers Foods currently uses Sailpoint LCM for access provisioning with SAP / Succesfactorss as the HR system of record. I analyzed the implementation and created a project plan in Microsoft Project to integrate the GRC enterprise roles from SAP/Successfactors into Sailpoint for joiner, mover, leaver and rehire processing - further automating the user access transactions associated with mover, leaver and rehire user access actions.

Confidential

Senior IT Project Management

Responsibilities:

• Developing and expanding the Ercot’s Program and Project Management execution capabilities and managing significant risk in programs and projects in process. Managing an IAM Privileged Account management project (CyberArk) under the direction of PMO and Governance departments. Following the PMP methodology and NIST, NERC, CIP and FSA guidance, worked with ERCOT Compliance to ensure the
• ERCOT compliance was followed. Duties include reviewing policies and procedures, interviewing operations personnel and IT, creating and reviewing requirements and collecting evidence. Deliverables include formal project planning and oversight, reporting to EPO management and the business unit management and project sponsors the status and compliance with industry standards, government rules and regulations and
• Ercot policies and procedures. Project piggybacked the Oracle IAM project. Managed the replacement of PowerBroker with LDAP for server authentication on the RHEL Linux platform (800 servers), RHEL versions 5, 6 and 7.

Confidential

Senior IT Project Management-Advisory and IT Audit

Responsibilities:

• Working with CME’s internal audit department on a time sensitive Privileged Account and user access audit for the firm’s regulator. Reviewing internal policies and controls, designing workpapers, key controls and test steps for the audit. Defining the evidence request lists and working with the process and account owners to test the
• CyberArk accounts and the controls, automated and manual. Testing the evidence, documenting the results and creating observation and possible remediation steps for deficiencies going forward.

Confidential

Project Manager

Responsibilities:

• IAM Program & Techinical project manager leading a direct team of 3 engineers and a matrixed team of 12, installing and implementing CyberArk at the infrastructure and database level for non-personal priviledged access. Responsibility including directing the infrastructure build for 3 environments, installation of the CyberArk modules in the environments, integration of Remedy ticketing system and onboarding of the accounts
• CyberArk applications infrastructure (Vaults, Safes, OU’s Groups and Accounts), creating build and operating documentation, user guides and FAQ’s under a accelerated timeline.

Confidential, Atlanta GA

Project Manager

Responsibilities:

• Program/Project Manager Identity and Access Management department under the Technology Risk and Compliance group for Confidential Bank. Activities included working with the team developing the information technology strategy to build out the operationalization of the current GRC and Information security tools, policies and procedures to comply with current risks, regulations and future state goals. Specifically responsible for directing the implementation of CyberArk, a PIM (privileged identity management) solution implemented to control the passwords for the systems admin access for Confidential Bank’s Key Financial Applications Unix and Windows servers. The department managed all the user access for the Bank’s applications for 25,000 employees and 10,000 contractors. Applications included CyberArk,

Confidential

Project Manager

Responsibilities:

• Internal Audit IT Director responsible for complete compliance and SOX attestation project. Projects included Entity level through remediation of business and IT processes and controls. Worked with the Board of Directors and senior management to define entity level control environment, enterprise risks and risk assessment, business and IT controls and control environment. Worked with external auditors in the SOX attestation.
• Helped develop and direct the policies and procedures requirements. Developed internal templates, testing procedures and plans. Worked with management and users to document, test and remediate deficiencies.

Confidential

IT Manager - Audit

Responsibilities:

• Reduced fees year over year on continuing IT engagements by instituting RCSA methods and audit planning with the IT Department and educating the users on evidence and control requirements.
• Minimized external IT audit fees for internal audit clients by coordinated planning of IT audit scope and consistent and standardized templates and evidence methodology and execution.