TECHNICAL SKILLS

• SAP FI
• SAP MM
• SAP SD
• ServiceNow
• PeopleSoft
• JIRA
• BMC Remedy
• SailPoint Identity Now
• MyAccess
• Microsoft Visio
• Microsoft Office
• Outlook
• Ariba
• OneTrust
• AuditBoard
• TeamMate +
• Salesforce
• Tableau Prep
• PowerBI & Splunk

PROFESSIONAL EXPERIENCE

Experienced Specialist

Confidential, Austin, TX

Responsibilities:

• Lead planning and execution of internal audit assignments specific to IT infrastructure (API, Cloud, Network Security, Systems management, Vendor Due Diligence, TPRM)
• Ensure effective project management is facilitated for projects by creating timelines and completing under budgeted hours
• Perform audit responsibilities including scheduling and participation in audit meetings; participation in scoping discussions; drafting of audit work, risk assessment, design and execution of testing; and completion and review of work papers.
• Lead design assessments to ensure compliance to applicable laws and regulations
• Perform unique audits such within data privacy, SDLC, mergers & acquisitions (TD Ameritrade) and ensuring regulatory requirements (GDPR, CCPA).

IT Auditor

Confidential, Austin, TX

Responsibilities:

• Assisted in the Company's Sarbanes - Oxley (SOX) 404 process by documenting and testing internal controls over financial reporting.
• Assisted in the coordination and tracking of internal/external testing of controls and track the status of gaps and remediation actions.
• Assisted in the coordination process to obtain management assessments of internal controls, including the identification of weaknesses and opportunities for improvement.
• Provided an objective, independent, risk-based evaluation of the adequacy and effectiveness of the company's technology, operational and financial controls.
• Performed all phases of the audit process including planning, fieldwork, closeout, report writing, wrap-up and follow-up with little supervision.
• Performed various operational audits in Data Privacy, Data Governance, Network Security, Change Management, Patching, TPRM, 3rd Party Vendor Risk, CCPA, GDPR, NACHA, Encryption and Remote Security.
• Developed and execute test procedures to ensure that controls are operating as intended.
• Participated in special projects such as risk assessments, aiding external auditors (including performing testing, gathering requested documentation, etc.), system implementations and upgrades.
• Maintain comprehensive working papers to support and substantiate audit observations.
• Strong verbal and written communication skills to effectively present to peers and management
• Understanding of internal auditing standards, COSO, COBIT and risk assessment practices.
• Work as liaison with business units to develop or streamline processes.

IT Auditor

Confidential, South borough, MA

Responsibilities:

• Performed detailed reviews of compliance testing for application and IT general controls for SOX readiness with an understanding of the MAR (Model Audit Rule).
• Identified key risks and controls, controls optimization, and business processes within the IT environments.
• Obtained an understanding of COSO and COBIT frameworks, risk assessment practices and internal controls design.
• Defined segregation of duties rules and conducted annual SOD reviews.
• Created risk assessments for change management, access to programs and data, computer operations and systems development.
• Conducted interviews and walk-throughs with process owners, analyze key business risks and controls, design test strategies, evaluate and document internal controls.
• Helped defined remediation/mitigation for internal compliance deficiencies and track remediation progress and discuss between multiple stakeholders and executive management.

Senior Associate

Confidential, Houston, Texas

Responsibilities:

• Provided high quality professional day-to-day execution of vendor audit engagements in addition to other types of third party reviews including testing and risk assessments.
• Analyzed complex agreements and identified contract issues major oil and gas clients while working on key initiatives in IT, Procurement and Purchasing.
• Offered contract and business improvement recommendations based on industry experience to enhance contract value for clients including preventive measures for discovering and preventing future incorrect payments.
• Provided process and control guidance to IT process owners in accordance with the latest applicable regulations and best practices
• Worked on special projects such as PCI-DSS compliance, ITGC testing and IT Infrastructure.
• Planned and conducted moderately complex audits of IT systems, applications and operations including planning the audit work, developing the audit program, documenting progress, work papers, findings and reports, and presenting observations to management.
• Regularly communicated the status of assigned tasks with the Audit Manager and Internal Audit Team Members.
• Assisted in the identification, analysis, and resolution of various compliance issues.

Auditor

Confidential, Houston, Texas

Responsibilities:

• Read and reviewed contracts per the due diligence process to identify compliance issues and create audit strategies. Inspects and evaluates client and third-party financial information and supporting documentation in order to assess a third party’s compliance with terms and conditions of contracts in place with the client.
• Performed contract negotiations, strengthened contract language, ensured SOWs are adequate and performed contract reviews recovering up to more than 2 million in spend leakage.
• Performed high level of data analytics to identifying discrepancies and variances from reconciliations and reporting.
• Independently produced documentation to supporting audit findings, correspondence with third parties, and client report. Trained Auditors in various ERP systems including SAP. Identified key risk areas to ensure compliance.
• Recommended changes in operations and audit activities; develops and recommended new audit processes; communicates with management and IT on new processes and pushes new concepts down to entire team.