SUMMARY:

• A highly organized and detail - oriented Confidential -certified IT professional, currently executing tests of internal controls for Confidential ’s IT Operations using IT auditing techniques and methodology.
• Past experience in auditing Confidential IT systems, with a proven track record of assessing IT systems' compliance to General Computing Controls, Application Controls, and corporate policies, as well as recommending strategies to ensure compliance.
• Well-versed in all auditing phases, from planning, evaluating, testing and reporting of controls.
• In addition, many years of experience in building, testing, documenting, and supporting Confidential IT systems, primarily (and extensively) on Confidential Mainframes.
• Excellent oral and written communication skills.
• Ability to work both independently and as part of a team.

TECHNICAL SKILLS:

Audit Documentation Repository: Ballast Point

Languages/scripting languages: COBOL, JCL, CICS, SQL, Visual Basic, VXML

Databases: DB2, MS Access

Tools: TSO, SPF, DB2 QMF, DB2 SPUFI, assorted DB2 Utilities, Syncsort, File Aid Batch, some File Aid Online, OMEGAMON (a CICS monitoring tool)

Operating Systems: Confidential z/OS, Confidential MVS, Unix, PC

Source Control: Endevor, ClearCase

PROFESSIONAL EXPERIENCE:

IT auditor

Confidential

Responsibilities:

• Contractor with Confidential Technologies, responsible for the monthly set-up and execution of tests of internal controls for Confidential ’s IT Operations, using IT auditing techniques and methodology.
• Testing occurs on behalf of management’s self-assessment program.
• Apply audit knowledge and critical thinking skills to ensure that test procedures are relevant to the controls and objectives are being met.
• Assist Control Advisors with design, implementation, and testing of time-sensitive key controls across the division, and provide feedback to team members as needed.
• Participates in additional activities related to controls testing, such as off-month testing of new procedures to ensure their functionality and capability.
• Communicate and follow up with control owners on potential issues and test exceptions.
• Provides support, in terms of data needs, to external auditors as necessary.

IT auditor

Confidential

Responsibilities:

• Responsible for determining the accuracy and adequacy of a number of Confidential systems’ controls.
• Analyzed IT controls and processes of various internal Confidential systems, including Billing, Payroll, and Sales.
• Evaluated logical and physical controls, and recommended strategies to reconcile deficiencies
• Data reconciliation
• Segregation of Duties
• Change Management
• Disaster Recovery compliance
• Data and Processing Center physical controls
• User access controls, including those related to MS Active Directory
• Application Controls, such as specific system edits appearing within the application as preventative or detective controls.
• Secure Virtual Private Network (VPN) configuration.
• Secure data transmissions/encryption.
• Database roles and privileges.
• Utilized MS Excel’s VLOOKUP function in data analysis.

Software engineer

Confidential

Responsibilities:

• Implemented, tested, and supported (in production) several back-end COBOL II/CICS/DB2 application programs and related batch JCL used by a front-end customer self-service DTMF application. Some back-end applications made use of DB2 Stored Procedures and DB2 Connect. Designed DB2 Unload and Load JCL, as well as DB2 Image-copy and Recover JCL for the applications’ DB2 databases. Ongoing support included application enhancements and updates to the applications’ JCL batch jobs. Supported on and off-hour production jobs, including performing abend determination/correction and job re-run.
• Served on the System Integration Testing team for a VXML-driven, voice response, self-service Confidential customer system. Created test cases for VXML applications based on User Interface (UI) documentation. Developed and tested a number of VXML applications that comprised the system. Responsible for the specification, implementation, and execution of overall application test cases.
• Supported and extended a trouble reporting tool, implemented in Visual Basic and MS Access. This tool was used internally by the application’s developers and its clients to report and track issues related to Confidential customer access of the aforementioned self-service DTMF application.
• Led the group responsible for the design, setup, population, and maintenance of the project’s entire Confidential MVS Mainframe test environment.
• Developer of a COBOL/DB2 application that processed Confidential customer payment remittance and adjustments. Involved in all aspects of the project’s lifecycle - specification, design, testing, implementation, and support.
• Served as the group’s local DB2 contact, responsible for the procurement, maintenance, and usage coordination of the group's DB2 test databases.
• Served as local DB2 contact for a group that developed an internal Confidential financial application, as well as involved in the testing and implementation of the application. As DB2 contact, responsible for:
• Procurement, setup, and maintenance of the group's DB2 test databases.
• Design of unload and recovery procedures.Coordination of database usage among developers,
• Implemented and executed DB2 DDL, per DBA specifications.
• Supported the application’s production DB2 environment.
• Implemented, tested, and supported (in production) several COBOL programs that utilized an IMS DB, as well as the JCL of associated batch jobs.