Sr. Staff Security Management Resume
2.00/5 (Submit Your Rating)
Phoenix, AZ
EXPERIENCE:
Confidential, Phoenix, AZ
Sr. Staff Security Management
Responsibilities:
- Utilize Archer for Governance, Risk and Compliance processes to include Security and Technology Standards updates and approvals, Exceptions to Standards, Policy Management and the facilitation of Remediation Plans and their associated Findings.
- Map Internal Security Policies and Standards to the ISO and NIST Controls.
- Maintain Archer Security Standard Exceptions, to include follow ups for Approvals from Management.
- Facilitate All Audit and Regulatory Findings and Remediation Plans with the customer/business owner to completion without any extensions.
- Support staff engaged in the audit/regulatory issue management process by providing process orientation and Archer training.
- Conduct regular Remediation Plan Status health assessment meetings and update records.
- Capture, validate and then provide remediation closure evidence to auditors and regulators.
- Facilitate internal audit and regulatory discussions and requests on behalf of our customers, such as changes to management action plans or finding ownership.
- Shepherd staff through the standard workflow process including renewals and approvals.
- Provide metrics and reports as needed to Upper management.
- Perform Archer data quality activities to ensure data is accurate, all necessary documentation is attached to exception and acceptance records, and proper approvals are obtained.
- Shepherd Exception and Acceptance requests through the standard workflow process.
- Maintain procedures and training documentation.
Sr. Staff Solutions Architect
Confidential
Responsibilities:
- Archer - Security Standard Exceptions, Standards updates, report writer for SVPs.
- TIS Governance Board meeting Facilitator.
- Security Awareness.
- Perform Archer data quality activities to ensure data is accurate, all necessary documentation is attached to exception and acceptance records, and proper approvals are obtained
- Shepherd staff through the standard workflow process including renewals and approvals.
- Maintain procedures and training documentation.
Confidential, Tempe, AZ
Sr. Information Security Auditor
Responsibilities:
- Process Risk Acceptance Forms.
- Administer and process Terminations within Excel and Active Directory.
- Validating accounts are disabled in Active Directory with AD lookups.
- Running scripts to pull inactive accounts over 90 days in order to de-activate or disable.
- ISO 27001 comparison and evaluation of controls to policies within Confidential .
- Auditing access controls and PCI compliance which includes IT General Controls ( Confidential ).
- Change Advisory Board member, to evaluate changes within the company.
Confidential, Tempe, AZ
IT Auditor/Analyst Sr.
Responsibilities:
- Audit processing transactions from end to end.
- Utilizing Lotus Notes databases to plan and conduct audits.
- Schedule the Audit Plan utilizing pivot tables and embedded charts as well as MS Project.
- Perform audits based on Risk, utilizing the COSO Model.
- Audit Operating systems and databases for security settings to include access control, physical & logical security.
- Oracle and SAP Reviews.
- PCI and SOX work which includes IT General Controls ( Confidential ).
- Security information and event management (SIEM) project activities.
- Support network monitoring project activities.
- Prepare and present reports based on the results of the audits and presented to management.
- Provide recommendations for change management, segregation of duties and logical access control improvements.
- Perform SOC1 audit work with the external auditors.
- Conduct computer controls reviews for Sox compliance related to the Financials and work with the external auditors.
- Ensure follow-up reviews are completed to assess and report on the progress of management’s corrective actions.
- Verify accuracy for compliance with plans, policies, and procedures.
- Develop and maintain working relationship with external auditors.
Confidential, Phoenix, AZ
Sr. IT Auditor
Responsibilities:
- Audited Claims processing from end to end for errors and claims that were stalled.
- Audited Operating systems and databases for security settings to include access control, physical & logical security.
- Created and completed full audit programs utilizing the COBIT framework.
- Prepared and presented reports based on the results of the audits and presented to management.
- Provided recommendations for change management, segregation of duties and logical access control improvements.
- Conducted computer controls reviews for Sox compliance related to the Financials and work with the external auditors.
- Interviewing for IT Auditor candidates.
- Oracle and PeopleSoft Reviews.
- Ensured follow-up reviews were completed to assess and report on the progress of management’s corrective actions.
- Utilized MS Office (Excel, Word, Visio, Project and Access) and Confidential .
- Verified accuracy for compliance with plans, policies, and procedures.
- Developed and maintain working relationship with external auditors.
- Attended various training classes to include, cloud, BYOD, PCI, Active Directory and Data breaches.
Confidential, Phoenix, AZ
IT Auditor
Responsibilities:
- Started and created the IT audit processes and procedures as I was the first IT auditor in the company.
- Performed assigned audits and management project requests.
- Drafted audit reports with audit comments and recommendations.
- Provided input for improvement and or revisions to standard audit programs.
- Ensured that the work paper documentation supports conclusions and that the results are based on analyses and evaluations.
- Utilized audit software and adhered to compliance with testing tools.
- Developed and maintained strong rapport with auditees and staff.
Confidential, Phoenix, AZ
IT Auditor
Responsibilities:
- Risk Based Auditing of Mainframe, Unix-AIX & Sun.
- Performed change management and problem management audits over operating systems and databases.
- Executed, documented and completed audit work within Paisley Consulting audit software.
Confidential, Tempe, AZ
IT Auditor Consultant
Responsibilities:
- Reviewed change control procedures.
- Security reviews including physical & logical security.
- Completed audits of the IT General Controls.
- Audited and presented results in an audit report.