OBJECTIVE: To work in a challenging professional environment and there by utilize my talents, auditing skills and other important abilities.

SUMMARY OF EXPERIENCE:

• Certified Information Systems Auditor with over ten years of professional experience, working in various sectors including insurance, financial, retail, education and government. Have understanding of regulatory and industry compliance requirements such as FISMA, HIPPA, SOX, GLBA, and PCI DSS.
• Sound knowledge and experience in applying principles, practices, and techniques involved in conducting information system audits in accordance with the requirements published by ISACA.
• Analytical and experienced Systems Auditor with expertise in IT general control and application review, regulatory and compliance assessment, business process reviews and assessment of controls during System Design, Development and Implementation.
• Experience with Mainframe, Midrange and distributed system technologies, ERP, web-based applications, IT Systems Security, LAN/WAN and basic infrastructure control issues.
• Proficiency in MS applications including Excel, Visio, PowerPoint, and Word.

STRENGTHS

• Creative problem-solving ability and possessing intellectual curiosity
• Ability to interact with various levels of client and firm management
• Ability to work as an individual and also in a team contributing positively
• Strong oral and written communication skills
• Quality and Execution Focus
• Attention to details

EMPLOYMENT HISTORY:

Confidential

IT Auditor

• Responsible for performing FISMA Federal Information Security Management Act compliance assessments for the major business applications FISS, MCS and HIGLAS and the Electronic Data Interchange EDI process utilized at Palmetto GBA.
• Identify and raise issues of non-compliance to the attention of the SSO and the various process owners so as to ensure that the company is compliant with regulatory and best practice standards.
• Participate in the remediation of IT Audit findings from the various regulatory audits such as SSAE 16, Section 912, CFO and FISMA Audits.

• Inspect business process areas as assigned to evaluate the effectiveness of controls in place.
• Effectively communicate with various levels of management throughout the audit process.

Confidential

Business Advisor

• Conduct application review of ERP systems such as Banner and MicroSoft Dynamics, providing management with independent assessments of internal controls and the efficiency/adequacy of these business systems and processes.
• Conduct Post Implementation Reviews of application such as Oracle Financials.
• Conduct IT general Control review of operating system configuration such as Windows server with Active Directory and identified weaknesses in areas such as access administration and change control management and make recommendations, as appropriate.
• Use IDEA to administer computer aided audit tests CAAT .
• Prepare Audit scope, report findings, and present recommendations for improving data integrity and operations.
• Ensure audit tasks are completed accurately and within established timeframes.

Confidential

IT Auditor/Consultant

• Lead IT Audit section of engagements and managed multiple audits concurrently.
• Plan, execute and report on Information Technology/Internal Control Reviews. Identify issues and risks and make recommendations for improvements.
• Assess internal controls within business applications of Clients as they impact financial reporting and its compliance to International Financial Reporting Standards IFRS .
• Responsible for evaluating controls within the IS department of clients and ensuring validations are appropriate and executed in a timely manner. Follow up to ensure resolution of unsuccessful control validation efforts. Additionally, recommend improvements as identified.
• Perform System Application reviews for applications used in various financial services/brokerage firms and Insurance companies. Such applications include systems currently used at Jamaica Money Market Brokers JMMB for investments, encashment, buying and selling of bonds and trading securities. Also application used at British Caribbean Insurance Company to manage customers' insurance policy.
• Review of security access and privileges on clients' network. general control review of operating system configurations such as AS/400, Windows NT and 2000.
• Participate as a control consultant on clients IT related development projects. Such as the project responsible for developing an automated CAMBIO system at JMMB. This system is currently being used for trading foreign currency at JMMB. I was responsible for analyzing the associated risks and exposures inherent in each phase of the SDLC and ensure the appropriate control mechanisms are in place to minimize these risks in a cost-effective manner. Also responsible for reviewing the adequacy of project management activities.
• Provide IT technical support to the Financial Audit staff on application review.
• Served as Project Manager for some IT related projects such as Auto Identification System currently used at JMMB for storing and accessing customers' personal information.
• Review and assist in updating IS policies and procedures. Execute audit procedures to evaluate the adequacy of controls for company's automation environment and compliance with applicable policies and procedures

Confidential

IT Consultant

• Test of some modules in the Accounting Software MACOLA Modules were: Accounts Payable Transaction Entry Program, Account Payable Voucher Transaction, and Project Costing. Also identified the problem with the aging report.

Confidential

Programmer

• Maintenance of Debtors System: Providing the technical support in terms of modification to the system, error handling, and preparation of reports as specified by users, and also monthly production of account balances for each of the licensees.
• Development of Stock Reconciliation System: This system keeps track of the petroleum products received from the government depot, the stock level at the company's depot and the redistribution to the company's licensees.
• Maintenance of African Petroleum Shares System: Providing technical support to the registrars department in terms of modification to the system, error handling and the periodical production of share holders dividend warrants.