We provide IT Staff Augmentation Services!

It Audit Manager Resume

Westport, CT

Profile:
Accomplished professional with over twenty years of progressive audit experience, which includes: Planning, Project Management, Compliance Support and Security. Proven ability to manage technical projects, lead teams and communicate with both internal and external stakeholders. Possessing the ability to see the big picture while focusing on the details necessary to ensure success. Confident, analytical decision-maker and effective problem solver focusing on outcomes and measured results.

Education:

Confidential
BS Integrated Info. Systems Mgt.
Brooklyn, New York

Confidential
AAS Computer Programming: Business Emphasis
Suffern, New York

Professional Designations:
Certified Fraud Examiner (CFE) - Association of Certified Fraud Examiners
Certified Information Systems Auditor (CISA) - Information Systems Audit and Control Association

Confidential - IT Audit Manager
Nyala Farm Road, Westport, CT
Responsible for the start-up of the IT Internal Audit function at Terex (domestically and internationally); conducted a global IT Risk Assessment, Network Vulnerability Assessments, multiple IT General Control - Data Center Audits and Pre-Implementation Reviews for the entity-wide implementation of a universal ERP system (Oracle 11i). I conducted several fraud investigations on behalf of the Ethics and Compliance Committee for anonymous allegations made via the Fraud Prevention Hotline. Provided
consulting and advisory services as an internal Subject Matter Expert (SME) for the Payment Card Industry (PCI) -Data Security Standards (DSS) compliance. Perform hands-on review of data security and data encryption controls, network configuration, and the complete data processing topology to provide assurances that the IT environment supported PCI compliance and COBIT / ISO governance practices. Assessed the Business Continuity and Disaster Recovery plans at numerous sites. Additionally, I performed all IT control reviews in support of SOX compliance in a Distributive data processing environment; Client-Server, Mid-range and Mainframe configurations.

Confidential - IT Audit Manager
Wayne, New Jersey
Responsible for planning and performing IT Audits, (Domestically and Internationally) leading and participating in technical audits and integrated audits (Warehouse Management System and Return Goods Application) for Toys 'R'Us, Babies 'R' Us and Toys 'R' Us .com. I conducted IT General Control Audits of data centers and technical reviews in support of compliance to the Payment Card Industry Data Security Standards (PCI-DSS) and Payment Card Industry's Personal Identification Number (PIN) encryption requirements in a Distributive Data Processing environment; Client-Server, Mid-range and Mainframe topologies. Developed the Corporate PCI Services Framework including; checklists, templates, findings, all testing methods and techniques. Created a detailed PCI assessment report and report to executive IT Management on Compliance, including presentation of findings following the conclusion of testing.

Confidential - SOX Internal Control Manager
New York, New York

Responsible for planning and supervising all Sarbanes-Oxley Section 404, Information Technology compliance reviews (Domestically and Internationally) and resulting business process re-engineering initiatives for all domestic and international functions of Moody's Investors Services and Moody's KMV (subsidiary). I provided consistent policy interpretation to business units, while actively promoting awareness of policies and standards. I provided guidance for procedural / baseline (automated) control development and ongoing maintenance. Provided advisory support of IT audit principles, security administration processes and frameworks, metrics collection and reporting functionality; while conducting SOX 404 reviews in a distributed data processing environment consisting of: Windows 2000, NT, UNIX AIX, Sybase, PeopleSoft applications (CRM, Financial and HRMS) and numerous proprietary applications.

Confidential - IT Audit Manager
New York, New York
Responsible for planning and performing all IT Audits for the North American Internal Audit Department of Bank Hapoalim (International Investment Bank) and a New York based subsidiary; Signature Bank (Private Bank) domestically. I collaborated with various business units and technology staff to ensure the timely completion of all Sarbanes-Oxley, Gramm-Leach Bliley, FIDICIA and New York State Banking requirements and performed all technical audits in a centralized mainframe data processing environment consisting of system applications: CICS, MVS, RACF and various proprietary application software packages. In addition, I performed numerous technical reviews on the UNIX - SUN /client-server configuration.

Confidential. - IT Audit Manager
New York, New York

As IT Audit Manager I was responsible for the start-up of the IT Audits function at Pearson and subsidiaries on a wide variety of technology platforms; in the United States, Canada and South America. Conducted risk assessments to prioritize and assign limited in-house IT Audit resources. I performed and /or supervised (co-sourced and out-sourced) all IT General Control reviews and technical audits (MVS, CICS, DB2, Top Secret Security, ACF2 Security, Windows NT and UNIX). Due to the adopted multiple ERP implementation strategy (SAP, JD Edwards) I also performed numerous ERP pre-implementation reviews and data integrity reviews using "ACL" software for data cleansing / data scrubbing assessments; while performing pre-implementation audits. I conducted several Quality Assurance reviews, which proved to be instrumental in assisting two subsidiaries (NCS) in attaining CMM Level III and CMM Level IV Certifications. Additionally, I performed several Fraud Investigations on behalf of management.

Confidential - IT Audit Manager
New York, New York

Responsible for planning and performing all IT Audits for operating companies in Television (CBS, UPN, BET), Paramount Pictures (Production), Simon & Schuster (Publishing) and Blockbuster Video (Movie & Game Rental/Retail). Performed Data Center Audits, Pre and Post Implementation reviews of applications deployed on various technology platforms within the varying subsidiaries. Conducted and assisted in several Fraud Investigations at various subsidiaries. Provided guidance and shared knowledge with team members, while performing procedures especially focusing on complex, judgmental and/or specialized issues. I worked with the client to create plans for accomplishing engagement objectives developing a strategy that complies with both professional standards while also and addressing the risks inherent to the engagements. Briefed the engagement team on the client\'s IT environment and industry IT trends. Maintain relationships with client management to manage expectations of service, including work products, timing, anddeliverables. I was able to successfully complete 100 % of the scheduled IT Audit Plan while also performing multiple unbudgeted / unplanned Y2K validations.

Confidential - IT Audit Manager
Mahwah, New Jersey

Responsible for managing the General Control audits for domestic and international Data Centers, Consolidated Billing Sites, Consolidated Customer Service Centers and Regional Accounting Service Centers. Due to various mergers and acquisitions overseas; performed Data Center audits, pre and post implementation reviews of applications deployed on varying technology platforms. Initially I was hired solely to perform pre-implementation audits, and then introduced the concept of Integrated Auditing. I was promoted to Manager-In-Charge of General Controls Audits for all consolidations (data centers, billing, customer service and accounting centers). Demonstrated the ability to analyze technical risks and provide practical solution alternatives to executive management. I conducted two separate international fraud investigations.

Military Service: Retired
U.S. Navy - Ready (Air/Sea Transportation Management)
U.S. Navy - Active Duty: (Logistics, Supply Chain Management)
U.S. Coast Guard - Ready (Port Security, Search & Rescue)

Languages:
English, Spanish and Italian

Hire Now