Michelle Hayes

Manvel, TX ***** ● 832-***-**** ● ad36o1@r.postjobfree.com

Summary of Qualifications

Conduct risk-based IT audit projects, ITGCs and ITAC testing, Risk Assessment, IT Infrastructure testing- Servers, Databases, Servers, Policies, Standards and Procedures, Walkthroughs, SOX and PCI DSS compliance, Back-up and Disaster Recovery, SOC I, II, III and SOC I type I, SOC I type II and SSAE 18 review.

Word, Excel, Outlook, PowerPoint, Project Management, MetricStream, TeamMate, SharePoint, Nexpose and NESSUS.

Key Skills

●Multi-Tasking Abilities

●Detailed-Oriented

●Time Management

●Decision-Making

●Industry-leading interpersonal skills

●Excellent Team Player

●Reporting and Analyzing Data

●Can work independently too

●High technical ability

●Critical Thinking

●Communications

●Problem Solving

Experience

■

Cadence Bank

May 2020 to Present

IT Auditor

Conduct Information Technology (ITGCs) and IT Application controls (ITACs) testing to establish the design appropriateness and operating effectiveness.

Perform Information Security control testing to determine preventive, detective, corrective and compensating control design adequacy, and operating effectiveness.

Execute SOX and PCI DSS compliance audit in response to the annual regulatory requirements using COBIT and COBIT frameworks.

Perform vendor management audit both locally and international.

Perform SOC 1, 2, 3 and SOC 1 type I control testing and review SOC 1 type II and SSAE18 reports.

Perform RACF tools testing as part of Mainframe system to determine design adequacy and operating effectiveness.

Execute IT infrastructure control testing on Servers, Databases, Operating System, and Network devices.

Perform Cloud computing audit on security access management, compatibility, integrity, confidentiality, availability, and encryption.

Cascade control weaknesses to senior management and appropriate stakeholders to timely remediate all identified control gaps.

Document and communicate work completed by preparing detail work papers that capture work-done accurately.

Execute ERP systems control testing of SAP and Oracle Financials and determine design and operating effectiveness.

Involve in all phases of IT audit process from planning, execution, reporting and follow-up as needed.

Working knowledge of business and IT processes and relevant internal controls.

Develop and sustain a good working relationship with the business leadership and colleagues to improve the audit experience by the business units.

Conduct SailPoint control testing of new user, transfer/promoted users, terminated users and attestation.

Conduct pre and post SDLC implementation review, assessing the design appropriateness and operating effectiveness of implemented controls.

Cadence Bank

November 2014 to April 2020

Senior Business Office Administrative Assistant

●Provided confidential consultation to university students who express concerns relating to personal grievances regarding university policies and procedures.

●Coordinated numerous business functions including budget, accounting, procurement, travel, payroll, recruitment, inventory, and general office support.

●Resolved issues and seeking alternative means to achieve equitable solutions.

●Facilitated sessions involving all parties involved to clarify and analyze issues, focus discussions, and offer possible resolution alternatives.

Education and Certification

Texas Southern University, Houston,TX

December 2014

B.A. in Speech Communications and B.S. in Kinesiology

CISA – 12/2023 PASSED

Contact this candidate