EARL H. PARSONS JR.

Senior level audit, compliance and governance professional with extensive IT development and project management experience. Provided audit group leadership in the development of audit formal audit work and risk assessment processes, management of an internal and external QAR, and mentoring other auditors. With a PhD in Business Administration has taught project management as a part time adjunct professor.

EDUCATION

CERTIFICATIONS

North Central University, PhD

PMP

Project Management Professional

PMI

Business Administration, Management Information Systems

CIA

CISA

Certified Internal Auditor

Certified Information Systems Auditor

IIA

ISACA

University of Maryland, Masters

CSSGB

Certified Six Sigma Green Belt

ASQ

Business Administration, eCommerce

ITIL (v2)

IT Service Management Foundations

ISEB

Brigham Young University, Bachelors

CNNS 4011

National Security Certification

NIST

Business Administration, Operations and Systems Analysis

Prince2

PMDP

ITIL Framework for Project Management

Project Management Development Program

ISEB

CSC

AUDITS CONDUCTED

Data Integrity

Reviewed data sources used to develop senior management reporting and how reporting software was updated/migrated to understand level of accuracy of reporting

Mobile Security

Reviewed both technical and legal environment to determine controls around the usage of mobile devices and impacts on HIPAA security. Audit resulted in project to install additional security software on personal devices that accessed network email

Off-Shore Security

Reviewed controls used to determine when HIPAA data could be given to offshore vendors for usage

IT Governance

Surveyed business department heads to determine level of IT Governance. Audit resulted in improve communications between IT and department heads.

Oracle

Audited management of Oracle environment. Result: consolidate Oracle environment into a single version.

PeopleSoft GL

Audited PeopleSoft environment including local changes and process used to test upgrades

Security Access

Audited process to management provisioning of security access and the management of privilege creep

PCI

Worked with external PCI auditors on specific testing and results. Worked to track improvements based on consultant’s recommendations

PROFESSIONAL EXPERIENCE

JPS HEALTH NETWORKS

Audit Manager / Senior Auditor Feb 2015 - Aug 2017

Performed audits including Data Integrity, Offshore Data Security, and Mobile Device Security.

Provided management and leadership to a team of two auditors for a portion of this time.

RADIO SHACK

Senior IT Auditor Apr 2009 - Jan 2015

Conducted information technology audits in diverse areas including Oracle, DB2, PeopleSoft GL, security access, data leakage, warehouse management systems, PCI, Network Security, and IT Governance.

Conducted operations audits in diverse areas including warehouse operations, international and domestic logistics, inventory management, and store replenishment.

Made audit recommendations which led to technical, security, health, risk, process and safety improvements, and extensive cost savings.

Redesigned the annual risk assessment process which improved the prioritization of audit projects.

Recommended improvements to the project management processes and design of related work papers.

Designed and developed an audit paper walk through and peer review process.

Validated the design and performed SOX testing.

Managed an internal Quality Assessment Review (QAR) prior to an external QAR, which resulted in no findings for the external QAR.

SABRE HOLDINGS

Principal Business Process Design Consultant July 2007 – Dec 2008

Developed and managed an enterprise wide standards governance program which led to substantial savings and improved systems stability through the selection of standardized hardware and software.

Reviewed project designs for compliance and inclusion of best practices. For example, identified disaster recovery flaws with one project design and facilitated the correction of the problem.

RADIO SHACK

Senior IT Auditor June 2006 – July 2007

See Above.

CSC FINANCIAL SERVICES GROUP - Project Manager / Auditor Sept 2004 – June 2006

Audited the project management reporting system, made recommendations which lead to improvements in the accuracy of the earned value reporting and billing process.

Audited the use of open source software in the Hogan systems to determine risk exposures. Audit recommendations led to the adoption of risk mitigation techniques.

UNIVERSITY TEACHING EXPERIENCE (ADJUNCT PROFESSOR) Jan 2014 – Apr 2017

University of Dallas

MBA course in Systems Auditing and Systems Quality

Brigham Young University

Undergraduate course in Project Management

TECHNICAL COMPETENCIES

Audit Project Management

Certified project manager that has led several system development projects. At JPS lead a team of two auditors during combined and individual projects. Adjunct professor having taught project management for three years

Cloud and Virtualization

CSC, worked with vendor and client to implement a cloud based solution

Data Center Operations

Conducted audits of data center allocation and security including local and contracted services

Network (Internal/External)

Reviewed network segmentation processes at JPS and RadioShack to determine security impacts

Employee Infrastructure

Reviewed email retention policies and procedures at RSH to determine impact of policies

Distributed Systems

CSC, designed solution to push data across four platforms (UNIX, Tandem, Windows, Mainframe)

Databases

RSH, audit of Oracle environment led to a project to upgrade multiple version environment to a single version of Oracle. RSH, audited SQL environment to determine effectiveness of Support

Information Security

JPS, audited mobile device environment which led to a project to upgrade security practices. Audits include off-shore data security, mobile device security, data integrity, security access and de-provisioning. Reviewed results of external HIPAA and PCI audits.

Risk Management

Conducted risk-based audits on technology audits. RSH, upgraded annual risk assessment process

Disaster Recovery

RSH, audited disaster recovery and business process. Advised the DR committee to identify and implement improvements.

Mainframe

15+ years of mainframe programming experience. Author of two text books on mainframe programming

SKILLS

Standards

PCI, HIPAA, COSO, ACH, EDI, SOX, ITIL, COBIT, NIST

Hardware

IBM Mainframe, Tandem, Unix, PC/Windows

Databases

DB2, VSAM, IMS DB/DC, CA-Datacom, IDMS, Oracle

Languages

COBOL, COBOL II, IDEAL, SQL, Hogan, Umbrella, PeopleSoft SQR, CICS, REXX, Eztrieve, ALC, Visual Basic, Java, JavaScript, HTML, C, CGI, PHP, UML

ERP

PeopleSoft

Audit Software

Pentana PAWS, Aquadata, ACL, IDEA

Data Analysis

Data management, including projects to evaluate and correct customer data prior to data conversion processes. Performed data attribute analysis.

Writing

Published author of two graduate level text books on programming

Presentations

IIA and combined IIA/ISACA meetings and presentations to nearly all levels of management

PC Software

Microsoft Office Suite: Excel, Word, Project, PowerPoint, Visio, ACL

PUBLICATIONS

Book The Database Expert’s Guide to IDEAL

Book Structured Programming with COBOL Examples

Article Using Enterprise Architecture Integration in Mainframe Transformation

Dissertation Case study on control failures related to ROI analysis

Contact this candidate