Information Technology Microsoft Office

*************@*****.***

FELIX .A. ONOS

Tel.: 469-***-****

List of IT Audit Projects

Performed multiple IT audit projects using COSO and COBIT frameworks, perform SOX compliance audit, ITGCs and IT application controls audit, PCI DSS, Audit Readiness, infrastructure audits (VMware, Databases, Server, Networks and O/S), SOC 1, 2 & 3, SOC 1 Type 2 Review, Financial Statement Audit and HIPAA Audit.

IT Audit Skills and Scanning Tools:

Microsoft Office- Excel, Word, Access, PowerPoint, Microsoft Sequel Servers, Teammate, Outlook Express, Acrobat Reader and V-Lookup, SharePoint, ACL, IDEA, Imperva, NESSUS, NEXPOSE, Splunk.

Essilor America 06/2016 – Current

Snr. IT Auditor

Conduct ITGCs and IT Application Controls testing to assess IT internal controls as part of financial statement audit, Internal and operational audits, Attestation engagement, and Audit readiness.

Perform IT infrastructure audit - operating systems, databases, network services, SQL database, and Firewalls.

Perform SailPoint access management review – provisioning, de-provisioning and certification.

Review SOC 1 Type 2 report, perform SOC 1, 2 and 3 testing.

Conduct all phases of IT Audit process – planning, fieldwork, reporting and follow-up as needed.

Documenting work completed by preparing work papers.

Document and cascade control gaps and provide recommendations to remediate the weaknesses.

Plan and coordinate Information Technology Audit. Ensure audit tasks are completed accurately and in a timely manner employing various frameworks such as COBIT, COSO, ITIL etc.

Identify and communicate IT Audit findings to senior management and clients/business.

Assess the operating effectiveness of the SDLC lifecycle, identifying risks and control gaps in the implementation, communicating issues and recommendations to the parties involved.

Handle special projects such as Segregation of Duties (SOD) and SOX Compliance Audit, challenge projects, PCI DSS, HIPAA and identify inadequate internal controls and provide recommendations.

Maintain a good working relationship with clients/business and colleagues to enhance customer satisfaction and work with client management and staff at all levels to execute audit.

Essilor America 03/2013 - 05/2016

Staff IT Auditor

Performed Information Technology risk based audits (e.g. information security, change management, IT operations) for business units.

Performed SOX Compliance audit and PCI DSS compliance audits. Reviewed SOC 1 Type 2 report

Assisted Operational Audit team with integrated audits, including the identification and testing of IT controls supporting the business processes in-scope.

Documented walkthrough of processes under review.

Liaised with various stakeholders to identified process and system owners under review.

Performed infrastructure audit – O/S, databases, Active Directory, servers.

Identified risks from documented processes and document risk statements accordingly.

Evaluated controls in place to mitigate potential risks and known risks.

Evaluated design appropriateness and operating effectiveness of internal controls

Documented audit findings and communicated (both orally and in writing) to appropriate management.

Essilor America

Software QA Tester 08/2005 – 02/2013

Environment: Agile, HP ALM, QC, QTP 8.0 and Selenium

Developed test cases, test scenarios and user flows for various types of handheld devices covering multiple platforms.

Responsible for verifying the quality of POS Terminal products to ensure the delivery of high quality solutions that meet or exceed customer expectations.

Provided black box and user acceptance testing for Tuesday Morning web and GUI application services.

Created and executed automated test scripts using QTP 8.0 for regression testing.

Created and documented testing results and other feature sets.

Used Test Director for bug tracking and Visual Source Safe for Version control.

Documented software defects using bug tracking system and reported defects involving program functionality, output, online screen and content to software developers.

Developed Testing Analysis Reports (TAR) for each and every test plan executed individually for all applications.

Attended review sessions with Business Analysts, Developers and end users to understand and test according to their requirements.

EDUCATION:

BS, Business Administration and Management 2005

University Of Benin, Nigeria.

Knowledge

Agile Methodologies, SDLC, Jira, Version1, Rally,

Training:

Quality Assurance Training 2009

CERTIFICATION:

CISA – test is scheduled for May/June 2018

CIA – preparation in progress

CISSP – preparation in progress.

Contact this candidate