Geralynn (Geri) N. Touscany, CISA, CSM

313-***-****

ac8m06@r.postjobfree.com

Energetic, articulate, Senior IT Compliance/Risk Leader experienced in establishing and adherence to IT Standards, FDIC Handbook, FTC, GLBA, Uptime Institute requirements, Development Operations and Data Privacy guidelines. Ensure seamless transition of servers and applicable applications from supplier to employer. Proficient in the Agile Methodology along with COBIT, COSO and Scrum Frameworks. Proficient using Team Mate, Auto Audit, Open Pages and ACL (sampling) Six Sigma Green Belt Certified. SCRUM MASTER CERTIFIED # 1015978 CISA Certified

PROFESSIONAL EXPERIENCE

General Motors Global Infrastructure/Compliance/SOX/ Program Manager for the Development Operation 03/2018-Present (Same area additional responsibility)

•Program Manager for the Development Operation – responsible for designing, implementing, socializing Development Operations processes to assimilate into the entire organization.

•Understand Agile along with facilitating as a Scrum master over several projects.

•Work extensively with the GM Cloud (Galileo) developers establishing requirements for EAI applications and Applicable service requests to assist in automation of building interfaces and utilization of machine language.

General Motors Global Infrastructure/Enterprise Application Integration Warren, MI 1/2013 – Present

•Global IT Risk Compliance Lead for Enterprise Application Integration which consists of Global Integrated Factory (GIF), Manage middleware applications along with documenting on IBM BPM. Compliance, risk and requirements oversight for all aspects of middleware applications IBM Sterling, IIB, Data stage (2 Apps) and Aspera.

•Enterprise Application’s representative to General Motors Audit, SOX Project Management Office, General Motors Security and the General Motors External Auditors. Oversight to ensure detailed documentation is established and maintained.

•Day-to-day operational responsibility to ensure that all Enterprise Applications adhere to GM’s IT, Security (5 Star) and Data Privacy standards.

•Work with both innovation and operations to ensure processes are established and operationally optimize efficiency and effectiveness. Inclusive of embedding detective and preventive controls to ensure risk is mitigated.

•Oversight for the automation of EAI applicable applications ACL to be automated to Glenda via Sterling. Over sight for UAT preprod and production testing.

•One of the key individuals to establish a plan and ensure timely execution when insourcing Performing Supplier (TCS)to ensure all key processes were transferred seamlessly during late December 2014. Still working steadfastly to operational, minimize and automate processes.

ALLY Bank Senior IT Risk Compliance Management /Data Loss Prevention Detroit, MI 6/2010 – 1/2013

Senior IT Risk Compliance Manager

•PROFICIENT AND UTILIZED TEAM MATE FOR AUDIT WORK PAPERS, ANALYSIS AND ANALYTICS

•Oversight of the IT SOX Project Management Office which developed and maintained partnership with business units and the Controller’s group. This included oversight for yearly SOX assessing for all IT applications (including SAP), Infrastructure, Network, Firewall and Mainframe. Responsible for managing assessment team who were responsible to performed assessment for management. Also, performed final quality assurance review (QA) for management and performing supplier assessments.

•Work with Business Units to assist them in identifying business risks, objectives, culture information needs, and service expectations. Provides “big picture” direction to help the team and impacted parties remediate risk which did not align with goals and objectives of the business unit and enterprise organization.

•For the Technology Infrastructure Organization accountable for reviewing and ensuring maintenance of IT policies, procedures and standards, along with organizational structures designed to provide reasonable assurance that 1) IT is aligned with the policies and procedures 2) Oversight for evidence and when identified gaps are detected, remediated for the following areas: GLBA, Federal Reserve, FDIC, Federal Trade Commission, Internal Audit, SOX Management testing, Ally Compliance, Ally Bank Holding and Management Requires Action Issues and 3) ensure that IT risks are managed appropriately.

•Monitor and ensure remediating of vulnerabilities and patching for all Business Units Ally Owned and Supporting Supplier’s servers which support Ally’s enterprise applications. Coordinate efforts for Ally Hosting Teams, Security and Performing Suppliers along with monthly perform results analysis presented to Senior IT Executive parties remediate risk which does not align with goals and objectives of the business unit and enterprise organization.

•Coordinate migrations and test plans for D2D project for performing suppliers. Ensure all requirements were met.

•Responsible for monitoring, investigation and resolution of all Technology Infrastructure data loss. Report statuses to Ally Data Privacy Officer.

•Ally and Supporting Suppliers Data Center Uptime Institute assessment oversight. Document COLO operations manual to align with Uptime Institute Standards and ensure processes in place for appropriate review. Annually perform and document risk assessment of Technology Infrastructure and Security for Ally Compliance Organization. Oversight for all Technology Infrastructure’s Enterprise Access Application Testing (EAC) to align with organization’s controls.

•Responsible for maintaining and validating Technology Infrastructure costs for the Ally Organization’s annual budget.

JEFFERSON WELLS INC., Engagement/IT Program Manager Southfield, and MI 1/2005 – 6/2010

Consulting firm acquired by Manpower

Chrysler Corporation IT Program Manager (Client) 3/2009-6/2010

•Work with developers regarding development of tooling application utilizing SDP methodologies.

•Act as a liaison between application teams, business units and/or suppliers/vendors to provide analytical support & consulting on complex projects to ensure system and business requirements are accurately translated during the design and development.

•Overseeing $48M Global Supplier Tooling Verification Program audit for RM tool program.

•Ensure verification and documenting the accuracy of each tool’s location and identification tag.

•Responsible for budget worked closely preparing Purchasing and Program Management. Oversee compiling of E-Book documenting present status.

General Motors Project/Engagement Manager (Client) 4/2008 – 6/2010

•Managed engagement for assessing Standardize Work execution and know across the GM IS&S platform which consisted of ITIL processes.

•Oversee upcoming application, infrastructure and change management activities. Work on defining schedule. Assessment consisted of a knowledge survey and on-site interviews focusing on execution.

•Identify improvement and cost savings.

•Responsible for formalizing report which reported results to the CIO.

GMAC- Semperian IT Program Manager (Client) 9/2006 – 4/2008

•Oversight for integration/migration Nuvell Financial Services (third-party special finance contracts for General Motors auto dealerships) into GM’s CARS system.

•Performed due diligence on Client’s third-party vendor that identified internal process issues within its Contract and Title Administration and the systems which support them.

DTE - Interim Audit Manager (Client) 1/2005 – 9/2006

•Lead Audit oversight in assessing the DTEs SAP implementation for Financial Accounting, Controlling, Project Systems, and IT Process integration (SAP XI) modules. Oversight for performing supplier who performed yearly SOX assessment. Provide timely communication to the Audit staff on corporate issues, strategies, new professional standards and industry trends, as well as feedback on work performance. Review work papers and other documentation to ensure consistent application of standards and process.

•Visionary leader to the Audit organization for planning and managing audit work and analyzing business risks and processes with a clear strategy for adding value and communicating results to appropriate levels of management.

•Plan, organize, and supervise the activities of 10 direct reports including audit assignments, resource utilization, outsourcing, and all phases of audit work.

•Responsible to assess and remediation of key SOX controls that ensured Sarbanes Oxley (404) compliance. Supervisor a staff of up to 12 field auditors.

•Chosen by client’s CFO to design and document employee Off-boarding process. Implemented an effective and efficient process for employee exiting the organization via the Voluntary Incentive Severance Program (VSIP). This consisted of several hundred of individuals exiting on the same day at the same time in the same location. It was then assimilated into their existing policies and procedures.

RESOURCES CONNECTION, Livonia MI 11/2003 – 1/2005

Wholly-owned subsidiary of Deloitte Touche. Went public 2001.

Consultant

Masco Corporation – SOX Manager (Client)

•Oversee management of SOX audits of MCS (Masco Service Division), which is comprised of $2 Billion dollars in assets.

•Responsible to define, design, test and implement monitor controls, which would ensure they are Sarbanes Oxley (404) compliant. Supervisor a staff of up to 12 field auditors.

GE CAPITAL, Troy MI 2000-2003

$450 Billion dollar diversified financial services business

Project Operations Lead IT Leasing

•Responsible to execute IT and Business conversion of Commercial, Business Portfolio, and Consumer (JV) portfolios from GE (Troy) to Sony (New Jersey). Responsible for managing all aspects of program and systems assimilation from Cedar Rapids GE office to the Troy office. This consisted of the Apple Muni, Toshiba and IBM portfolios. Coached and mentored staff of 12.

•Lead Manager who created and executed the process to move Documentation, Pre-audit and Funding/Booking Applications from GE Michigan to GE India (GECIS), which resulted in the reduction of headcount by three, operation salary cuts by 35% and turnaround time decreasing by 6 – 10 hours.

•Served as a conduit between Michigan and India including the design, documentation and implementation of IT processes, troubleshooting issues, and monitoring all CTQ’s (critical to quality) to ensure that service levels were meet.

•Managed daily Call Center performance ensuring high levels of Customer Service for IBM Select Lease, Toshiba, Apple Financial programs for GE Capital. Successfully lead up to 100+ call center agents and management team.

•Developing and managing the annual departmental budget, including identification of and clear justification of key variances to Senior Call Center Management.

DETROIT MEDICAL CENTER, Detroit MI 1998-2000

The Detroit Medical Center operates 7 hospitals, 2 nursing homes and over 100 outpatient centers.

Senior Internal Auditor and Consultant

•Responsible for complex financial and operational auditing/consulting throughout the seven DMC member hospitals and 45 DMC clinics. This included internal control system reviews, research for determining compliance of laws and regulations and assisting the external auditors.

•Performed fraud and ethics investigations

•Supervised and reviewed work performed by assistants and communicated regularly with all levels of internal and external professionals.

PEAT MARWICK MITCHELL, Detroit, MI

Big eight accounting firm Senior Analysis/Auditor Perform Business and IT audit functions. Support tax review and function

EDUCATION BA University of Michigan, Business/Accounting

PROFESSION DEVELOPMENT SAP Expert FI, PS, Integration and IT analysis Proficient using Microsoft Project, Visio and PowerPoint. Familiar with SQL Proficient in Clarity, Caliber, Security GRC tool and Data Loss Prevention (DLP) tool. Proficient in using Team Mate, Auto Audit, Open Pages and ACL (sampling) Six Sigma Green Belt Certified. SCRUM MASTER CERTIFIED # 1015978, Certified Internal Security Auditor (CISA)

Contact this candidate