TIM YANONG, CPA
Objective
Risk, Audit and Compliance Professional with expertise in Enterprise Risk Management, Internal Audit and External Audit. Experience in risk assessments, internal control design & implementation, compliance with regulatory requirements, and risk & control mapping. An analytic and creative thinker with the ability to understand and evaluate risk environments from a macro and micro perspective driving towards pragmatic business solutions. Areas of Focus
Enterprise Risk Management
Internal Audit / External Audit
Regulatory Compliance
Risk Assessment
GAAP & COSO Internal Control
Framework
Root Cause Analysis
Process Mapping
SOX 404 (IPE & Control
Effectiveness)
Project Management
Scenario Design
Six Sigma (SIPOC & RACI Tools)
Risk & Control Self-Assessment
Operational Loss Events
BASEL, CCAR & DFAST
New Initiatives
Key Risk Indicators
Credit Policy
Professional Experience
DISCOVER FINANCIAL SERVICES, RIVERWOODS, IL 2013-PRESENT MANAGER – PREVENTATIVE RISK MANAGEMENT, CARD CUSTOMER SERVICE AND CREDIT MANAGEMENT 2016– PRESENT
Managing a team of resources responsible for First Line of Defense Risk support in Card Customer Service and Credit Management
o Conducting control design (CDR) reviews to ensure all key controls are identified, documented and in compliance with internal guidelines and correlated to applicable regulatory rules and regulations:
CDR planning, scoping, effective challenge, issue remediation, compliance risk mapping, and end to end documentation using Six Sigma tools
Ensuring all legal risks and regulations have control coverage within business processes
Manage two direct reports
• Developing continuous training on risk management fundamentals
Develop new operational risk statements (scenario development) o Development and presentation of all CDR results to applicable business unit Vice Presidents o Performed post validation of new uploaded risk and controls into Archer (risk library)
New Initiatives & Fraud Activities
o Developed a governance framework and training for the review, approval and risk assessment of new initiatives:
Identification and interpretation of a new initiative’s risk profile against Basel risk categories
Effective challenge of independent risk assessments performed by business units
Development of risk mitigation & action plan metrics
Developed new risk statements and new control activities for applicable business units PROJECT MANAGER, INTERNAL AUDIT (PROMOTED FROM SR. ASSOCIATE) 2013 – 2016
Managed financial, operational, and compliance Audits over activities within Finance, Treasury, Card and Banking Operations.
Led 1-4 person integrated, teams through all phases of a risk based audit approach o Develop an inherent risk assessment of by understanding audit entity’s processes o Scope the audit based on risk assessment results, regulatory compliance, and prior internal/external audit findings
o Identify and evaluate the design of the audit entity’s control environment o Create benchmark control environments based on best practices, regulatory guidance and internal policies/procedures
Design and execute tests evaluating the effectiveness of an audit entity’s control environment
Identify, report and communicate audit findings to client executive management through formal audit reporting
Conduct timely verification of audit finding and related mitigation plans
Coordination and execution of company-wide SOX compliance testing o Developed Information Provided by Entity (IPE) Testing in accordance with Deloitte & Touche standards o Train a team of external consultants on IPE testing fundamentals
Audits led include: Stress Testing, Market & Liquidity Risk, Financial Planning & Analysis, Resolution Planning, Insurance & Risk Management, New Initiatives and Allowance for Loan Loss
Managed and supported department initiatives including the revamping of the audit planning phase, campus recruiting and new employee orientation
PARKER & LYNCH (EXECUTIVE RECRUITER) 2012 - 2013
THE NORTHERN TRUST: 2008 - 2012
AUDIT SERVICES – (OFFICER / AUDIT LEAD)
Planned, scoped, and executed audit work and effectively communicated results to Business Unit management
Major Contributor to Basel Audit Programs
o Developed a sound understanding of internal Credit Policy guidelines o Identified and confirmed high risk credit areas
o Built process flow charts and created new audit programs for the following areas:
Problem Loan Management; Allowance for Loan & Lease Losses; Loan Facility Re-rating; Troubled Debt Restructuring; Loan Review; and Other Real Estate Owned Assets processes
Developed specialized testing surrounding the conversion of loan facility data into probability of default, loss given default and exposure at default metrics
Performed specialized substantive testing of Allowance for Loan & Lease Losses and correlated relevant components back to the internal Credit Policy
Led the following audits: Northern Trust Investment Financial Management; Corporate Controller’s Group; Northern Trust, National Association Legal Entity; Operations & Technology Financial Management; and Distribution Services
Produced audit reports for distribution to the audit entity management and to the Audit Committee
Coordination and execution of company-wide SOX compliance testing o Information Provided by Entity (IPE)
o Control Effectiveness
MERRILL LYNCH CAPITAL 2007-2008
(FIXED INCOME ANALYST)
Enhanced the departments approach to assess loan portfolio quality
Calculated bad debt reserve amounts
Performed balance sheet reconciliation
Coordination and execution of company-wide SOX compliance testing DELOITTE & TOUCHE, ATTESTATION/ENTERPRISE RISK 2003-2007 SENIOR CONSULTANT
Planned and performed financial statement audits for public companies in representing financial services and manufacturing industries
Performed analytical procedures, process walkthroughs, transactional testing, corroborative inquiry and reconciliations
Ensured the professional development of staff by providing field work training, conducting open forums on accounting related topics and principles, and providing guidance on the application of audit standards
Monitored, documented and communicated with managers, partners, and client management on project status, identified observations, budget, and other business-specific topics
Coordination and execution of company-wide SOX compliance testing
Applied risk based approach, defined risked profiles and developed internal audit programs
Provided training to client management teams regarding the application of management’s Control Self-Assessment (CSA) activities
Client Base: Aon, CDW, Chubb Corporation CNA Leo Burnett/Saatchi & Saatchi, Mittal Steel, Pepsi Americas, True Value & Zimmer Healthcare
Education & Certifications
Bachelor of Science, Accounting, University of Illinois Certified Public Accountant, IL Board of Examineers