JONAS A FOBANG
Cypress, TX. PH: 202-***-**** Email: ad0339@r.postjobfree.com
Experience Highlights
ITGCs and IT Application Controls testing, IT Governance, Policies, Standards and Procedures, SOX HIPAA, PCI-DSS, Privacy Compliance Data Center Audits and Infrastructure Reviews Disaster Recovery Business Continuity Planning Vendor Management Comprehensive Audit Plans & Management and Information Systems & Security Auditing Skills and Tools
Operating Systems: UNIX, Linux Servers, Windows O/S, AS400, VMWare Applications: Microsoft Suite- (Word, Excel, PowerPoint, Visio, Access, Outlook, Access), TeamMate, SharePoint, Workiva Databases: Oracle, SQL Server, Scanning Tools: CyberArk, AlertLogic, SolarWinds, NESSUS, Foundstone Standards: ISO 27001, COSO & COBIT 5 NIST FFIEC HITRUST Work Experience
Credit Suisse, New York, NY
IT Auditor II August 2021 – Present
• Performs audit planning, walkthroughs, and assess the organization’s internal control environment through IT control testing.
• Apply risk-based approach to identify process improvement opportunities during IT General Controls (ITGCs) and IT Application Controls testing.
• Participate in the preparation and periodic review of a companywide risk assessment.
• Review of Policies, Standards and Procedures implemented, and processes.
• Execute audit using frameworks, such as COSO, COBIT and NIST to determine design adequacy and operating effectiveness of internal controls.
• Execute post implementation audit after SDLC phases from initiation to retirement.
• Communicate to management on recommendations that improves internal controls, processes, systems and serve as a contact person for co-source auditors.
• Perform SOC 1 type II report reviews. Possess knowledge of SSAE 18.
• Play a key role in the execution of the annual internal audit plan and communicate audit results to management with recommendations.
• Participate in planning, fieldwork, reporting and follow-up during target and integrated audits.
• Ensure compliance with management directives – Policies, Standards and Procedures.
• Assisted in tracking and monitoring of identified deficiencies for process.
• Assist in SOX process narrative review and maintenance of SOX documentation in the SharePoint site.
• Liaising with the company's external auditors to ensure that all requirements are met. IT Auditor October 2020 – August 2021
• Performs risk assessments, and recommendations for business and IT process optimization, ensuring internal control coverage.
• Participates in the planning, walkthrough, and execution of IT audit engagements over financially impacting systems throughout the organization.
• Ensure Policies, Standards and Procedures are annually reviewed, and implemented company wide.
• Performs IT General Controls (ITGCs) and IT Application Controls testing of controls using risk- based approach to ensure compliance.
• Ensure compliance with management directives over Policies, Standards and Procedures.
• Review network devices configuration baselines and appropriateness of access granted to administrators to make configuration changes.
• Support process improvement effort to management through review of gaps within internal control posture.
• Review audit workpapers and provide feedback and coaching to audit team members during and after each audit assignment.
• Communicate to management on recommendations that improve internal controls, processes, systems and serve as a contact person for co-source auditors.
• Review Service Organizational Control reports, such as 1 SOC 1 Type 2 reports.
• Collaborating with different levels of management within a variety of business units or functions to identify risks and resolve issues across the global organization.
• Coordinated the activities of the business and external auditors during annual audits and ensured deficiencies are remediated in a timely manner before follow-up commences. Greenpipe Global Services, Dallas, Texas
IT Systems Analyst February 2019 – September 2020
• Analysed reports and database to identify inconsistencies and ensured adequate implementation of the new system.
• Coordinated user's requirements and support for business system, solving user's errors /corrupt data.
• Developed various reports for management using T-SQL
• Analysed data performance and implemented changes necessary to improve execution time.
• Creates and executes feature test cases and ensures feature testing effectively validates that the system meets the functional and non-functional requirements.
• Assists in the translation of the business requirements into implementation details and ensures design meets performance, usability, reliability and scalability requirements in addition to the functional requirements.
• Provides support during the integration and acceptance testing phases and implementation. Education
University of Buea, Buea Cameroon
• Bachelor of Science in Business Management.
Certifications
• CISA - In progress
Memberships
• Information Systems Audit and Control Association (ISACA) - North Texas Chapter
• Institute of Internal Auditors (IIA)