SAMSON
OLORUNSIWA
Contact
Address
Houston, TX 77077
Phone
olorunsiwaakintunde@g
mail.com
Skills
Ability to Translate
Process Gaps
Conducting Technology
Risk Assessments which
Drive the Audit Planning
Process Providing
Internal Control Advisory
Services COBIT
COSO Executing IT
Control Assessments
Analyzing Historical
Regulatory Exam
Providing Logistical
Support Scheduling
Meetings Ability to
Coordinate Exam
Documentation
Teamwork &
Collaboration
Knowledge of Laws In
the Financial Services
Industry Evaluating
Materials for Accuracy
against Exam Requests
Resourceful, self-motivated, and driven professional with progressive experience in analyzing and assessing organizations' technological infrastructure to ensure processes and systems run accurately and efficiently. Adept in ensuring operational compliance with established policies, regulations, guidelines, and standards and promptly resolving operational roadblocks. Highly ethical and focused team player with productive, diligent approach. Bringing 6+ years of experience in compliance and auditing. Knowledgeable IT Auditor who employs exceptional judgment, integrity, and written and verbal communication skills to work cross-functionally in a fast-paced environment to strengthen relationships and achieve business goals.
Work History
2020-02 -
Current
SENIOR IT AUDITOR
Bank of America
• Increase workflow output and organizational
productivity by executing audits of IT application controls (ITACs), IT general controls (ITGCs) including IT SOX audits and developing pragmatic action
plans.
• Understanding of various standards and
frameworks- NIST, COBIT,COSO, ISO, PCI- DSS, ITIL
and Data Privacy laws and regulations.
• Coordinate with external auditors to perform annual SOX compliance audit and contribute to special
projects and tasks as required. SOX 302 & 401.
• Conduct information security control testing,
detective, preventive, corrective and
compensating control design appropriateness and
operating effectiveness.
• Perform IT Infrastructure audit- Databases, server Active Directory and Operating Systems control
design adequacy and operating effectiveness.
• Participate in annual risk assessment, assessing likelihood, severity, and overall business impact in case of an occurrence.
• Identify deficiencies in the design and operating effectiveness of internal controls.
• Conduct System Development Lifecycle (SDLC) pre
and post implementation review, for control
adequacy and operating effectiveness.
Audit Planning,
Fieldwork, Reporting &
Follow-up Protecting
the Confidentiality of
Systems JIRA SAP,
Salesforce, ServiceNow,
Workday PMI PMBOK,
SDLC & Agile
Methodology Scrum,
Kanban, Xtreme
Programming & SAFE
RELEVANT SKILLS
Information Technology
Meticulous and
innovative in applying
practical information
and technology and a
wide range of computer
systems and software
applications to achieve
established goals and
meet deadlines.
Regulatory
Requirements
Implementation and
Compliance
Thoroughly studied
systems and network
architecture to identify
security protocols in
terms of usage,
strengths, and
weaknesses.
Exercised a holistic view
of security, facilitating
threat modeling, testing,
and vulnerability
assessment with unique
business needs.
• Participate in weekly stand-up status meeting to observe management progress in fixing audit
recommended gaps.
• Conduct walkthroughs with application, process
owners and IT personnel to gain a good
understanding of the business environment.
• Evaluate IT SOX and PCI DSS compliance controls to assess the design and operating effectiveness of
controls.
• Review SOC 1 type II, SSAE-18 reports, SOC 1,2 & 3 and SOC 1 type 1 audits.
• Follow-up on the implementation of Management
Action Plans by ensuring adequate and timely
follow-up with respective stakeholders.
• Collaborate with issue owners towards a timely
remediation of deficiencies.
• Leverage excellent communication and
interpersonal skills in maintaining productive
relationships.
2017-10 -
2019-11
IT AUDITOR
Nineteenth Group of Companies, Atlanta, GA
• Played an integral role in supervising 5+ audit team members in performing internal audit fieldwork for audit areas assigned by audit shop.
• Ensured audits were aligned with best practices, department guidelines, and industry standards by
developing internal audit scope and plans.
• Documented audit findings and communicated
findings to appropriate parties.
• Identified control gaps in processes, procedures and systems through in-depth research and
assessment and suggested methods for
improvement.
• Conduct IT General Controls (ITGCs) and IT
Application Controls testing using COSO and CObiT
Frameworks.
• Utilized spreadsheets to track, manipulate, interpret, and communicate data.
• Planned and executed follow-up audits at
appropriate intervals.
Supported the
development,
implementation, and
monitoring of controls to
ensure proper asset
controls and policy
compliance.
Professional
Development
Benchmarked best
practices in data
reporting while being a
reliable point of contact
for business
stakeholders.
Motivated to expand
industry experience by
harnessing skills
pertaining to
governance, risk, &
compliance (GRC), IT
audit, customer-facing
technologies,
operational risk
management, and
other IT
Auditor/Compliance
Analyst competencies.
• Interpreted state and federal laws, accepted
auditing principles and procedures and program
standards to audited materials and data to detect
non-compliance and facilitate recommendations.
• Adapted plans and schedules to meet changing
priorities of work objectives, resources and workload demands.
• Participate in IT audit process from planning to follow-up phases, including financial, operational, and technology audits.
• Support IT Audit Readiness for Information Security Business Unit by assessing IT General controls.
2014-03 -
2017-07
Scrum Master
M&T Bank, Wilmington, Delaware
• Facilitated project teams to resolve impediments, create culture of openness and collaboration.
• Fostered strong spirit of communication and
collaboration between teams to align program
goals, deliver final products, and ensure leadership transparency to impediments and progress.
• Supported UX development teams on migration of
customers data to cloud for contact center’s use.
• Organized and facilitated sprint planning, daily stand-up meetings, sprint reviews, sprint
retrospectives, sprint and release planning, demos, and other meetings.
• Constantly developing collaborative working
relationships with multiple levels of functional
managers, and steering committees with a focus on
scaling agile within the organization.
• Managed the lifecycle of code development, from
ideation to sprints to development to testing.
• Formed scrum team and coached them on agile
methodology and scrum & KANBAN frameworks.
• Assisted with making appropriate commitments to
deliver business value through story selection,
definition of ready and estimation.
• Articulated stakeholder’s metrics to the scrum teams and accurately report progress, risks, successes, and failures.
• Protected team from over-commitment, managed
backlog, prioritized resolution of defects/bugs as evidenced by the on-time delivery of major
initiatives.
• Met quality standards by ensuring test driven
development (TDD) was adopted during sprints.
Education
2022-01 -
2023-12
Master of Science: Technology Project
Management
Illinois State University - Normal, IL
2010-04 -
2014-12
Bachelor of Science - BSc (Hons): Estate
Management
University of Lagos - Nigeria
Accomplishments
• Microsoft Office Suite (Word, Excel, Outlook, PowerPoint), Adobe, Compliance Frameworks (SOC 2,
• FedRAMP, NIST, HIPAA, ISO 2700 standard, PCI DSS) Certifications
Certified Information Systems Auditor (CISA),
Certification number: 232213936.
Project Management Professional (PMP)®
Professional Scrum Master (PSM)
Agile Certified Practitioner (PMI-ACP)
.