BEVERLY MORTUNE

561-***-****

ad2xba@r.postjobfree.com

FRISCO, TX

Experienced CISA certified IT Auditor. I Have an extensive background with SOX Compliance, Risk Management & Analysis and IT Audits and Control testing and procedures to achieve optimal Compliance along with desired IT industry standards and procedures like SOX, COBIT, SOC 1, 2, 3 COSO, ISO 27001, FISCAM, ITIL, NIST and FFIEC framework. Having an in-depth knowledge and experience at managing end-to-end SOX IT audit process and procedures, including planning the Sox engagement, determining the scope, Assessing, and identifying risks and Controls, Risk analysis and management, designing Audit Program, managing test result, and evaluating the results. Comprehensive understanding of the design of Control testing and auditing components with the capacity to advise internal teams on optimizing the efficiency of audit and lowering risks to minimal level. I engage in IT Operational audits, complex IT Systems, Risk assessment / readiness.

EXPERIENCE

SENIOR IT AUDITOR/ RISK COMPLIANCE ANALYST

Walmart Inc.

June 2022 - Present

Participated in all phases of IT audit - planning, fieldwork, and follow-up using the application framework.

Participated in Risk assessment, identification of vulnerabilities, developed, implemented and maintenance of policies and procedures to align with regulatory requirements and best practice.

Ensured appropriate internal control frameworks are established and maintained risk control measures.

Performed Audit Readiness for SOC 1 type I and SOC I type II and SSAE 18 report review.

Developed test scripts, test requirements, and test cases in accordance with functional specification.

Performed audit tests, compliance tests, substantive tests and identified key controls and weak points and mapped them against the COBIT framework.

Performed IT General Controls (ITGCs) and IT Application Controls (ITAC) testing to establish design adequacy and operating effectiveness.

Reviewed organization external regulatory reports and compliance audits including SOC 1 & 2, and other compliance framework aligned to the IT infrastructure in scope.

Tested application controls, including both logical and physical access controls to ensure the effectiveness of functionality, good reporting, and interfaces.

Participated in Information Security projects, such as new technology implementations and enhancements to existing tools, Lead walkthrough of key ITGC processes and controls and ensure internal process flowcharts/narratives are up to date and accurate.

Worked closely with the IT Audit Manager on ensuring that adequate documentation exists to support audit work performed.

Completing audit procedures including conducting interviews, reviewing, and analyzing evidence, identifying, and defining issues, and preparing audit workpapers

Assisted external and internal auditor with annual SOX compliance audits.

Monitored compliance with organizational policies, procedures, and overall information management strategy.

Communicated with external auditors to coordinate PBCs, reliance testing.

Performed ITGC review and testing of key applications following company set standards/policy and IT business processes.

IT AUDITOR/SOX COMPLIANCE

Western union.

February 2018 – May. 2022

Performed IT General Controls (ITGCs) and IT Application Controls (ITAC) testing to establish design adequacy and operating effectiveness.

Met with control owners to document the respective IT and business processes to understand and document the process for SOX 404 compliance.

Reviewed and tested for segregation of duties (SOD) and accessing control in application to ensure compliance with SOX.

Participates in Information Security projects, such as new technology implementations and enhancements to existing tools and migration processes.

Participates in annual regulatory reporting activities (SOC 2)

Evaluated control design effectiveness via walkthroughs from end to end to determine the design effectiveness of the controls.

Performed reviews of IT policies and procedures such as change management, business continuity planning, disaster recovery and information security.

Assisted in the preparation of Internal Audit reports which include formal recommendations to management for review and implementation.

Worked closely with various areas of IT to design, document, and test controls.

Performed audit field work necessary for evaluating the effectiveness of internal controls, efficiency of operations, compliance with corporate policies and procedures and industry laws/regulations.

Evaluated and tested key financial and business processes and controls on an on-going basis and identify areas of risk.

This evaluation includes both financial and IT related key controls.

TECHNOLOGY OPERATIONS MANAGER

Power Systems Technology Limited Nigeria

May 2010 - January 2016

Oversee and manage the daily operations of the IT department and ensuring that systems, networks and entire IT infrastructure is running smoothly as designed with 99.9% availability.

EDUCATION

BACHELOR OF SCIENCE (B.S.) IN SCIENCE AND TECHNOLOGY

Nnamdi Azikiwe University, Awka 1990 - 1996

BACHELOR OF ARTS (B.A.) IN BUSINESS ADMINISTRATION

Esut Business School,, Lagos 1997 -1998

SKILLS

Oracle Database SQL Database.

Window Server PeopleSoft NIST SP 800-53 Rev 4 LINUX Network Systems Windows OS.

COBIT ISO 27001 SOC 2 SOC 123 FISMA FISCAM COSO GDPR ITIL NIST FFIEC SOX HITRUST.

Microsoft Excel – Vlookup, Microsoft Excel-Pivot Salesforce Snow Intrusion Detection Systems Firewall Teammate Metric Stream Microsoft Dynamics Peoples Soft ERP Active Directory Azure Microsoft Dynamics.

Audit Command Language (ACL) SAP GRC – Archer Metric stream Splunk ADP sail point MS Azure cloud AWS Power shell Oracle Jira IDEAL Oracle Audit Board Randomizer Salesforce.

CERTIFICATIONS

Certified Information Systems Auditor (CISA)

Certified in Risk and Information (CRISC)

Certified Scrum Master - International Scrum Institute CSM.

LANGUAGES

English

Advanced

_{$PIND}

Contact this candidate