RAJ KANDUKUR mba cpa email: ad47u4@r.postjobfree.com
*** ********** ** *Toronto *ON *M4X 1W7 *Tel: 416-***-****
PROFILE
MBA and CPA with progressive experience in managing and performing IT and compliance audits as per Coso, CoBiT and provisions of SOX, SSAE 16 (SOC) & ISO 27k, risk assessment, documenting, testing and monitoring key controls in IT processes, preparing IT control risk matrices, reporting test results of IT controls. Exceptional client relationship with strong analytical, logic, problem solving and management skills, ability to meet tight deadlines with conflicting priorities, self-motivated with excellent interpersonal and project management skills.
PROFESSIONAL EXPERIENCE
Sr. IT Audit Professional Feb 2024 – Present
InfoBiz Solutions
Designed, developed and tested IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX, SSAE 16 (SOC) and ISO 27k using COSO, and CoBiT guidelines in GRC and cyber security implementation of the clients
Mapped and implemented Cyber Security Framework as per NIST guidelines for the clients
IT Audit Manager Mar 2022 – Dec 2023
Scotia Bank, ON/NY
Designed, developed and tested IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX, CoBiT guidelines in GRC
Designed, developed, tested and documented IT general/infrastructure and application controls which address the organization's risk areas under SOX 404 compliance, using CoBiT /NIST guidelines
Sr. IT Audit Consultant Apr 2019 – Jan 2022
KPMG, ON/NY
Designed, developed and tested IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX, SSAE 16 (SOC) and ISO 27k using NIST, COSO, and CoBiT guidelines in GRC and cyber security implementation of the clients
Designed, developed, tested and documented IT general/infrastructure and application controls which address the organization's risk areas under SOX 404 compliance, using CoBiT /NIST guidelines
Mapped and implemented Cyber Security Framework as per NIST guidelines for the clients
IT Audit Professional Feb 2018 – Jan 2019
PwC, VA
Designed, developed and tested IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX, SSAE 16 (SOC) and ISO 27k using COSO, and CoBiT guidelines in GRC and cyber security implementation of the clients
Mapped and implemented Cyber Security Framework as per NIST guidelines for the clients
Sr. IT Auditor Mar 2017 – Dec 2017
CareFirst BCBS, MD
Designed, developed and tested IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX, SSAE 16 (SOC) and ISO 27k using COSO, and CoBiT guidelines in GRC and cyber security implementation of the clients
Designed, developed, tested and documented IT general/infrastructure and application controls which address the organization's risk areas under SOX 404 compliance, using CoBiT /NIST guidelines
IT Audit Project Manager
GE Power & Water, Blue Ash, OH Apr 2014 – Dec 2016
Designed, developed and tested IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX and ISO 27k using COSO, and CoBiT guidelines in GRC implementation
Designed, developed and tested security controls in the key process of ITIL, DR, SDLC, change management, account management and incident management
Conducted tests of IT controls under SOX 404 & ISO 27k compliance and worked closely with KPMG audit firm
Mapped and implemented Cyber Security Framework as per NIST guidelines
Prepared entity wide risk assessment through Form-10K deconstruction and identified significant accounts and processes for IFCR/Internal Audit
Sr. IT Audit Project Professional
FTI Consulting, Annapolis, MD Apr 2012 – Dec 2013
Prepared entity wide risk assessment through Form-10K deconstruction and identified significant accounts and processes for Internal Control over Financial Reporting
Designed, developed and documented IT general/infrastructure and application controls and identified key IT security controls which address the organization's risk areas under SOX, SOC & ISO 27k using COSO, and CoBiT guidelines
Designed and developed security controls in the key process of ITIL, DR & BCP, SDLC, change management, account management and incident management
Conducted tests of IT controls under SOX 404/ISO 27k compliance and worked closely with KPMG audit firm
EDUCATION AND PROFESSIONAL DEVELOPMENT
Certified Public Accountant (CPA) from State of Delaware, USA
MBA (Information Systems) from Osmania University, India
(Equivalent to master’s degree of university in the US as evaluated by Foreign Academic Credentials Service Inc)
OTHER QUALIFICATIONS
Computer Proficiency: Windows, Word, Excel, Visio, Oracle, SAP, PeopleSoft, Mainframe, AS 400, MAS 200, EPICOR, Policy IQ, Open Pages, eAudiT, Teammate and ITERM