Randy Swensen
Aurora, CO 720-***-****
adb5tc@r.postjobfree.com www.linkedin.com/in/randyswensen A Cubed Quality LinkedIn Company Page
Compliance Consultant
Devise Innovative Solutions that Improve Business Operations and Regulatory Compliance
Senior advisor and private consultant experienced in creating team-focused environment, incorporating cross-utilization training, and implementing controlled process structure under ISO 9000, Six Sigma, IT Infrastructure Library v3 (ITIL), and Institute of Configuration Management CM II Standards. Known for taking pragmatic approach to all work assignments, going above and beyond to deliver best results.
COSO IT General Controls (SOX), GS007, AAF
Cyber Security Mitigation Strategy
Audit Review Process
Segregation of Duties
IT Security Policies / Processes
NIST & ISO Cyber Security Framework
General Data Protection Regulation (GDPR)
Requirements Elicitation
Colorado Protections for Consumer Data Privacy Law, HB 18-1128
PCI DSS
Professional Experience
A CUBED QUALITY, Englewood, CO
Owner / CEO 2012 - Present
Conduct business cost recovery analysis for specialized tax savings, business cost savings, and class action settlements. Analysis has no up-front cost to client, with payment structured so A Cubed Quality receives specified percentage of savings upon completion of project. Areas of savings include workers’ compensation, health care and employee benefits, credit card processing, and tax credits.
Researched feasibility of adding additional services to company portfolio, bringing additional savings to clients.
Defined and managed fixed annual budget, limiting operating costs significantly.
Worked with chambers of commerce and economic development councils, defining partnerships to assist members with suitable services.
Studying for CISSP
ADVANCED EMISSIONS SOLUTIONS, Highlands Ranch, CO
Manager IT SOX Compliance 2017 - 2019
Defined and Managed implementation of 13 security upgrades to include next-generation firewall. Managed IT request for quote and purchase orders supporting IT budget. Built out IT general controls (ITGC) in support of NetSuite ERP integration project. Performed monthly and quarterly ITGC audits and supported reviews with external audit team. Managed IT vendors supporting NetSuite, computers, network, and data.
Built NetSuite roles segregation of duties (SOD), mitigating role and user conflicts using Fastpath compliance tool.
Created OTRS upgrade requirements and process flows, more effectively supporting change control, ticketing, and access control processes.
Defined and Managed thirteen Cyber Security Upgrades to meet Board of Director Requests.
CREDERE GROUP, Englewood, CO
Business Process Consultant, Advanced Emissions Solutions Company 2015 - 2017
Developed IT security policy and processes under NIST Cyber Framework, ITIL v3 standard and Sarbanes Oxley (SOX) requirements to create best practice standards for day-to-day operations. Configurated Fastpath Assure, Audit Trail, Audit View, Config AD, and Identity Manager along with reports development for Great Plains Segregation of Duties analysis, providing compliance monitoring under ITGC Controls.
Developed quality assurance and change and configuration management standards, conforming to Sarbanes Oxley (SOX) requirements, mitigating internal deficiencies.
Designed and tested access control structure for onboarding and off-boarding using Open Technology Real Service (OTRS) technology, allowing for traceability and approval in access to key systems.
Assisted in MS Dynamic Great Plains segregation of duties assignments and management, ensuring SOX compliance and eliminating conflicts.
Created and maintained work breakdown structure and project plan, delivering required implementations against aggressive schedule and meeting required deadlines.
Randy Swensen adb5tc@r.postjobfree.com Page Two
WELLPOINT, Denver, CO 2004 - 2012
Senior Advisor Process Engineer 2010 - 2012
Served as Process and Product Quality Assurance (PPQA) Team Lead mentoring assessors on PPQA process. Provided quarterly metrics to senior leadership team and process owners. Developed PPQA framework, assessment checklist, quarterly schedule, and reporting structure for projects, small change requests, and “lights on” work efforts.
Provided analysis and feedback of Lean SDLC process (Rational Unified Process) regarding clarity, providing efficiency and effectiveness in support of WellPoint needs and industry best practices.
Defined key performance indicators (KPIs), allowing early detection of process and product quality gaps.
Senior Quality Assurance Advisor 2008 - 2010
Contributed in IT health check bi-weekly sessions with VPs to evaluate gaps / escalations within strategic initiatives. Provided project status and communication to all stakeholders, vendors, and support organizations. Participated in enterprise technical deep dive sessions around new technology and architecture for future build-outs in support of driving efficient and effective structure.
Provided consulting for defined compliance criteria initiatives including SOX, HIPAA, and CMS, assisting WellPoint in risk mitigation to IT and BUS program and project managers, while helping to define options based on known constraints, which improved communication to initiative stakeholders.
Quality Assurance Advisor 2004 - 2008
Performed QA advisor role for teams in support of QA Analysts, configuration management, and release management in support of migration to enterprise solutions including ETS - NetworX and enterprise provider database solution. Developed departmental quality assurance policy and quality management plan in support of migration to enterprise solutions.
Worked with internal QA peers as well as architecture teams, leading definition of enterprise project management methodology and software development life cycle artifact quality inspections, metrics, and additional test metrics, implementing consistency across organization.
Evaluated enterprise software development life cycle (SDLC) against ESQA process and structure, ensuring continual progression that stayed in sync.
Additional Relevant Experience
COMCAST, Denver, CO, Senior Manager Quality Assurance
OPHIR, Littleton, CO, Quality Assurance Engineer
Education
Bachelor of Science (BS), Quality Control, Kennedy-Western University, Online
Engineering Technology in Telecommunication, Denver Technical College, Denver, CO
Coursework in Pre-Engineering, Kansas City Kansas Community College, Kansas City, KS
Military Service
US AIR FORCE, Belgium, Florennes Air Base, Electronic Calibration Technician
Professional Affiliations
Senior Member, American Society for Quality (ASQ)
Division Member, ASQ Audit Division and Quality Management
Member, Colorado Quality Executive Network (CQEN)
Co-Chair, Rocky Mountain Quality Conference, 2005 - 2006
Professional Development
Managing Risk in the Information Age, Harvard PVAL Cyber Security Course, Credential ID 13455019
NetSuite Audit and Controls Training, NetSuite, 2018
NetSuite Administrator Fundamentals Training, NetSuite, 2017
Specialized and Technical Skills
PMP Book of Knowledge and Best Practices
Configuration Management II Structure and Best Practices
Microsoft Office Suite: Access, Excel, PowerPoint, Word, Visio, SharePoint, Visual SourceSafe