Information Security Lean Six

Ken Nzekwe

Katy, Texas *****

346-***-****

adf3bf@r.postjobfree.com

Audit Tools:

Advanced Excel, V-Look up, Word, Access, PowerPoint, SharePoint, Visio, MetricStream, TeamMate. Scanning tools: Nexpose, and NESSUS.

Professional Experience

Southwestern National Bank July 2017 to current

IT Auditor

Execute SOC 1, 2, 3 and SOC 1 type I audits, and perform SOC 1 type II and SSAE 18 reports review.

Develop IT audit programs/testing procedures, perform and document walkthroughs, and manage IT audit projects in collaboration with team members to determine design appropriateness and operating effectiveness of controls.

Execute pre and post SDLC implementation review, based on Agile methodology to establish control design adequacy and operating effectiveness.

Execute IT General Controls (ITGCs) and IT Application Controls (ITACs) testing on a risk-based method to verify control design and operating effectiveness.

Present IT audit activities in line with leading frameworks and standards from Cobit, COSO, NIST, ISO, FFIEC and GDPR.

Conduct annual PCI DSS and SOX compliance audits to meet regulatory requirements.

Perform cloud computing audit around encryption, security access control, confidentiality, integrity, availability and compatibility to determine adequacy and operating effectiveness.

Test IT controls within the ERP systems SAP and Oracle Financials and in-house-developed and third-party systems.

Involve in backup and recovery, data integrity and quality testing, segregation of duties and data center audit.

Establish controls design adequacy and operating effectiveness, and present audit results, issue recommendations that improves enterprise-wide control environment.

Serve as the contact person for the external and co-sourced auditors during special IT audit projects.

Execute IT Infrastructure control testing of Databases, Network devices, Operating Systems and Servers to verify design adequacy and operating effectiveness of controls.

Test Information Security controls around physical, technical, administrative safeguards and logical access.

Southwestern National Bank Feb 2016 to July 2017

Senior Project Manager

Interviewed subject matter experts, asked detailed questions and carefully recorded the requirements in a format that can be reviewed and understood by both business and technical people.

Facilitated and participated in weekly JAD sessions, Interviewed users and documented workflow requirements and specifications.

Gathered, analyze, organize and documented business and functional requirements as well as participate in design meetings.

Identified and involved all key stakeholders and ensure that they are motivated to complete assigned tasks within the parameters of the project plan.

Facilitated weekly validation sessions and worked alongside users to recommend and gather low level business processes.

Supported and uploaded requirement documents into clarity for better version control.

Created Process Workflows, Functional Specifications, and Functional Specification Document (FSD).

Developed User stories, Use Cases and business rules needed to design and implement the early childcare application.

Acted as a liaison between the business and IT design team

Evaluate information gathered from multiple sources and resolved any information conflicts

Certification

•CISA Certification.

•Agile Project Management and Delivery certification.

•Project Management Essentials Certification (PME)

•Lean Six Sigma White Belt Certification (LSSWB)

•Scrum Master Certification (SMC)

Education

BS, Political Science, Minor in Computer Science - Nnamdi Azikiwe University, Nigeria - 2009

Contact this candidate