IT security analyst, IT Auditor
Resume:
MATILDA AGYEI, CISA
**** ********** **, *******, *** 3313. TX 77084
Mobile: 713-***-****
Email: **************@*****.***
Country of Citizenship: United States of America
PROFILE
IT Auditor with over 5 years of experience in Information Technology Audit. Matilda is a Certified Information Systems Auditor (CISA) with vast experience in conducting IT audit, vulnerability and risk assessment. Expertise include: Information Technology General Controls (ITGCs), Application Controls, Risk Assessment, SOX Attestation Engagement and Compliance testing.
Compliance & Regulatory Frameworks: NIST 800-53, COBIT, COSO 2013, ISO 27001, SOX 404, HIPAA, HITECH, SSAE 18, SOC-2 &3, PCI-DSS.
IT Certification: CISA, Security +, Certified Ethical Hacker (CEH), Scrum Master Certification.
Professional Organization: ISACA
WORK EXPERIENCE
DeeRich Consultant
IT Auditor January 2017- July 2020
Perform risk-based audit, IT application controls testing, risk assessments, and audit readiness testing
Plan, scopes and develop the audit test plan based on comprehensive IT risk analysis
Perform walkthrough, interviews and IT control testing within the company’s business units
Analyze the design and operating effectiveness of IT controls and promotion of best practices across the organization including security configuration and access provisioning, application security.
Document processes using narratives, flowcharts, process maps and analyzes process documentation to evaluate effectiveness and efficiency
Documents and test critical business system continuity and disaster recovery plans
Document findings and discuss with appropriate control owners. Discuss identify the control gaps and work with appropriate control owners towards implementation.
Make appropriate recommendations and reports the results of audits and address material issues with senior management
RIS Group LLC, VA September 2014-December 2016
Information Assurance Officer /Risk Assessor
Responsible for implementing and enforcing an Information Assurance (IA) program at the organization
Perform IT risk assessment and document the system security keys controls.
Proven knowledge of security methodologies, policies, standards and best practices
Meet with IT team to gather evidence, develop test plans, testing procedures and document test results and exceptions.
Design and Conduct walkthroughs, formulate test plans, test results and develop remediation plans for each area of the testing.
Wrote audit reports for distribution to management and senior management documenting the results of the audit.
Develop a Business Continuity Plan and relationship with outsourced vendors.
Evaluate client’s key IT processes such as change management, systems development,
Computer/data center operations and managing security at database, network and application layers.
IT Junior Auditor November 2010- June 2013
Ghana Health Service
Participated in all areas of the end to end IT Audit process under the supervision of a senior auditor. Conducted fieldwork, discussed weaknesses/ findings and observations with stakeholders.
• Performed IT General and Application Controls reviews of various COTS and custom applications and processes. Assisted in the attainment of audit objectives through the execution of test plans using as criteria, the company’s policies and procedures within the scheduled timeline.
• Assisted in testing samples of evidence, documenting audit findings, preparation and review of audit work papers for completeness.
• Participated in Audit Planning and execution including included risk and control evaluation.
• Participated in meetings with auditee groups.
• Exhibited diligence in learning about the latest audit techniques, standards, and best practices through continual research.
EDUCATION
Bachelor’s Degree
Grand Crayon University, Phoenix Arizona. December 2018
SKILLS, QUALIFICATIONS & CERTIFICATIONS
Certified Information Systems Auditor (CISA)
Proficient Knowledge of industry frameworks such as NIST, HIPAA, HITECH, ISO 27001, PCI DSS and SOX
Proficient knowledge of MS Access, MS Excel, MS PowerPoint, MS Word, MS Visio, and MS Project
Contact this candidate