IT Auditor

TOBA SAMSON OLUSOLA

Washington DC *****

Tel:- 929-***-****, Email id:- adkil4@r.postjobfree.com

IT AUDITOR

PROFILE

An IT Auditor with years of experience in performing Audit for Commercial Clients using the applicable frameworks; COBIT, COSO, PCI DSS, NIST 800-53 and ISO 27001. In-depth knowledge of Sarbanes-Oxley Act (SOX), SAP,HIPAA, Risk Assessment, IT General Controls (ITGC), Control SSAE16 attestation and ERP security assessments.

QUALIFICATION HIGHLIGHTS

Extensive background in all stages of audits, including planning; study, evaluation, and testing of controls; reporting; and follow-up.

Good understanding of control frameworks such as COBIT, COSO, PCI DSS, NIST 800-53 and ISO 27001.

In-depth knowledge of Sarbanes-Oxley Act (SOX, SAP and business processes.

Ability to use MS Office (Word, Access, Outlook, Excel, PowerPoint).

Excellent project management, teamwork and leadership skills. Ability to deliver excellent value to clients and maintain effective client relationships.

Good analytical thinking, excellent communication and report writing skills.

WORK EXPERIENCE

EZEK SYSTEM LLC. SLIVER SPRING MD JAN 2017 - PRESENT TITLE: - IT AUDITOR

Performed assessment of IT internal controls as part of financial statement audit, Internal and Operational audits, Attestation engagement, and Audit readiness.

Documented control weaknesses and related testing exceptions including relevant controls in Enterprise Resources Planning (SAP, Oracle Financial and PeopleSoft) business processes.

Identified and communicated IT audit findings to client Management.

Performed all stages of audit, including planning; fieldwork/execution; reporting; and follow-up.

Handled special projects such as Segregation of Duties (SOD) and SOX Compliance and identified conflicts or inadequate internal controls and provided recommendations

Performed IT general controls audit such as, access control, change management, IT operations, disaster recovery and platform reviews (Windows and UNIX OS).

Prepared audit scopes, reported findings, and presented recommendations for improving data integrity and operations.

Performed application controls assessment in retail banking and Insurance industry by checking authorization control, interface control, computation control and data validity check.

Review and evaluate financial institution's records to ensure accuracy, completeness, and compliance.

Ensures compliance with established internal control procedures by examining records, reports, operating practices, and documentation.

Verifies assets and liabilities by comparing items to documentation.

Completes audit workpapers by documenting audit tests and findings.

Performed internal and external IT risk assessments; conducted gap analysis against industry standards, and provided recommendations on mitigation options

Evaluated segregation of duties over application security involving the company's ERP systems (SAP, PeopleSoft, and Oracle Financials) and execute audit strategy

Provided IT risk assessments and SAS 70 /SSAE18 and has conducted review of data centers, extranets, telecommunications and intranets to access controls and ensure availability, accuracy and security under all conditions.

UNICORN CONSULTING INC. DC JAN 2014- DEC 2016

TITLE: - IT AUDITOR

Performed audit with IT general controls such as, access control, change management, IT operations, disaster recovery and platform reviews (Windows, UNIX OS and Mainframe) using COSO, COBIT and PCI DSS frameworks

Performed and supervised IT General Controls (ITGC) and Application Controls (ITAC) audits over Oracle Applications and Databases, SAP Enterprise Resource Planning applications, AS/400 Business Planning and Control Systems.

Conducted testing of Sarbanes-Oxley (SOX) and communicates with the company's external auditors on general computer control related matters and SOX test procedures.

Performed IT Security and Privacy Controls Assessments over operation systems and networks against company IT security and privacy policies and industry standards including NIST SP 800 - 53 Security and Privacy Controls Standards and Payment Card Industry Data Security Standards (PCI DSS).

Reviewed systems and network documentation to identify security and privacy weaknesses for mainframe environment, windows operating system, UNIX operating systems and network devices.

Performed and supervised Statement on Auditing Standards Number 70 (SAS 70) Audits which are now known as Statement on Standards for Attestation Engagements Number 16 Service Organizations Controls (SSAE 16 SOC I, II and III) Audits.

Performed and supervised data center audits, Contingency Plans audits and System Development Life Cycle (SDLC) projects pre and post implementation reviews.

Performed aging analysis of account receivables and account payables transactions; tested for duplicate amounts within account receivables and payables transactions, and tested for gaps in invoice numbers using Audit Command Language (ACL) Computer-Assisted Audits Techniques tool.

Performed and supervised IT risk assessments, including providing advice and sharing IT internal controls knowledge with IT Management leadership and staff to strengthen IT risk, IT controls, IT governance and regulatory compliance.

EDUCATION

Shaw Academy, London, United Kingdom, Dip. Cert. Digital Marketing

University of Lagos, M.Sc. Organizational Behavior, Business Administration

University of Lagos, B.Sc. (Hons) Industrial Relations & Personnel Management

International MBA Institute Switzerland, Master of Business Administration, MBA Finance.

Certified Scrum Master (CSM)

Certified Information System Audit (CISA)

Certified INTERNAL Controls Auditor (CICA)

COMPUTER SKILLS

Microsoft words, Excel, Share Point Based System, SAP, Oracle Financial and IT Infrastructure.

PROFESSIONAL AFFILIATIONS

Members: Information Systems Audit and Control Association (ISACA); Institute of Internal Auditor (IIA).

LINKEDIN PRORILE LINKS

https://www.linkedin.com/in/toba-samson-olusola-dip-b-sc-m-sc-789a1143/

Contact this candidate