Post Job Free
Sign in

Information Systems Security

Location:
Katy, TX
Posted:
August 31, 2023

Contact this candidate

Resume:

Oluwaseyi Oguntola

IT Audit and Security Professional

adzdwu@r.postjobfree.com • 862-***-****

• www.linkedin.com/in/oluwaseyioguntola

Highly skilled and experienced IT Audit and Security Professional with a proven track record of success in conducting audits across multiple sectors, including security, operations, business, infrastructure, data center, and cybersecurity. Specialized in enterprise security and control implementations and effectiveness testing, with expertise in identifying vulnerabilities and minimizing risks. Adept at optimizing application designs and operational adequacy through comprehensive examinations of information technology general controls (ITGCs) and assessing system/network availability, security, and data integrity.

Technical Proficiencies:

SharePoint MS PowerPoint Access V-Lookup MS Word Microsoft Office

MS Project Microsoft Excel Pivot tables Outlook Microsoft 365

Teammate SAP Windows OS UNIX OS LINUX OS AuditBoard Audit assistant Workivia My Audit

Career Experience:

Senior Auditor (Technology - Cyber and Infrastructure) - Citi (Nov/2022 – Present)

Manage and execute end-to-end audit projects, from planning to reporting, identifying audit issues, and effectively communicating them to management, along with improvement and remediation recommendations.

Plan and lead teams to conduct risk-based audits on business processes, applications, and technology infrastructures supporting business activities.

Deliver audit conclusions in compliance with the Institute of Internal Audit (IIA) and Information Systems Audit and Control Association (ISACA) standards.

Collaborate with financial and operating auditors to assess IT areas and related control needs as an integrated team member.

Review work papers, provide staff training, and ensure quality documentation.

Evaluate key IT controls, such as backup, data integrity, testing, audit logs, remote access control, and application-level security, to deliver valuable information.

Conduct cybersecurity audits aligned with the NIST framework, managing projects within allocated budgets and timelines.

Executes audit readiness to identify and correct internal control weakness to follow SOX requirements.

Conduct annual SOX testing.

Supervise interns and junior auditors to enhance their audit and operational skills.

Lead teams in testing the design appropriateness and operating effectiveness of IT General Controls (ITGCs) and IT Application Controls (ITAC) within financial data housing systems and underlying IT infrastructure, adhering to PCAOB requirements.

Improve audit unit organizational structure, policies, and procedures by developing and sustaining relationships with key personnel.

Conduct and finalize effective IT infrastructure and data center audits to evaluate organizational efficiency.

Advisory Senior Consultant (IT & Specialized Assurance) - Deloitte (Nov/2021 - Sep/2022)

Led teams in testing IT General Controls' design appropriateness and operating effectiveness (ITGCs).

Executed attestation engagements of SOC 1 and 2 reports for service organizations.

Planned and conducted risk-based audits on business processes, applications, and technology infrastructures supporting business activities.

Developed strong working relationships with management members to understand the business comprehensively.

Reviewed audit work papers submitted by associate staff as a middle-line reviewer.

Managed teams, performed timely work reviews, and provided constructive feedback.

Finalized audit findings, provided an overall opinion on the control environment, and developed recommendations to strengthen internal controls.

Communicated audit findings to management, identifying opportunities for control design and effectiveness improvements.

Actively Supervised, documented, and analyzed processes, risk and control matrices in support of financial reporting to produce high-quality SOX narratives.

Extensive experience in SOX 404

Assurance Team Leader – Information Technology - Pitney Bowes (Jul/2021 - Oct/2021)

Planned and conducted audits of IT systems to assess the adequacy and effectiveness of the internal control environment.

Managed and participated in audit engagements, ensuring quality deliverables within budget and timeline.

Worked with cross-functional teams across the organization, allocating resources to achieve audit goals.

Supervised the development of training materials and trained Associate Auditors on identifying and testing cybersecurity components.

Performed Vendor Risk assessments, evaluated SOC 1, 2 - Type 1 & 2 Reports, and ensured compliance with regulatory and industry requirements.

Conducted internal training sessions, sharing knowledge and best practices within the Internal Audit department.

Senior IT Auditor - SMBC (Jan/2021 - Mar/2021)

Performed information security and cybersecurity audits, focusing on administrative, physical, and technical safeguards, including control testing.

Documented audit conclusions in accordance with ISACA and Information Systems Audit and Control Association (ISACA) standards.

Conducted Identity Access Management audits, assessing key risk drivers and controls.

Communicated control gaps and audit results to senior management and stakeholders.

Coordinated and conducted risk-based IT audits to identify control gaps and areas for improvement.

Senior IT Auditor - Nagspro (Apr/2020 - Dec/2020)

Developed the Internal Audit department's Audit Plan and audit programs.

Cultivated strong relationships with management to gain a comprehensive understanding of the business.

Validated closure documents for regulatory and internal audit findings.

Executed integrated audits, participated in walkthroughs, assessed IT/IS risks and controls, and articulated audit findings.

Identified and recommended enhancements to processes, procedures, and controls.

Conducted IT General Controls (ITGCs) and IT Application Controls (ITAC) walkthroughs and testing.

Prepared draft audit reports for presentation to executive management and Audit Committee.

Audited information systems, platforms, and operating procedures for efficiency, accuracy, and security.

Assurance Senior Associate (IT Audit) - CohnReznick LLP (Nov/2019 - Mar/2020)

Evaluated IT General Controls (ITGCs) and IT Application Controls using COSO and COBIT Frameworks.

Executed technical audits of IT infrastructure controls, including servers, active directory, and databases.

Participated in all phases of audits, from planning to reporting, at affiliate locations.

Identified and evaluated risks, providing recommendations during System Development Life Cycle (SDLC) reviews.

Conducted audit readiness activities to correct internal control weaknesses for compliance with SOX requirements.

Executed IT operations, backup, restoration, and disaster recovery audits.

Participated in the review of management's self-identified risks and control gaps.

Assisted with operational and compliance audit processes, including documenting management directives and internal controls.

Sr IT Auditor - North Atlantic Global Services (Now Nagspro) (Sep/2017 - Nov/2019)

Reviewed control designs for new IT projects before implementation.

Built strong relationships with business units and technology clients.

Supervised and trained junior auditors and interns.

Conducted walkthroughs and tested the design appropriateness and operating effectiveness of ITGCs and ITAC.

Performed cybersecurity audits aligned with the NIST framework.

Reviewed pre-and post-implementation of System Development Life Cycle (SDLC) controls.

Executed information security and cybersecurity audits, focusing on administrative, physical, and technical safeguards.

Documented audit conclusions in compliance with IIA and ISACA standards.

Conducted ad-hoc internal control assessments.

Performed audits of enterprise IT systems in line with information security frameworks.

IT Auditor - Ecobank Transnational Inc. (Apr/2013 - Sep/2017)

Executed assigned audit projects according to the Internal Audit Plan.

Implemented audit testing procedures, documented test results, and assessed internal control effectiveness.

Mentored and guided interns for the seamless execution of audit projects.

Ensured timely completion of audits from initiation to finalization.

Operations Manager - Oceanic Bank International (Now Ecobank) (Aug/2007 - Feb/2013)

Implemented bank-wide policies for branch operations, ensuring effective service delivery.

Supervised operations staff and provided compliance reviews.

Education:

Master of Business Administration, Ladoke Akintola University of Technology, Ogbomosho 2005

Bachelor of Technology - Applied Sciences, Ladoke Akintola University of Technology, Ogbomosho 1998

Certifications:

CISSP (Certified Information Systems Security Professional) 2023

CISA (Certified Information Systems Auditor) 2019

CISM (Certified Information Security Manager) 2020

CRISC (Certified in Risk and Information Systems Control) 2020

CDPSE (Certified Data Privacy Solutions Engineer) 2020

CompTIA Security+ 2019



Contact this candidate