Compliance Analyst Project Management

RAHJANAE DARAMOLA

662-***-**** ****************@*****.*** A n n a, TX

PROFILE

IT Auditor and Compliance Analyst with over 6 years of extensive experience in internal controls, IT risk governance, compliance assurance, and IT general and application control testing. Skilled in conducting SOX internal control testing, SOC reviews, walkthroughs, audit readiness follow-ups, and tests of controls for both public and private entities. With over 6 years of hands-on leadership experience, I excel at leading cross-functional teams. I possess strong technical expertise and international business acumen, paired with exceptional communication skills. I thrive in fast-paced environments, showcasing my multitasking abilities, strategic planning, problem-solving, and project management skills. Self-directed and adaptable, I excel in diverse professional settings. TECHNICAL SKILLS

Auditing Expertise: ITGC Reviews, SOC 1/2/3, SOX Compliance, PCI DSS, GDPR, HIPAA, ISO 27001 Audits. Frameworks & Standards: NIST (800-53, CSF), COBIT, CIS Controls, ITIL, COSO. Risk Management: Enterprise Risk Management (ERM), Third-Party Risk, Risk Assessments, Business Continuity, Vendor Risk.

Compliance: Regulatory Compliance (SOX, GDPR, HIPAA), Policy Development, Legal/Regulatory Updates. Tools & Technologies: RSA Archer, MetricStream, ServiceNow GRC, Nessus, Qualys, Rapid7, Splunk, Azure Sentinel.

Cybersecurity: Security Controls Testing, IAM, Incident Response, Cloud Security (AWS, Azure, GCP). Data Analysis: Advanced Excel, Tableau, Power BI.

PROFESSIONAL EXPERIENCE

IT Senior Risk Associate

Deloitte Touche LLC June 2022 – Present

• Spearheaded end-to-end client engagements, encompassing IT internal audit, risk management, and compliance initiatives across various frameworks (SOC 1/2/3, HIPAA, SOX).

• Orchestrated co-source and outsourcing IT internal audit projects, IT internal controls reviews, and IT Risk management program assessments.

• Collaborated with senior leadership to optimize project management, including strategic planning, timeline development, budgeting, and status reporting.

• Cultivated client relationships by addressing business challenges and enhancing project execution efficiency.

• Supervised, trained, and mentored junior staff and interns throughout engagements.

• Conducted performance evaluations and provided constructive feedback to foster professional growth.

• Leveraged industry knowledge to guide team members in identifying and addressing potential issues and risks in IT landscapes.

• Designed and implemented customized IT internal audit work plans and control test procedures, tailored to engagement scope and client-specific risk profiles.

• Conducted comprehensive assessments of IT General Controls, Application Controls, and Key Reports.

• Evaluated internal controls over financial reporting (ICFR) for Sarbanes-Oxley (SOX) Compliance programs.

• Performed in-depth reviews of internal controls and system security for developmental projects and major IT initiatives.

• Identified key risks and developed strategic recommendations for effective risk mitigation.

• Prepared meticulously organized work papers and delivered comprehensive written reports.

• Presented audit findings and recommendations to management through engaging presentations. Information Technology Auditor

One Source Virtual November 2018 – May 2022

• Guided and implemented regulatory certification and compliance assessments for information systems in accordance with standards such as PCI DSS, PCI SLC, NIST 800-53, ISO 27001/27002 (ISMS), ISO 22301

(BCMS), SOC 2, and CIS v8.0, aligning with organizational business requirements and security objectives.

• Developed validation strategies and drafted comprehensive work papers for moderately complex regulatory issues, actively monitoring business-driven issue remediation efforts and engaging in discussions regarding validation outcomes.

• Completed assigned regulatory issue validations within designated timeframes and budget constraints.

• Proactively monitored, assessed, and recommended solutions for emerging risks, contributing to risk mitigation efforts.

• Enhanced audit processes by contributing to the development of automated routines and other improvements.

• Applied internal audit standards, policies, and regulations to deliver timely audit assurance and shape audit scope, serving as a subject matter expert (SME) for senior stakeholders and team members.

• Led Information Technology (IT) audits or participated in audit teams, conducting reviews of systems, applications, and IT processes.

• Identified risks, formulated recommendations for risk mitigation, prepared meticulous work papers, and effectively communicated audit findings through written draft reports and presentations to management.

• Conducted issue validation testing to ensure timely management follow-up on findings, monitoring, and tracking remediation efforts.

• Participated in reviews of internal controls and system security for projects under development and major IT initiatives, leveraging expertise in current IT environments and industry trends to identify and advise management on potential issues and risks.

EDUCATION & CERTIFICATION

Bachelor of Science, Accounting,

University of Lagos

Certification: CISSA

Contact this candidate