Information Technology Internal Controls

Tierra Culberson

Dallas, TX. PH: 501-***-**** Email: ***************@*****.***

Work Experience

*-******, ***., ******, *****

Internal Controls Auditor (Contract Hire) April 2024 – Current

Conduct audits of information technology systems and processes to identify potential risks, vulnerabilities, and areas for improvement

Develop and implement audit procedures to evaluate the effectiveness of technology controls and processes

Monitor compliance with state and federal regulations related to IT security and privacy

Identify and assess potential risks to the company’s IT infrastructure and make recommendations for mitigation

Communicate audit findings and recommendations to management and stakeholders in a clear and concise manner

Collaborate with IT professionals and other stakeholders to develop and implement risk management strategies

Stay up-to-date with the latest industry trends and best practices in information technology and security

Develop and maintain documentation of policies, audit procedures, findings, and recommendations

Conduct regular reviews of IT policies and procedures to ensure they align with current regulations and best practices

Assist in the development and implementation of IT training programs to promote security awareness and compliance

Provide guidance and support to other team members on IT audit processes and procedures

Participate in IT projects and initiatives to ensure security and compliance considerations are incorporated

Perform audit inquiry on private and security incidents or breaches and make recommendations for remediation

Maintain confidentiality and comply with ethical standards in handling sensitive information

Experience building and maintaining relationships with stakeholders

Goosehead Insurance Inc., Dallas, Texas

IT Internal Controls Analyst March 2021 – April 2024

Performs audit planning, conducts walkthroughs, and assesses the internal control environment to ensure coverage through control testing.

Evaluate the IT General Controls (ITGCs) and IT Application Controls testing using a risk-based approach to identify process improvement opportunities.

Reviews control of designs and provides recommendations based on best practice guidelines.

Ensures that Policies, Standards, and Procedures are implemented according to management directives.

Supports management in performing IT risk assessments, designing test plans, and executing control testing procedures.

Proficient in evaluating and enhancing IT controls, policies, and procedures to align with industry standards and regulatory requirements.

Collaborate with cross-functional teams, including IT, finance, and legal, to ensure SOX compliance initiatives.

Skilled in documenting control deficiencies, proposing remediation plans, and tracking resolution progress.

Proficient in using industry-standard software and tools for compliance management and audit reporting.

Apply frameworks, including COSO, COBIT, and ITIL to determine design adequacy and operating effectiveness of internal controls.

Developed and maintained a comprehensive repository of IT controls and documentation, including narratives, flowcharts, and control matrices.

Excellent communication skills, both written and verbal, to convey complex technical concepts to non-technical stakeholders.

Greenpipe Global Services, Dallas, Texas November 2018 –February 2021

IT Systems Analyst

Served as liaison between departments and operating units to resolve day-to-day administrative and operational problems.

Coordinated in-depth process, environmental, and needs analysis to identify and assess procedure issues and produced process flow using MS Vision and PowerPoint.

Monitor, analyze, and maintain project budget and expenditures.

Creates and updates project documentation.

Provided level 2 technical support for downtown core employees and contractors for various hardware and software trouble tickets within SLAs.

Collaborated with network engineers, equipment vendors, and telecom carriers to troubleshoot and resolve various types of network issues and outages.

Demonstrated proficiency with Microsoft Office (including Visio).

Experience Highlights

ITGCs and IT Application Controls testing, IT Governance, Policies, Standards and Procedures, SOX HIPAA, PCI-DSS, Privacy Compliance Data Center Audits and Infrastructure Reviews Disaster Recovery Business Continuity Planning Vendor Management Comprehensive Audit Plans & Management and Information Systems & Security Auditing

Skills and Tools

Operating Systems: UNIX, Linux Servers, Windows O/S, AS400, VMWare Applications: Microsoft Suite- (Word, Excel, PowerPoint, Visio, Access, Outlook, Access), TeamMate, SharePoint, Databases: Oracle, SQL Server, Scanning Tools: CyberArk, AlertLogic, SolarWinds, NESSUS, Foundstone Standards: ISO 27001, COSO & COBIT 5 NIST 800

Education

Rivers State University, Rivers State, Nigeria

Bachelor of Science in Business Management.

Certifications

Certified Information Systems Auditor Certification (CISA)

Memberships

Information Systems Audit and Control Association (ISACA) - North Texas Chapter

Institute of Internal Auditors (IIA)

Contact this candidate