Risk Management It Security

Ikem Agbai

*********@*****.*** 704-***-**** **** Comfrey Ct, Charlotte, NC 28213

PROFESSIONAL SUMMARY

Dedicated Cyber Risk Analyst with 9+ years of experience in IT compliance, risk management, and cybersecurity audits. Proven expertise in evaluating, testing, and remediating IT security controls to ensure alignment with regulatory requirements such as PCI, SOX, SOC 1&2, NIST, ISO 27001, and Sarbanes-Oxley

(SOX). Skilled at assessing and mitigating cybersecurity risks, performing access control audits, and collaborating with cross-functional teams to enhance security posture. Adept at applying risk management frameworks and ensuring effective internal controls in complex IT environments. Demonstrated success in managing audits, identifying security vulnerabilities, and driving improvements in compliance procedures. SKILLS PROFILE

Environmental Management Information Technology Sox Compliance Geological Data Analysis Equipment Testing & Monitoring Operations Efficiency Regulatory Compliance Team Leadership Talent & Resource Allocation Sarbanes Oxley Compliance Identity Management Assessment of Internal Control Good knowledge of IIA standards IT Security and Risk Management Microsoft Office Suite Information Security Essential and Incident Management Business Analysis Process Credit Analysis and Loan Pricing and Regulation Anti-Money Laundering and Regulatory Framework. PROFESSIONAL EXPERIENCE

Digital Security Compliance Analyst

ImagineSoftware – Charlotte, NC Dec 2020 – Present

• Lead efforts as the first line of defense in overseeing security, compliance, and audits to mitigate cyber risk across the organization.

• Conduct ongoing cybersecurity monitoring to ensure compliance with evolving regulations and security policies, reducing non-compliance incidents by 25%.

• Serve as the subject matter expert for IT compliance-related queries, ensuring all software and applications meet industry standards.

• Spearheaded internal and external audits, ensuring alignment with regulatory guidelines and achieving 100% successful audit outcomes.

• Developed and enforced IT security policies and procedures, streamlining compliance documentation and reporting processes.

• Delivered compliance training for staff, improving awareness and reducing internal compliance breaches by 20%.

• Collaborate cross-functionally with IT, legal, and business units to ensure compliance goals are met and risks are effectively managed.

IT Compliance Auditor Consultant

PricewaterhouseCoopers – Atlanta, GA Jan 2020 – Dec 2020

• Led and supported internal and external audits, working with the Georgia Power and Fiserv Internal Audit teams on IT compliance assessments and risk mitigation.

• Reviewed and tested critical IT controls such as incident management, change management, and segregation of duties to identify potential security risks.

• Assessed user access control, both physical (data center/server room) and logical (applications, OS, AD), ensuring compliance with organizational policies.

• Developed recommendations for improving security policies and reducing system vulnerabilities, resulting in a 30% improvement in access management compliance.

• Facilitated risk assessments and supported remediation efforts in response to audit findings. IT Compliance Auditor

American Airlines – Charlotte, NC Sep 2017 – Dec 2019

• Conducted effectiveness testing of IT General Controls (ITGC) and IT Application Controls, collaborating with cross-department teams to resolve compliance issues.

• Reviewed and tested internal controls related to user access, physical security, and logical access management (including Active Directory and operating systems).

• Researched regulatory guidelines and provided ongoing communication to internal teams regarding compliance requirements.

• Documented audit findings developed risk-based recommendations, and collaborated with stakeholders to enhance control frameworks.

• Assisted in the development of annual audit plans and risk assessments to ensure compliance with industry standards and regulatory frameworks.

IT Compliance Auditor

National Institute of Information Technology – Ghana Feb 2014 – Mar 2017

• Planned and executed risk-based operational audits, focusing on IT and financial reporting compliance, particularly Sarbanes-Oxley (SOX) requirements.

• Identified and assessed technology-related risks, providing management with actionable recommendations for enhancing internal controls.

• Led the testing and evaluation of internal controls, ensuring compliance with industry regulations and standards.

• Collaborated with IT and business management to address audit findings and implement corrective actions.

EDUCATION

Master of Environmental Management (in Environmental Management) Webster University – St. Louis, MO

Bachelor of Science in Geology

University of North Carolina at Charlotte – Charlotte, NC Bachelor of Science in Pure Physics

Imo State University – Owerri, Nigeria

CERTIFICATIONS

• Certified Information Security Manager (CISM)

• Certified Information Systems Auditor (CISA)

PROFESSIONAL AFFILIATE

Information Systems Audit and Control Association (ISACA) Professional Petroleum Data Management Association (PPDM)

Contact this candidate