Regulatory Compliance Continuous Improvement

Anne Okopie

**********@*****.*** 214-***-**** Dallas, TX www.linkedin.com/in/anneokopie

SUMMARY

Seeking IT Governance, Risk & Compliance role with 6 years' experience. Proven track record in risk assessments, regulatory compliance, and internal controls. Expertise in security standards, smart phones, and apps, with responsibilities including data privacy protection and audit support. Proficient in GRC tools and compliance frameworks.

WORK EXPERIENCE

Insight Dallas, TX

GRC Analyst Mar 2021 - Present

• Spearheaded the implementation of ISO 27001 compliance controls across multiple business units, enhancing overall security posture.

• Collaborated with cross-functional teams to prepare comprehensive documentation for SOC 2 Type I audit readiness, ensuring alignment with industry standards.

• Conducted thorough access control reviews and enforced least privilege and Role-Based Access Control (RBAC) to minimize security risks.

• Led internal audits and efficiently tracked remediation tasks using the ServiceNow GRC module, improving audit outcomes.

• Maintained detailed risk registers and facilitated comprehensive vendor risk assessments for third-party healthcare tech partners, ensuring compliance and data protection. SMS INFO

Risk Analyst Jan 2019 - Jan 2021

• Conducted comprehensive risk assessments to identify potential vulnerabilities and recommended mitigation strategies.

• Collaborated with cross-functional teams to enhance internal controls and ensure compliance with regulatory requirements.

• Developed and implemented risk management frameworks to support business objectives.

• Analyzed data to identify trends and provide insights for decision-making processes.

• Assisted in preparing for internal and external audits, ensuring adherence to industry standards. CERTIFICATIONS

Certified Information Systems Auditor (CISA)

Certified in Risk and Information Systems Control (CRISC) SKILLS

Risk & Control Assessments • Access Management & IAM Governance • Compliance Gap Analysis • Internal

& External Audit Support • Data Privacy & Protection • Regulatory Framework Implementation • GRC Tools

(ServiceNow, OneTrust, Archer, Vanta, Microsoft Compliance Manager) • Risk Assessment • Data Analysis • Problem-Solving • Attention to Detail • Communication • Financial Modeling • Decision-Making • Statistical Analysis

• Critical Thinking • Regulatory Compliance • Organization • Adaptability • Teamwork • Time Management • Customer Service

VOLUNTEERING & PROJECTS

Cyber Hygiene Awareness Volunteer

• Facilitated security awareness sessions for local schools and youth programs on phishing, data privacy, and password hygiene. Organized workshops and interactive sessions to engage participants and enhance learning. Developed educational materials and resources to support ongoing awareness efforts. Collaborated with local organizations to expand the reach of the program.

Access Review Automation Mini Project

• Built a workflow template for quarterly access reviews for a fictional financial services firm using ServiceNow and Excel logic. Designed and implemented a user-friendly interface for the workflow template. Conducted testing and validation to ensure accuracy and efficiency of the automation process. Provided training and support to team members on using the new workflow template.

Contact this candidate