Information Systems Risk Management
Resume:
BETTY AMPOFO, CISA
PROFILE
Summary
Certified Information Systems Auditor
(CISA) with proven expertise in IT
audit, risk management, and
compliance. Skilled at evaluating
internal controls, identifying
vulnerabilities, and ensuring alignment
with regulatory requirements and
organizational objectives.
Adept at working collaboratively
across departments to strengthen
security posture and safeguard critical
assets. Recognized for reliability,
adaptability, and strong leadership in
high-pressure environments. Brings
excellent communication, time
management, and problem-solving
skills with the ability to thrive both
independently and as a team player.
Seeking to contribute to a growth-
oriented organization while continuing
to expand expertise in information
security and IT audit management.
CONTACT
PHONE:
ADDRESS
Davie, FL.
EMAIL:
***********@*****.***
EDUCATION
City University of NY Lehman College
August 2008 – May 2012
Bachelor of Business Administration
Technology Service Management Edu.
Certified Information Systems Auditor (CISA)
Vendor Risk Management training
Technical Skills
Core Expertise: ITGC Testing, SOX Compliance, Risk & Incident Management, GRC Tools (ServiceNow,
AutoAudit, ACL), ISO 27001
Additional Skills: PCI DSS, COBIT, COSO, Nessus, Microsoft Office, SharePoint, Windows OS
WORK EXPERIENCE
Information Technology Auditor I
Seminole Tribe of Florida (Hard Rock Casino & Hotels) Hollywood, FL Sept, 2022 – Present
• Perform IT audits across multiple casino properties to ensure compliance with internal controls, cybersecurity standards, and TICS/MICS regulatory requirements.
• Collect, analyze, and document audit evidence for monthly, quarterly, and annual reviews to support executive reporting.
• Re-test remediated controls to validate the effectiveness of corrective actions, reducing repeat findings.
• Maintain IT control policies, procedures, and environment documentation to strengthen governance and risk
management practices.
• Provide process improvements through minor enhancements in SharePoint, Teams, and ServiceNow to optimize
documentation and workflow efficiency.
IT Audit & Compliance Analyst
Swarovski
New York, NY Jul 2018 – Sept 2022
• Planned and executed IT audits leveraging the COBIT framework, identifying key risks and control
deficiencies.
• Conducted risk assessments and performed ITGC and process control testing across critical systems.
• Analyzed IT and business processes for efficiency, security, and regulatory compliance.
• Identified gaps in controls and recommended actionable improvements to strengthen compliance posture.
• Coordinated with external auditors and facilitated walkthroughs of IT systems and processes.
IT Control Associate
Paper Source
New York. NY Sep 2016 – Apr 2018
• Supported all audit phases, including planning, fieldwork, reporting, and follow-up testing.
• Performed IT General Controls (ITGC) testing for logical access, change management, and operations.
• Monitored compliance metrics, identified policy gaps, and tracked remediation progress.
• Prepared audit reports, summarized findings, and communicated results to management for timely corrective action.
SKILLS & CERTIFICATIONS
• Certified Information Systems Auditor (CISA)
o Network +
o Security +
• NIST Risk Management Framework (NIST)
• Health Insurance Portability and Accountability
Act (HIPAA)
• PCI DSS Compliance training
Contact this candidate