It Infrastructure Data Analytics

Michael Oke.

************@*****.*** 513-***-****

Skills Summary

Risk and Control Assessment

Audit Planning &Execution

Integrated end-to-end Audit

User Access Management & Control

Application Controls

ITGC, SOX & Internal Controls Testing

Regulatory Compliance (COBIT, PCI DSS, GLBA, HIPPA/HITRUST, FISMA)

Issue Validation

Data Loss/Leakage Prevention

Software Security Assessment

Data Analytics Audit Strategy

NIST Risk Management Framework (RMF)

IT Infrastructure Audits

Tools: Teammate, Microsoft office suite including SharePoint, Word, Excel, PowerPoint, Pivots, Outlook Express & Visio, ITSM tools including Archer, JIRA & ServiceNow.

Certifications

Certified information System Auditor - CISA in Progress (2021)

Education

Bachelor’s Degree (BSC), Economics University Lagos, Nigeria (2011)

Professional Experience

Western & Southern Financial Group 08/12/2019 - Present

IT Senior Auditor

Roles

Conducts IT risk assessment: document related risks and note key control issues; develop appropriate audit programs to test the control risks identified and subsequently evaluate control designs, optimization and assurance over operational and compliance processes.

Performs information systems audits which include ITGC testing, application Controls testing, IT Infrastructure audit (Operating system, network device, databases)

Participates in end to end process of all audit phases including planning, kick-off meetings, walkthroughs, Documentation and ultimately determine the effectiveness of control environment.

Performs IT controls reviews including database, operating system, data warehouse and reporting tools. Tests IT general and application controls and performed walkthroughs and detailed testing of controls to evaluate the design and operating effectiveness of controls.

Performs audit of IT general and application controls, information security, systems development, change management, business continuity, disaster recovery and computer operations.

Conducts IT audit planning, fieldwork, walkthrough of controls, detailed testing of controls and creation of clear and accurate documentation of workflows of IT process, and report test results and exceptions.

Participates in the development and implementation process for continuous monitoring of IT processes to ensure compliance with internal controls.

Participates in new systems development and post implementation audits to ensure the System Development Life Cycle (SDLC) is followed through inclusion and implementation of adequate internal controls built into the system.

Ensures all assigned test work is properly performed and adequately documented in accordance with internal audit’s policies and procedures.

Understands, tracks, assess and follows-up on deficiencies/exceptions noted during testing.

Summarizes and effectively reports testing results both orally and in writing to management.

Performs special projects, critical process reviews, administrative activities and special investigations as necessary.

Performs audit reviews on Third Party application to ensure all control gaps identified are remediated timely.

Peak Systems Inc. 03/12/ 2018 – 08/02/2019

IT Auditor

Roles

Performed ITGC testing which include applications, databases operating systems, data warehouse, network device and reporting tools. Performed walkthroughs and detailed testing of controls to evaluate the design and operating effectiveness of controls.

Experience in end-to-end processes of all audit phases including planning, kick-off meetings, walkthroughs, documentation and ultimately determine the effectiveness of control environments.

Performed audit of IT general and application controls, security, systems development, change management, business continuity, disaster recovery and computer operations.

Participated in both TOD & TOE testing of controls as well as the facilitation of roll-forward testing on SOX controls to determine compliance.

Participated in the development and implementation process for continuous monitoring of IT processes to ensure compliance with SOX audit controls.

Ensured all test procedures were properly documented in accordance with the enterprise standards with reference to the evidence that supported conclusions.

Documented all identified issues, followed-up on action plans and performed remediation testing to ensure effective issue remediation.

Summarized and effectively reported testing results both orally and in writing to management.

Performed special projects, critical process reviews, administrative activities and special investigations as necessary.

Performed audit reviews on Third Party applications to ensure all control gaps identified are remediated timely.

Participated in the creation and maintenance of IT Policies and Standards for IT compliance.

Access Bank, Lagos Nigeria 09/24/2012 – 01/15/2018

IT Associate Auditor

Performed ITGC testing which include applications, databases operating systems, data warehouse, network device and reporting tools. Performed walkthroughs and detailed testing of controls to evaluate the design and operating effectiveness of controls.

Experience in end-to-end processes of all audit phases including planning, kick-off meetings, walkthroughs, documentation and ultimately determine the effectiveness of control environments.

Performed audit of IT general and application controls, security, systems development, change management, business continuity, disaster recovery and computer operations.

Participated in both TOD & TOE testing of controls as well as the facilitation of roll-forward testing on SOX controls to determine compliance.

Participated in the development and implementation process for continuous monitoring of IT processes to ensure compliance with SOX audit controls.

Ensured all test procedures were properly documented in accordance with the enterprise standards with reference to the evidence that supported conclusions.

Documented all identified issues, followed-up on action plans and performed remediation testing to ensure effective issue remediation.

Summarized and effectively reported testing results both orally and in writing to management.

Performed special projects, critical process reviews, administrative activities and special investigations as necessary.

Performed audit reviews on Third Party applications to ensure all control gaps identified are remediated timely.

Participated in the creation and maintenance of IT Policies and Standards for IT compliance

Access Bank, Lagos Nigeria 09/24/2012 – 01/15/2018

Project &Facility Management Officer

In charge of monitoring, maintaining of the Bank’s assets and equipment.

Liaise with administrative auditor to ensure that standards and procedures are followed.

Ensure vendors are compliance with the terms and condition of the Service Level Agreement.

Supervise vendors job delivery and safety of equipment.

Upload the maintenance Service Level Agreement between the bank and the vendor on workflow through Outlook.

Work with payment service providers like eTransact to ensure that vendors that use their services comply with the Payment Card Industry Data Security Standards (PCIDSS).

Ensure that vendors payments are posted correctly on workflow for management’s approval.

Ensure that data transactions for vendor’s payment are recorded correctly.

Ensure that identified errors corrected and prevented from future occurrences.

Communicate with Internal Auditor every quarter to discuss potential risk possible risk detected.

Uses control method to evaluate vendors competencies.

Check that the Bank’s policies are followed.

Schedule monthly meetings with vendors to review the SLA.

Contact this candidate