Post Job Free
Sign in

Experienced IT Auditor and Sarbanes-Oxley Compliance Professional

Location:
Hartland, WI, 53029
Salary:
90000
Posted:
July 19, 2009

Contact this candidate

Resume:

Kevin D. Tollefson

352-***-**** (Hartland, Wisconsin)

Email Address: **************@*******.***

Professional Experience::

Hard Rock Intl & Coldwater Creek - IT Audit/PCI and Sox 404 Compliance --- Aug 07 to Apr 09 (Florida, Idaho)

Responsible for all facets of IT Audit, IT Compliance (Sarbanes-Oxley 404), and special IT Investigations, as well as, Loss Prevention audits conducted at the retail stores

Responsible for setting up and establishing all policies and procedures for the Virsa Segregation of Duties (SOD) tool associated with the SAP FI/CO and HR implementation in August 2007

Administrator for the Payment Card Industry (PCI) Compliance program working directly with QSA (TrustWave)

Rockwell Automation (Mfg.) – Risk & Controls Leader --- Aug 05 to July 07 (Milwaukee, Wisconsin)

·             Management responsibilities for a blended team of risk and controls consultants and 6 full-time employees, to ensure all relevant (configurable, procedural and restricted access/SOD) controls are properly designed, built, tested and implemented, as part of a multi-million dollar five year SAP implementation

·             Maintain a continuously updated project plan, allocate resources and re-prioritize criticality of work efforts on a weekly basis, in order to complete all critical deliverables and mitigate overall risk on the project

·             Responsible for developing the SAP Global controls environment, and ensuring that a lasting SAP controls organization is appropriately staffed, trained and supervised

·            Collaboratively working with both internal/external auditors (D&T) and the IBM consultants, to ensure all project work passes the “muster” of audits, and any mandatory compliance regulations such as Sarbanes-Oxley

Tyco International (Mfg.) --- Nov. 99 to May 05 (Germany, Boca Raton, Florida)

IT Compliance Manager for ADT Security (July 04 – May 05)

·             Responsible for working in a collaborative environment with the CIO’s organization of over 350 IT professionals located throughout the US and Canada data center locations

·             Responsible for ensuring the company (ADT Security) was in a position to pass year-one SOX 404 attestation by their external auditors (D&T)

·             Provided continuous status updates on progress to the Director of Compliance and CIO/CFO, via weekly status updates, and tracked the progress and drove remediation plans to closure for control gaps identified

·             Responsible for managing IT contractor resources (4 consultants) and a budget of approx. 400k, in order to accomplish all effectiveness testing, and the implementation of remediation plans to close control gaps

IT Audit Manager for Tyco Corporate (Apr 03 – July 04)

·            Developed a Global risk based IT audit plan, working with the Directors of IT and Financial/Operational audit, to ensure all critical and high risk areas for IT operations were encompassed in the annual audit plan

·             Planned, staffed and supervised a Global (virtual) team of IT auditors, (both staff and seniors), and offshore consulting resources, in order to accomplish all audits on the annual plan (Europe, Asia-Pac, Americas)

·             Recruited and assisted the IT Audit Director in initially building the IT audit group in 2003, and participated in negotiations with external vendors and other 3rd party providers of audit consulting services

IT Sr. Management Consultant for Tyco Corporate (Nov. 99 – Apr 03)

·             Engaged or Requested by Senior IT/Finance management to perform special projects, general computer control reviews, pre/post implementation audits, and any other IT related work such as evaluation of Disaster Recovery and Business Continuity Planning

·             Developed controls testing plans and assisted the Merger & Acquisitions (M&A) group in performing timely IT due diligence prior to any planned acquisitions in Europe

·            Worked directly for the VP of Internal Audit to conduct risk assessments, and as directed, took guidance from the CFO and other Senior Corporate management to investigate areas of concern

Arthur Andersen (Business Consulting) – Sr. FICO SAP Consultant --- June 98 to Oct 99 (Dallas, Tx)

·             Worked as a part of a blended team of client/consulting professionals, to implement various functionality within SAP (FI/CO), and conducted demos and training for all functionality intended to be utilized by the end-user community

·             Utilized various Subject Matter Experts (SME’s) to ensure all business requirements were accurately and completely captured, and that as applicable, built and tested thoroughly within the SAP system

·             Provided management with continuous status updates and assessments of where critical deliverables might be in jeopardy, and explained the potential risks associated with not taking the mitigating actions

Intel Corporation – SAP Fixed Asset Team Leader --- Mar 98 to June 98 (Hillsboro, Oregon)

·             Responsible for capturing all business requirements associated with the SAP Fixed Asset functionality being implemented as part of a Global SAP project

·             Responsible for building (configuring), testing and validating all fixed asset functionality being implemented and rolled out to the operational sites in the middle east and Asia/Pacific

·             Collaborated with and managed the expectations and business requirements for the SAP global process owners located in Israel and Singapore

GTE Corporation – (Verizon) --- Oct 94 to Feb 98 (Indianapolis, Indiana and Dallas, Texas)

Sr. Financial/Operational Auditor (Oct. 94 – Dec. 96)

·             Responsible for planning, supervising and executing financial/operational audits within the domestic telecom business, primarily within the Midwest region of the companies operations, working with Sr. management and general managers of the customer care and business sales centers

·             Supervised up to 10 auditors on engagements lasting between 3-6 weeks, and ensured all work was accomplished per specific timeframes and that a quality assurance check was performed on all work papers and issue write-ups, prior to presenting to management

·             Responsible for recruiting, training, coaching/mentoring and performing performance evaluations of all staff auditors within my assigned group.  Also, determined through working with the Audit Mgr. the end of year bonus payouts and annual merit increases

SAP FI/CO Controls Auditor (Jan. 97 – Feb. 98)

·             Represented the FI/CO project team on a large domestic implementation of SAP, as the primary controls consultant on a team of SME’s from the business and an SAP Platinum consultant

·             Assisted the SME’s with functional design, testing, and final implementation activities, and served as the primary audit representative on the project, to ensure all control issues are properly and timely remediated, prior to moving to the next stage of the project (i.e. from blueprint to realization)

Coopers & Lybrand LLC (Big 4 Public Accounting) --- Aug 93 to Oct 94 (Atlanta, Georgia)

·        Staff Auditor           

Professional Profile/Affiliations/Training

·      CISA certification --- since Sept. 2005

·             B.S in Business Administration (Marketing Major --- U. of Nebraska) --- August 1985

·             60+ hours Accounting/MIS --- Harding University --- 3.5 GPA, Dean’s List --- 1991-93

·             US Army Infantry Officer – US/Germany--- Dates of Service (Jan. 1986 to April 1990)

·             Six Sigma Green Belt Training Completed --- April 2006

·            Current ISACA Member



Contact this candidate