Information Technology It Auditor
Resume:
DAVID A. ADERINOLA, CISA
Houston, Texas *****
Tel: 832-***-****
Email: *************@*****.***
Summary:
Experienced IT Auditor with years of experience managing complex and multi-system application controls, using various frameworks and standards like COSO, COBIT, SOX, SAS70/ SSAE 18, HIPAA, PCI DSS, ISO 27001, NIST 800, FISCAM, FISMA. Having a reputation for adept leadership from business to IT workflow analyses and performing walkthroughs and testing relating to Information Technology General Controls (ITGCs).
Skills:
Technical Knowledge
Audit Methodology
Regulatory compliance (HIPAA, PCI-DSS, SOX, GDPR)
Risk Assessment
Data Governance Analyst
Analytical Thinking
Excellent communication and interpersonal skills
Project Management
Continuous Learning
Data Management
Key accomplishment:
Improved internal control efficiency and risk reduction by presenting valuable audit findings.
Built relationship within the firm to have resources necessary to meet client informational needs in less than 24 hours.
Professional Experience
SENIOR IT AUDITOR Cherith Wells & Company, [Fremont, CA] [April 2022 - Date]
Collaborated with client management and IT teams to address identified control weaknesses and implemented remediation plans.
Prepared detailed audit reports, highlighting findings, risks, and recommendations for management and key stakeholders.
Developed audit programs and testing procedures tailored to specific client environments and risks.
Led audit engagements, including planning, scoping, risk assessment, and execution, while ensuring adherence to audit methodologies and standards.
Assessed compliance with relevant regulations, such as Sarbanes-Oxley (SOX), Payment Card Industry Data Security Standard (PCI DSS), and Health Insurance Portability and Accountability Act (HIPAA).
Led compliance initiatives to ensure adherence to applicable regulatory requirements, such as SOC 1/SSAE 18, SOC 2, SOC 3, HIPAA, PCI-DSS, and SOX.
Conducted comprehensive IT audits for clients in various industries, including financial services, healthcare, and manufacturing.
IT Consultant Risk & Financial Advisory Deloitte & Touché LLP, [Houston, TX] [Sept 2019-April 2022]
Conducted IT general controls audits, focusing on areas such as user access management, change management, and IT operations.
Participated in cross-functional teams for IT-related projects, providing expertise and guidance on security and control matters.
Stayed updated with emerging technologies, industry trends, and regulatory requirements to enhance audit methodologies and practices.
Collaborated with internal audit teams to integrate IT audit considerations into the overall audit plan.
Assisted in the development and implementation of information security policies, procedures, and standards.
Conducted vulnerability assessments and penetration tests on the organization’s network and systems to identify security weaknesses and potential entry points.
Performed application control reviews to assess the integrity and effectiveness of critical business applications.
Senior IT Auditor Synergy Technologies LLC, [Baltimore, MD] [October 2015- August 2019]
Conducted walkthroughs and interviews to understand and assess IT processes and controls.
Performed IT general controls audit to include access controls, change management, IT operations, disaster recovery and platform reviews.
Contributed to risk assessments and the development of audit procedures.
Performed walkthrough and detailed testing of controls to determine if controls were properly designed and operating effectively.
Assisted senior auditors in conducting IT audits, including documentation review, control testing, and evidence gathering.
Gained exposure to various IT frameworks and standards, such as COBIT, ISO 27001, and NIST Cybersecurity Framework.
Assisted in the preparation of audit workpapers and the documentation of findings.
Education
Associate degree in Information Technology, State Technical Institute, Memphis TN
BSc. Business Administration, Lagos State University, Lagos Nigeria
Certification:
Certified Information System Auditor (CISA) ISACA.
Contact this candidate