|
|
|
|
SOX IT Audit Or PCI Audit Resume
|
| Desired Industry: Finance/Investment |
SpiderID: 26315 |
| Desired Job Location: Cary, North Carolina |
Date Posted: 4/27/2009 |
| Type of Position: Other |
Availability Date: |
| Desired Wage: |
|
|
U.S. Work Authorization: Yes |
| Job Level: Management (Manager, Director) |
Willing to Travel: Yes, 50-75% |
| Highest Degree Attained: Bachelors |
Willing to Relocate: Yes |
Objective:
More than 15 years of IT audit, PCI audit, security, project, technical and risk management experience galvanizing teams in core initiatives including SOX-404 IT Audit, PCI Audit, Information Security, Technology Risk Management, Project Management, Technical Management, and Corporate Compliance while serving as a change agent for efficiency improvements with expertise in Platform and Interface Management.
Experience:
Professional Experience
TJX Group Companies, Framingham, MA June 2008 to till date
(Retail)
Lead IT Auditor (Consultant)/Project Manager-IT Audit
World Bank -Washington DC Feb 2008 to June 2008
(Finance and Banking)
Principal Financial Group -Des Moines, IA Nov 2007 to Jan 2008
(Bank, Finance, Healthcare, and Insurance)
IT Audit Consultant
Keane Inc., Boston, Massachusetts Aug 2004 Sep 2007
(Application Development and Outsourcing)
Senior IT Audit Manager
iBasis, Burlington, Massachusetts April 2001- Aug 2004
(VOIP-ITSP -Internet Telephony Service Provider/Telecommunication)
Project Manager IT Audit
AT&T Wireless, Pittsburgh, Pennsylvania Mar 2000-April 2001
(Telecommunication)
Project Manager
AL Futtaim Trading, Dubai, UAE Mar 1996- Mar 2000
(Automotive, Electronics and Insurance)
Network Manager/Controller
Managed the IS team with a group of software, system, and network consultant; led team of consultants for several information systems related projects
Philips India Ltd, Madras, India Jan 1995- Apr 1996
(Manufacturing and Consumer Electronics)
Assistant Automation Manager
Significant Achievements:
Obtained certifications of CISA (Certified Information Systems Auditor) and PMP (Project management professional.
Managed a team of IT auditors and reviewed the audit work papers of SOX-404 IT Audits and findings matrix.
Developed audit programs every year.
Prepared the final audit reports for numerous audit programs.
Managed PCI (Payment Card Industry) and FTC (Federal Trade Commission) audit with five auditors.
Coached the auditors for the latest trends in technology and compliance
Audited and tested controls for SAP, PeopleSoft, JD Edwards, Oracle, DB2, MS SQL, IBM /390, IBM Z/OS, AS/400, AIX6000, UNIX, Network, IT security, firewall,systems, and web applications
Established Security Committee offering ISO 27001-certification guidance, while working with external auditors and directing IT security audit procedural policies.
Conducted integrated, operational, and business process audits and recommended the business process and IT system related controls
Audited the implementation of BCP and DRP plans and recommended the best practices in the industry
Implemented controls and processes based on COBIT/COSO/ISO17799/ITIL methodology
Harnessed process, procedural, and control quality using Six Sigma methodology
Performed complex IT Risk Assessments, Vulnerability Assessments, Entity Level Controls Assessments, IT Infrastructure Audits, Business Continuity Planning, Technology Risk Management SAS70, HIPAA Act
Education:
Master of Business Administration/Technology Management
University of Phoenix, Boston, Massachusetts (expected completion 2009)
Bachelor of Engineering - Major: Computer Science
Anna University, College of Engineering, Madras, India
Certifications
CISA-Certified Information System Auditor ISACA 2005
PMP-Project Management Professional 2001
Six-Sigma Green-Belt Course, Keane (awaiting certification) 2008
ISO 27001 Information Security Management System Lead Auditor (awaiting certification)
Supervisory Management - Penn State University 2000
Cisco Certified Design Associate (CCDA) 2000
Cisco Certified Network Associate (CCNA) 1999
Affiliations:
Information Systems Audit and Control Association (ISACA) Forum since 2004
Project Management Institute (PMI) Forum -since 2002
Institute of Internal Auditors (IIA) Forum-Since 2006
Institute of Electrical and Electronics Engineers, Inc. (IEEE) Entrepreneurs Forum-since 2004
The Financial Executives Networking Group (FENG)-since 2007
The Technology Executives Networking Group (TENG)-since 2008
Toastmasters International (Speakers and Leadership Forum) since 2001
Skills:
IT and SOX Audit
Payment Card Industry (PCI) DSS Assessment
Project Management
Federal Trade Commission (FTC) or Personal Identifiable Information (PII) Audit
IT Security Audit
BS7799 / ISO 27001 IT Security Implementation and Audit
Business Continuity Plan and Disaster Recovery Plan (BCP/DRP) Audit
IBM Mainframe Audit
ERP (SAP and PeopleSoft) Audits
HIPAA Compliance Audit
Software License Review and Audit (IT Asset Management Audit)
Enterprise Risk Management
Process Improvement Projects (SIX Sigma and ITIL)
Oracle Database Consolidation and Disaster Recovery
System Migration from AS/400 to ERP SAP R/3 and PeopleSoft
Candidate Contact Information:
TheJobSpider.com has chosen not to make contact information available on this page.
Click "Contact Candidate" to send this candidate a response. |
|
|
|
|
|