Experienced Information Technology Risk and IT Audit professional with a focus on bringing a measured and balanced approach to Information Risk identification & Control assessment in the Enterprise Technology space and optimization of Enterprise Risk profile to meet regulatory and business operations requirements. Extensive Information Security standards and assessment knowledge, and in-depth IT operations management in a variety of positions covering Mainframe and Distributed systems environments. Utilize creative thinking, individual initiative, and flexibility in developing and prioritizing projects that balance the business needs with the necessary risk control measures needed in secure Information System operations.
Specialties and Key Competencies:
• Information Technology Audit, Risk Control Assessment, and Remediation processes.
• Development and implementation of Process Risk and Control Framework into the Enterprise
IT organization.
• Sarbanes Oxley (IT General Controls and Application Controls).
• Information Technology compliance with external regulatory guidelines (SEC, OCC, OTS, FFIEC).
• Information Technology compliance with corporate governance / policies and guidelines.
Specialties and Key Competencies:
• Information Technology Audit, Risk Control Assessment, and Remediation processes.
• Development and implementation of Process Risk and Control Framework into the Enterprise
IT organization.
• Sarbanes Oxley (IT General Controls and Application Controls).
• Information Technology compliance with external regulatory guidelines (SEC, OCC, OTS, FFIEC).
• Information Technology compliance with corporate governance / policies and guidelines.