IT Audit/Governance/Risk Consultant
250961 | Contract
This bilingual (English & Spanish) IT Audit/Governance/Risk consultant with a bachelor’s degree in Computer Science and multiple certifications including CISA, CISM, CIAM, CDPSE and CAMS has 20 years of experience. Industry experience includes banking/finance, hospitality/cruise, manufacturing, insurance, health/HIPPA and Energy. Systems experience includes SAP, JD Edwards, Data Privacy (CCPA, GDPR), ISO 27001/2, NIST, COBIT/COSO, NYDFS, FFIEC, GLBA, FAIR and SSAE-18/SOC1/2.
Additional qualifications include:
- Managed team of IT SOX compliance analysts successfully remediating outstanding IT and security weaknesses
- Developed IT and Information Security SOX 404 key controls process, narratives and workflow diagrams
- Coordinated annual corporate SSAE-18 SOC 2 review with external audit firms, drafted management responses and action plans
- Completed over 200 comprehensive risk assessments for corporate assets and applications
- Coordinated and performed monthly, quarterly and annual re-certifications of key IT/Security SOX controls
Skills: Audits, Internal Audit, Risk, Risk Management, Security, Vendor Management