Summary:

• 7 years of Information Technology Audit experience, including project management experience.
• Solid understanding of processes and controls related to financial applications, networking functionality, databases, operating systems, and other infrastructure.
• Assessed disaster recovery plans and business continuity plans
• Audited project controls including project governance / organization, and project work streams
• Designed and conducted test work for a SAS 70 audit.
• Participated in business process redesign, technology needs assessment, and IT governance projects.
• Experience in auditing SAP, JD Edwards, Oracle, PeopleSoft, AS/400 and many other applications
• Experience as a Financial Analyst, Budget Director, and Systems Procurement Consultant
• Master of Business Administration in Finance; Strong writing and analytical skills

Experience:

Senior Information Technology Auditor, Confidential
July 2008 July 2010; September 2011 - February 2012
Helping companies design and execute their audit plans and methodology, utilizing a risk-based approach

ConfidentialDallas, TX

• Helped the company complete their year-end audit of IT General Controls
• Tested user provisioning, availability management, release management, and change management controls

Confidential,New York, NY

• Tested controls for a SSAE 16 audit (service auditor’s report)
• Evaluated a project governance control test plan for a system implementation

ConfidentialRichmond, VA

• Assessed the design and effectiveness of controls related to project governance, deliverables, and readiness
• Facilitated the development and rollout of a project audit methodology to over twenty project audits

ConfidentialGlendale, WI

• Designed and executed test plans for IT Sarbanes-Oxley compliance
• Assessed a diverse array of applications, supporting a dynamic manufacturing environment

Confidential Plano, TX

• Responsible for designing and executing IT audit test plans, and reporting results to management
• Liaison to external auditors, facilitating significant reliance on IT audit work conducted internally
• Heavy exposure to SAP security reports and related controls

Confidential Omaha, NE

• Assisted the client in drafting policies and procedures for change management and IT security
• Prepared process and controls documentation supporting GPRE’s IT General Controls
• Identified design gaps, and provided guidance for the client’s remediation of controls design
• Prepared and executed IT audit test plans, identified effectiveness gaps, and provided remediation guidance

IT Audit Manager, Accume Partners,New York, NY and Philadelphia, PA
July 2010 - June 2011

• Assisted companies in Internal IT Audit and Sarbanes-Oxley testing and documentation
• Performed successful IT Audits in the financial services and automotive industries
• Reported audit results to management and suggested improvements to processes and controls
• Served as a liaison between management and external auditors on IT Audit
• Assisted banks with compliance with the Gramm Leach Bliley Act (GLB)

Senior Associate, ConfidentialPhiladelphia, PA
February 2005 - July 2008

• Provided technology process and control documentation for Sarbanes-Oxley and other compliance needs
• Assisted a manufacturing client in assessing their IT infrastructural operations and budget
• Designed and performed testing on technology-based and automated internal controls
• Audited financial applications, networks, operating systems, databases, and security packages such as RACF
• Conducted application security reviews for separation of duties and compliance with business rules
• Client industries included investment banking, health care, retail, and education
• Audited networking functionality including Windows Active Directory and UNIX

October 2003 - February 2005

• Designed and performed Information Technology internal controls test work for banking / public sector clients
• Performed a SAS 70 controls assessment for a utility industry client
• Conducted an IT governance engagement at a university
• Assessed clients’ compliance with Sarbanes-Oxley, FDIC, and Federal Single Audit mandates
• Performed a technology needs assessment and business process redesign for a large school district
• Evaluated the business continuity plans and disaster recovery plans of several banking clients

Director, ConfidentialNorwalk, CT
September 2002 February 2003

• Managed an operating budget of over $220 million and a capital budget of $78 million
• Responsible for Information Systems budget for the city and its agencies
• Made recommendations for City\'s revenue, expenditures, operations, and debt issuance
• Supervised three professional staff members, including an internal auditor and a risk manager

Senior Business Analyst / Consultant, ConfidentialChicago, IL
October 2001 August 2002

• Assisted government clients in ERP / Financial Management System vendor selection
• Evaluated SAP, Oracle, and other major ERP systems and client experience with each system
• Performed needs assessments, business requirements definition, and RFP formulation
• Served as a point person on utility billing and customer information systems (CIS)

Financial Analyst, ConfidentialMoorestown, NJ
November 1999 October 2001

• Managed Financial Planning & Analysis reports
• Led a business process redesign project on corporate travel procedures
• Gained exposure to DFAS and DOD-related accounting procedures
• Prepared quarterly plant performance reports for presentation to corporate staff

Other Contract and Internship Experience:

Senior Accountant, Philadelphia Schools Improvement Team, Philadelphia, PA, Aug. 2003 Oct. 2003
Senior Financial Analyst, Saatchi & Saatchi Advertising,New York, NY, June 2003 August 2003
Financial Analyst, AOL Time Warner,New York, NY, April 2003
Internal Auditor, Philadelphia Gas Works (PGW),Philadelphia, PA, October 1997 June 1999
Market Research Analyst, New Jersey Economic Development Authority,Trenton, NJ, June Aug. 1999
Consultant, Project EASI, U.S. Department of Education, Washington, DC, June 1996 December 1996

Education:

M.B.A. Finance,

B.A. Public Policy

Professional Memberships:

• Information Systems Audit and Control Association (ISACA)
• Institute of Internal Auditors (IIA)

Certification: CRISC (Certified in Risk and Information Systems Control), conferred by ISACA in October 2011.

Technology Skills:

Oracle, SAP, SQL, Great Plains, AS/400, Word, Lotus Notes, Excel, Access, Visio, PowerPoint, HTML, JavaScript, various databases, electronic work papers