Iso Assurance
Current•As part of an official subcommittee, initiated by the International Organization for Standardization, assists in the overall development, authoring implementation and assessment of ISO 27001 &27002 standards, amongst others.
Please complete the CAPTCHA to continue
@iso.org
✓
LinkedIn matched
A concise factual answer block for searchers comparing this professional profile.
Andrae Marsh is listed as ISO Assurance at ISO International Organization for Standardization at ISO International Organization for Standardization, a with 1264 employees, based in Fort Lauderdale, Florida, United States. AeroLeads shows a work email signal at iso.org and a matched LinkedIn profile for Andrae Marsh.
Andrae Marsh previously worked as ISO Assurance at Iso International Organization For Standardization and Manager- IT Security Advisor, IT Risk, Information Systems Audit. at Bds Consulting. Andrae Marsh holds Bachelor Of Science (Bs), Computer And Information Sciences And Support Services from University Of The West Indies.
This section adds company-level context without repeating Andrae Marsh's masked contact details.
AeroLeads found 2 current-domain work email signals for Andrae Marsh. Compare company email patterns before reaching out.
An accomplished, highly skilled, solutions-oriented IT/Technology Audit and Security professional with notable success directing and executing a broad range of reviews, assessments and implementations in direct support of business objectives, as a Consultant.Outstanding leadership abilities with the ability to manage, motivate and lead project teams to success against project variables.Adept at assessing security and privacy frameworks, policies/procedures, processes and related controls as well as developing customized remediation strategies to add overall value to the business and increase control and risk management. Strong and improving client facing skills and insight for new business with the ability to identify new opportunities, clients or service offerings and propose accordingly. Possess articulate and persuasive abilities in communicating security-related concepts to a broad range of technical and non-technical staff, including senior executives
Listed skills include Itil, Information Security, Governance, Information Technology, and 6 others.
Company context helps verify the profile and gives searchers a useful next step.
A career timeline built from the work history available for this profile.
•As part of an official subcommittee, initiated by the International Organization for Standardization, assists in the overall development, authoring implementation and assessment of ISO 27001 &27002 standards, amongst others.
• Review and assess the adequacy of IT Security policies and procedures, controls and the execution of testing to determine compliance;• Acted as the most senior IT Auditor in the software license and entitlement compliance, that was executed against the Caribbean's largest Commercial bank- IBM. • Provided guidance and recommendations for the Network Security architecture and design for the implementation of IBM's monitoring tool, in the Caribbean's largest Commercial bank.• Execution and reporting of Network Vulnerability/security assessments; • Plan, scope, execute and manage various IT Audits and Security reviews, in the Financial, Utilities Investment and Manufacturing sectors. • Performed IT Disaster Recovery reviews to assess organizations’ recovery and contingency efforts in technical preparations for possible disruptions, disasters or outages, for Commercial banks and Investment entities.• Managed vendor selection and hand holding processes for various Banking and manufacturing clients• Executed enterprise wide IT Risk assessments with the major aim being to reduce the overall exposure to technology risk and drive the direction and effort of future assessments. • Performed consultative reviews in which, enterprises' Security Architectures were evaluated and subsequent recommendations, road maps and processes were recommended and further evaluated after implementation.• Provided coaching to junior staff in order to relate engagement goals, expectations and subsequently provided documented feedback, throughout engagements.• Managed Engagement Economics against desired realisation including negotiations with clients for changed billing terms, scope, right offs and final billing.• Plan, lead, manage and review work products during IT General Control reviews, technical security reviews and assessments for enterprise networks, Financial applications, databases and other enterprise platforms, etc against PCI, ISO, SANS and other applicable standards.
• Designed, tested and oversaw the implementation of the security, privacy and access control (aligned with ISO 27002 controls)for SPA client data and propriety tools, In a local PwC office.• Performed ITGC reviews and assessed the IT environments for the Organization’s External Audit clients, to determine the extent to which their technology controls could be relied on, in the mitigation of fraud and financial statement assertions-SOX assessment.• Designed, tested and oversaw the implementation of the security, privacy and access control for SPA client data and propriety tools, In a local PwC office.• Conducted data analysis and application reviews in order to investigate possible instances of fraud.• Utilized the Audit Control Language (ACL) in the interrogation and assessment of financial data, for Journal Entry testing and validation purposes• Identified, understood and subsequently assessed the effectiveness of Application controls in the following platforms: JDE, Accpac, PeopleSoft and Oracle E-Business suite (Financials).• Performed informal training for peers and the Senior Manager in the use of the ACL suite.
• Acted as a senior team member the Gap analysis and review of Information Systems Management aligned with ISO for a major investment organization. • Assessed the IT environments for the Organization’s External Audit clients, to determine the extent to which their technology controls could be relied on, in the mitigation of fraud and financial statement assertions-SOX based methodologies.• Performed IT Disaster Recovery reviews to assess organizations’ recovery and contingency efforts in preparations for possible disruptions, disasters or outages, for Commercial banks, Financial companies, Law firms and Investment entities.• Performed IT Governance and Strategy assessments using a combination of E&Y's propriety methodology, Cobit and ITIL frameworks. • Planned, scoped, executed and supervised staff in Network Security assessments for organizations in the Banking and Financial industries.• Planned, scoped, executed and supervised staff in various IT and internal audit advisory engagements, in the Financial, Telecommunications, Government, Utilities and Manufacturing sectors.• Identified, understood and subsequently assessed the effectiveness of Application controls in the following platforms: JDE, Accpac, PeopleSoft and Oracle E-Business suite (Financials)• Responded to various proposals in order to win engagements requiring IT security, IT Audit, Network Security, Network Penetration testing, Application control reviews, and BCDR solutions. • Conducted data analysis and application reviews in order to investigate possible instances of fraud using the ACL suite.•Develop consulting engagement’s project scope, budget and the specific procedures to meet objectives for projects in the Financial, Telecommunications, Government, Utilities and Manufacturing sectors. Seek to develop and present ideas to apply appropriate best practice to bring added value to audits.
Other employees you can reach at iso.org. View company contacts for 1264 employees →
Andrew Gyamfi
Colleague at Iso International Organization For StandardizationKumasi Metropolitan District, Ashanti Region, Ghana
View →
SR
Stephanie Rodriguez
Colleague at Iso International Organization For StandardizationNew York, United States
View →
NC
Nirmal Chauhan
Colleague at Iso International Organization For StandardizationNoida, Uttar Pradesh, India
View →
AG
Anna Gallet
Colleague at Iso International Organization For StandardizationGeneva Metropolitan Area, Switzerland
View →
LE
Lionel Egger
Colleague at Iso International Organization For StandardizationGeneva, Switzerland
View →
ET
Evgueni Tcherniaev
Colleague at Iso International Organization For StandardizationGeneva, Switzerland
View →
TA
Thor Anders Aarhaug
Colleague at Iso International Organization For StandardizationTrondheim, Trøndelag, Norway
View →
FJ
Francisco Javier Martínez
Colleague at Iso International Organization For StandardizationMexico City Metropolitan Area, Mexico
View →
EH
Ensar Hadziselimovic
Colleague at Iso International Organization For StandardizationIreland
View →
CP
Cesar Pablo Gutierrez
Colleague at Iso International Organization For StandardizationSpain
View →
Quick answers generated from the profile data available on this page.
Andrae Marsh works for ISO International Organization for Standardization.
Andrae Marsh is listed as ISO Assurance at ISO International Organization for Standardization at ISO International Organization for Standardization.
AeroLeads has found 2 work email signals at @iso.org for Andrae Marsh at ISO International Organization for Standardization.
Andrae Marsh is based in Fort Lauderdale, Florida, United States while working with ISO International Organization for Standardization.
Andrae Marsh has worked for Iso International Organization For Standardization, Bds Consulting, Pwc, and Ey.
Andrae Marsh's colleagues at ISO International Organization for Standardization include Andrew Gyamfi, Stephanie Rodriguez, Nirmal Chauhan, Anna Gallet, and Lionel Egger.
You can use AeroLeads to view verified contact signals for Andrae Marsh at ISO International Organization for Standardization, including work email, phone, and LinkedIn data when available.
Andrae Marsh holds Bachelor Of Science (Bs), Computer And Information Sciences And Support Services from University Of The West Indies.
Andrae Marsh is listed with skills including Itil, Information Security, Governance, Information Technology, It Audit, Active Directory, Security, and Disaster Recovery.
Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.
Start free trial Search contactsCheck these profiles if this is not the Andrae Marsh you were looking for.
View similar profiles