Information Technology Auditor
Current• Testing and documentation of key SOX and IT General controls leveraging a defined process compliance monitoring process. • Perform walkthroughs and testing relating to Information Technology General Controls and application controls using HIPAA and SOX.• Reassess the controls and deficiencies and retesting all the identified key controls within SOX guidelines.• Coordinated with IT department and external auditors during SOX IT testing.• Assisted in communicating identified IT audit findings to senior management and clients • Experience performing platform reviews such as Windows and UNIX Operating Systems• Ensure customers follow security policies and procedures following NIST 800 53.• Assisted in conducting walkthrough and detailed testing of ITGC in the following areas: Access, Change Management, IT Operations and Application controls.• Provided accurate and comprehensive audit status reporting to all levels of leadership.• Maintain good working relationship with clients to enhance customer satisfaction and work with client management and staff at all levels to perform audit services.• Plan and manage the ITGC audit functions using best practice audit guidelines in compliance with COSO and COBIT standards.• Developed and maintained SOX testing project management documentation including timelines, due dates, dependencies and resource tracking.• Assisted senior level staff with conducting onsite interviews and testing.• Interacted with external auditors and consultants in facilitating the testing process; ensures efforts are not duplicated. • Knowledgeable in-Service Organization Control (SOC) /SSAE 18 Review, HIPAA, COSO, COBIT and SOX frameworks.• Tested the ITGC and application controls for federal agencies using FISCAM and FISMA.