• Determined audit scope and performed all auditing activities in line with organization’s internal audit and regulatory requirements. • Published audit report for the audit committee with absolute compliance and accuracy.• Led Delivery Life Cycle project audits and continuous audits as necessary. • Led audit review and ensured audits were performed qualitatively and on a timely basis.• Ensured findings were documented per the organization standards and published on time… Show more • Determined audit scope and performed all auditing activities in line with organization’s internal audit and regulatory requirements. • Published audit report for the audit committee with absolute compliance and accuracy.• Led Delivery Life Cycle project audits and continuous audits as necessary. • Led audit review and ensured audits were performed qualitatively and on a timely basis.• Ensured findings were documented per the organization standards and published on time, piloting comprehensive review of all audit reports. • Managed a project audit team of three, conducting performance management and assessment. Show less

• Demonstrated expert understanding of client’s compliance and regulatory requirements, designing the appropriate solutions in collaboration with the client, discussing and finalizing all results to ensure business goals were met. • Led drafting approach and developed proposal documents for the IT Risk Advisory and attestation projects. • Designed and implemented audit plan, risk and control matrix for IT Project Audits. • Piloted ITGC audit as part of statutory compliance… Show more • Demonstrated expert understanding of client’s compliance and regulatory requirements, designing the appropriate solutions in collaboration with the client, discussing and finalizing all results to ensure business goals were met. • Led drafting approach and developed proposal documents for the IT Risk Advisory and attestation projects. • Designed and implemented audit plan, risk and control matrix for IT Project Audits. • Piloted ITGC audit as part of statutory compliance requirements, Internal Audits, SSAE / ISAE controls assessment, and review of information security controls; provided consultations in implementing ITGC environment for clients. • Executed IT Governance implementation in projects and audits. Show less

• Conducted SAP Security and ISAE controls assessment and performed continuous controls monitoring as part of management assessment for a cloud-based eProcurement software solutions company. • Developed definition and documented the IT processes in line with client’s (a reputed multinational conglomerate in steel industry at Duisberg, Germany) ITGC requirements and supported process implementation and controls. • Performed VAPT, analyzing the vulnerabilities and submitting management… Show more • Conducted SAP Security and ISAE controls assessment and performed continuous controls monitoring as part of management assessment for a cloud-based eProcurement software solutions company. • Developed definition and documented the IT processes in line with client’s (a reputed multinational conglomerate in steel industry at Duisberg, Germany) ITGC requirements and supported process implementation and controls. • Performed VAPT, analyzing the vulnerabilities and submitting management report with recommendations for public sector bank. • Conducted SOX – Access Control and SOD assessment at offshore for a MNC in FMCG industry for their LATAM region. • Orchestrated SOX – IT application controls testing for a MNC in entertainment industry in Burbank, USA.• Executed SOX ITGC assessment for a MNC in automobile industry in Detroit, USA.• Executed SAS 70 audit activities pertaining to CG AOS IT controls for external auditors, USA.• Conducted Operational Risk Assessment for the BPO engagement of a MNC in non-alcoholic beverages industry. Show less

• Acted as Information Risk Assurance consultant while managing IT audit assignments. • Performed services such as risk assessment, Sarbanes-Oxley Compliance Assessment, and SAS 70 Assessment. • Led the evaluation of internal controls and performed process mapping through flow-charts and narratives. • Successfully defined the Standard Operation Procedures for various IT Sub Processes and conducted IT General Controls testing, ensuring absolute compliance with SOX.• Coordinated… Show more • Acted as Information Risk Assurance consultant while managing IT audit assignments. • Performed services such as risk assessment, Sarbanes-Oxley Compliance Assessment, and SAS 70 Assessment. • Led the evaluation of internal controls and performed process mapping through flow-charts and narratives. • Successfully defined the Standard Operation Procedures for various IT Sub Processes and conducted IT General Controls testing, ensuring absolute compliance with SOX.• Coordinated SOX ITGC audit in collaboration with client teams (MNC in ball bearing manufacturing), alongside external auditors at Capgemini, Dusseldorf, and Germany.• Acclaimed by client (a MNC in FMCG industry) for performing timely and qualitative ITGC assessment at following locations: Durban, South Africa; Sydney, Australia; Manila, Philippines; RAC (Regional Application Center) in Istanbul, Turkey. Show less

• Liaised with Asia AMET IT units in 20 countries and with 2 regional units in order to carry out IT compliance activities, including key financial system scoping, ITGC assessments, exceptions review, and management reporting. • Performed Sarbanes-Oxley ITGC Compliance Assessments for the Regional IT units, as well as U2AA (Unity to AsiaAMET) implementations across countries, one of the most strategic and significant IT systems rollout in the organization, across AsiaAMET IT units… Show more • Liaised with Asia AMET IT units in 20 countries and with 2 regional units in order to carry out IT compliance activities, including key financial system scoping, ITGC assessments, exceptions review, and management reporting. • Performed Sarbanes-Oxley ITGC Compliance Assessments for the Regional IT units, as well as U2AA (Unity to AsiaAMET) implementations across countries, one of the most strategic and significant IT systems rollout in the organization, across AsiaAMET IT units. • Led the evaluation of IT General Controls for the IT processes, performing process mapping through both flow-charts and narratives. • Defined, documented, and implemented standardized IT significant processes in line with Organization IT; defined and documented the processes for AAIT Policy Compliance Operating framework. • Operational Control Assessment requirements across Asia AMET IT units. • Published Internal Service Providers Report for the Regional IT Units to the user countries. Show less

• Managing IT Systems and Business Applications• Managing IT Infrastructure services and 3rd Party vendors• Implementing security policies / procedures and controls and deploying associated infrastructure to effectively mitigate risk to systems and data. • Implemented IT processes and controls adhering to DuPont Internal control catalog for financial reporting as part of SOX compliance.• Successfully formulated and documented the SOPs for change management, carried out… Show more • Managing IT Systems and Business Applications• Managing IT Infrastructure services and 3rd Party vendors• Implementing security policies / procedures and controls and deploying associated infrastructure to effectively mitigate risk to systems and data. • Implemented IT processes and controls adhering to DuPont Internal control catalog for financial reporting as part of SOX compliance.• Successfully formulated and documented the SOPs for change management, carried out designing of the change management process control documents for the Business application.• Performed auditions and achieved a passing “Meets Standard” Rating for Desktop & Application audit from DISO internal audit, by ensuring internal controls over financial reporting met requirements.• Functioned as DISO (DuPont Information Security Organization) Site Officer and accomplished 99% incident free uptime which includes 99% availability of Production Servers and 98% availability of Data circuit.• Drafted DR Plan and designed Application / Database recovery procedures as a part of DR plan for all the business applications and successfully tested and extended superior contributions to business. • Spearheaded the IT part of ERP implementation for GL Accounting & Plant Operations that involved more customization.• Trained end users in information security awareness and peers in System admin & Database Administration functions. Show less