Konstantine Poulios Email and Phone Number
Konstantine Poulios work email
- Valid
- Valid
- Valid
Konstantine Poulios personal email
Konstantine Poulios phone numbers
Information technology internal controls and compliance manager with over 15 years of experience in audit, compliance, and consulting for the financial services, healthcare, and cloud services industries. Contributing author of ePractice Aids for Reporting on Controls of Service Organizations published by Thompson-Reuters. Perform Service Organization Control (SOC) reports and Sarbanes-Oxley Act (SOX) compliance for public companies, information security reviews based on ISO 27001, entity-wide IT risk assessments, and assist companies with their information technology and security compliance initiatives.
Davis Farr Llp
View- Website:
- davisfarr.com
- Employees:
- 37
-
Senior ManagerDavis Farr Llp Feb 2018 - PresentIrvine, Ca> Manage and perform SSAE 18 SOC 1 and SOC 2 internal control reviews. Activities include client interviews to obtain an understanding of the controls in place, analysis of controls against industry standards and best practices, testing of controls to ensure they are operating effectively, and report writing. Areas of review include access management, logical and physical security, change management, intrusion detection, contingency planning, and timely reporting.
-
Security Compliance ManagerTruecar, Inc. Dec 2015 - Oct 2017Santa Monica, Ca> Coordinate with internal audit, external audit, and technology personnel in performance of internal control projects. > Document and rewrite policies, procedures, and guidelines to ensure they meet current processes and recommend improvements to conform with industry best practice.> Review third party security controls prior to contract execution to ensure compliance with TrueCar requirements. In addition, review third party compliance reports (e.g., SOC 1, SOC 2) for high risk vendors annually.> Perform periodic user access reviews for SOX significant systems to ensure personnel access is appropriate and segregation of duties exist.> Monitor vulnerabilities using third party tools (e.g., Nessus, Security Center) and coordinate with technology personnel to asses risk and implement patches to mitigate risk. > Analyze security groups for internal applications and recommend schemes to automate the granting and removal of user access. > Monitor assignment of security awareness training, including policy review and webinars, to ensure completion by all personnel. -
Program Manager - Security & ComplianceCornerstone Ondemand Sep 2014 - Nov 2015Santa Monica, Ca> Document and monitor internal controls for multiple solutions in preparation for SSAE 16 Service Organization Control (SOC) reviews. > Present action plans to management and monitor the status of action plans to ensure risks are remediated. Manage annual update of the IT Risk Assessment, based on NIST 800-30, as required by the Information Security Policy, which is based on ISO 27001. > Present information security organization overview and controls to current and prospective clients. > Review security clauses of prospective client contracts to ensure they agree with current practice. Manage vendor compliance with Cornerstone OnDemand security requirements.> Monitor vulnerabilities using third party tools (e.g., Nessus) and coordinate with technology personnel to asses risk and implement patches to mitigate risk. -
Senior Manager, It Audit & ConsultingCbiz Mhm, Llc Oct 2008 - Aug 2014Greater Los Angeles Area> Manage and perform SSAE 16 SOC internal control reviews of health care and data center managed services providers. Activities include client interviews to obtain an understanding of the controls in place, analysis of controls against industry standards and best practices, testing of controls to ensure they are operating effectively, and report writing. Areas of review include access management, logical and physical security, change management, intrusion detection, contingency planning, and timely reporting.> Perform data import and analysis using IDEA software. Activities include reconciliation of data, duplicate transaction detection, unusual transaction detection, and random sample selection.> Write proposals for information technology consulting engagements, draft and final reports following engagements, and make recommendations to improve client internal controls. -
Senior Consultant / Auditor, ItFirst Data Corporation Feb 2001 - Nov 2007> Managed and assisted in the completion of information technology general control reviews, project management reviews, and integrated technology, operational and compliance reviews. > Performed information security reviews, based on ISO/IEC 17799, for several mission critical applications (e.g., Oracle Financials, Hyperion Financial Management), databases (e.g., Oracle, SQL), and operating systems (e.g., Windows 2000, Windows 2003, UNIX, OS/390). > Managed the overall SAS 70 engagement between the service provider and First Data, In addition, managed individual SAS 70 engagements for specific business units.> Completed Sarbanes-Oxley Act (SOX) compliance reviews for several mission critical applications focusing on Information Security controls. > Other types of reviews performed include data center operations, change management, applications controls, software license management, business continuity management and disaster recovery. > Documented audit reports noting risks associated to processes under review and recommended action plans to remediate the risks. -
It AuditorU.S. Office Of Personnel Management Sep 1998 - Feb 2001> Assisted in the performance of general control reviews of healthcare providers that contracted with the Federal Employees’ Health Benefits Plan (FEHBP) to ensure integrity, confidentiality, and availability of claims data maintained in computer-based information systems. > Performed reviews using the Federal Information System Controls Audit Manual (FISCAM). Areas of review included entity-wide security management, access controls, software change control, and service continuity.> Supported field auditors by utilizing SAS software to provide customized reports.
Konstantine Poulios Skills
Konstantine Poulios Education Details
-
Accounting
Frequently Asked Questions about Konstantine Poulios
What company does Konstantine Poulios work for?
Konstantine Poulios works for Davis Farr Llp
What is Konstantine Poulios's role at the current company?
Konstantine Poulios's current role is IT Internal Controls & Compliance Professional.
What is Konstantine Poulios's email address?
Konstantine Poulios's email address is kp****@****car.com
What is Konstantine Poulios's direct phone number?
Konstantine Poulios's direct phone number is +142425*****
What schools did Konstantine Poulios attend?
Konstantine Poulios attended University Of Scranton.
What skills is Konstantine Poulios known for?
Konstantine Poulios has skills like It Audit, Internal Controls, Sarbanes Oxley Act, Information Technology, Auditing, Cisa, Information Security, Sas70, Internal Audit, Management, Iso 27001, Security.
Who are Konstantine Poulios's colleagues?
Konstantine Poulios's colleagues are Anahiz Diaz-Ibarra, Jose Sosa, Jennifer Rose, April Ninh, Kyle Haas, Nick Terry, Maria Flores.
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial