• Manage Third-Party Risk Assessments and Mitigations strategies, ensuring vendor compliance and reducing third-party risk exposure by 25%. Delegate auditors to conduct vendor assessments, review compliance documentation, and report findings for remediation• Managed all stages of the audit lifecycle, from client-specific planning to detailed fieldwork, reporting, and follow-up. Applied refined methodologies tailored to the complexities of diverse client environments, ensuring comprehensive audit processes and adherence to regulatory standards. This approach led to a 30% increase in audit efficiency and a 20% improvement in regulatory compliance.• Leverage strong project management skills by developing an audit scoping plan, timelines, and other control-related activities. Determining the Risk Control Matrix (RCM) and creating audit programs/plans, audit request lists, and designing testing matrices/test attributes. Organizing schedules to ensure projects complete on time and within budget. Monitoring auditors' progress and adjusting plans as necessary to achieve project goals.• Collaborate with IT and business units to develop and review IT General Controls (ITGCs) and business processes, ensuring compliance with regulatory requirements for disaster recovery, incident response, and business continuity. Develop and implement tailored risk mitigation strategies and control enhancements, improving vendor risk profiles and client relationships while ensuring alignment with organizational objectives and regulatory expectations.• Implement COSO and CoBIT frameworks, enhancing governance and control environments. Manage vendor risk assessments, including due diligence and OFAC checks, and conduct detailed contract reviews for data privacy and regulatory compliance. Identify contractual gaps and risks, providing mitigation recommendations. Mentor junior auditors in applying these frameworks consistently and accurately.

• Conducted precise IT risk assessments, meticulously documenting key risks and providing tailored evidence to support audit workbooks. Leveraged advanced analytical skills to identify potential vulnerabilities, resulting in a 20% enhancement in organizational security posture and a 15% reduction in security incidents.• Spearheaded high-priority, cross-divisional projects within Asset and Wealth Management (AWM), ensuring timely, on-budget, and high-quality implementations using robust methodologies and governance tools.• Orchestrated all stages of the audit lifecycle from planning to follow-up, overseeing audit execution with 100% adherence to timelines, achieving a 20% increase in efficiency and 25% improvement in audit accuracy, while proactively managing risks and influencing senior stakeholders to drive project delivery and implement optimal solutions.• Developed and applied refined methodologies to address complex client environments, collaborating with cross-functional teams to create customized solutions, enhance control effectiveness by 30%, and increase strategic decision accuracy by 20%, while also developing business cases, mitigating risks, and executing test strategies for successful project outcomes.• Presented audit findings and recommendations to senior management and client stakeholders, driving decision-making processes, and fostering transparency. Provided actionable insights and recommendations to enhance security posture and mitigate identified risks.• Develop and implement tailored risk mitigation strategies and control enhancements to address identified risks, improving vendor risk profiles and enhancing client relationships. Collaborate with cross-functional teams to design and implement effective risk management solutions, ensuring alignment with organizational objectives and regulatory expectations.

• Utilized the Archer governance, risk, and compliance (GRC) system to manage various applications effectively, overseeing all aspects of remediation, risk acceptance/exception, risk assessment, and risk calculator activities within the bank's remediation team. This involved meticulously tracking remediation efforts, identifying areas of improvement, and ensuring timely resolution of issues to maintain compliance with Sarbanes-Oxley (SOX) 404 requirements.• Executed IT operations SOX controls Test of Design and Test Of evaluation (TOD and TOE) with a keen focus on high and medium-risk controls, significantly improving control effectiveness and overall compliance posture. This involved conducting thorough assessments, identifying control gaps, and implementing remediation actions to strengthen internal controls and mitigate risks.• Collaborated closely with key stakeholders, including IT teams and business units, to develop and review IT General Controls (ITGCs) and business processes. Ensured that these procedures were aligned with regulatory requirements for disaster recovery, incident response, business continuity, and other critical areas.

• Collaborated with the IT Security Team and the Financial Aid Department to analyze system security, conduct audits, identify vulnerabilities, recommend encryption and MFA solutions, develop security policies, and coordinate monitoring and incident response, ensuring compliance and protection of sensitive student information.• Developed a robust data analytics and reporting system to monitor financial aid trends, student eligibility, and fund utilization by designing and building data pipelines for real-time data collection, creating interactive dashboards using Tableau and Power BI, and training staff on generating and interpreting reports for data-driven decision-making.• Implemented and streamlined automated processes for financial aid applications, verification, and disbursement by assessing current manual processes, identifying automation opportunities, collaborating with IT to develop workflows using PeopleSoft, and testing and deploying automated processes for smooth operation.• Ensured compliance with all federal, state, and institutional regulations by conducting regular audits, updating policies and procedures, and providing training sessions for staff on compliance requirements.• Developed and implemented a financial literacy program, creating educational materials on budgeting, loans, and financial planning, hosting workshops and webinars, and partnering with external financial advisors for expert sessions to help students manage their finances better.• Conducted thorough assessments of current systems and data sources, led the integration of disparate systems, and executed data migration to a centralized platform using ETL processes, ensuring data integrity, security, and seamless flow across PeopleSoft, CRM, and ERP systems.

• Directed the migration of legacy systems to a cloud-native environment, ensuring scalability, security, and cost-efficiency, by assessing systems, identifying cloud solutions, developing migration plans, and optimizing with AWS SEIM while managing access provisioning and deprovisioning.• Upgraded the Customer Relationship Management (CRM) system to boost customer engagement and streamline processes by assessing capabilities, identifying gaps, implementing automation features, and integrating with other business applications.• Led the integration of an Enterprise Resource Planning (ERP) system to streamline business processes, train employees, and ensure seamless application integration, while developing and executing a disaster recovery and business continuity plan with detailed procedures and regular testing for operational efficiency and security.• Spearheaded digital transformation, enhancing customer experience through a redesigned website and mobile app, implementing self-service portals for claims, and utilizing analytics to optimize user satisfaction.