A seasoned IT compliance program manager with expertise in security, governance, risk, and SOX compliance. With a CISA certification and over 6 years of hands on experience, I thrive on deciphering the complexity of risk management and ensuring regulatory compliance in dynamic technological settings.Throughout my career, l've been at the vanguard of driving compliance initiatives and navigating complex information technology settings. At HBC, I led IS/IT compliance and audit activities, achieving significant milestones in mistake reduction and operational optimization.My expertise spans compliance management, project oversight, cybersecurity, and stakeholder engagement and management.Furthermore, my core competencies include compliance management, project management, stakeholder collaboration, cybersecurity controls, and risk assessment and management.I am well-versed in industry standards and frameworks such as ISO 27001/2, NIST-CSF, COBIT, and SOC 1/2 reporting. Using a broad toolkit that includes ACL, SQL, Power Bl, and SAP GRC, I have effectively managed IT risk programs, conducted audits, and improved information security protocols.My commitment to excellence and innovation is demonstrated by my track record of delivering tangible results and driving cost efficiencies. Whether I'm assessing risks during the SDLC or improving awareness initiatives, I'm committed to staying ahead of industry norms and employing cutting-edge technologies to create corporate success.Feel free to connect and explore how my skills can contribute to your organization's growth and resilience in an ever-evolving IT landscape.
-
It AuditorOntario Power GenerationToronto, On, Ca -
Business AnalystWalmart May 2024 - Present -
Senior Analyst - It/Is Compliance And ControlsHudson'S Bay Company Jan 2022 - Apr 2024• Conduct audits of Information Technology infrastructure, operations, applications, development, and Cybersecurity to ensure 100% compliance with policies, standards, procedures, laws and regulations, and integrity of operating and financial information.• Managed IS/IT compliance/audit activities related to Sarbanes Oxley (SOX), IT Control Frameworks, Service Operation Control, and Security audits.• Compile full executive assessment and testing results on small, large, and complicated client engagements effectively, ensuring that conclusions, findings, and recommendations align 100% with department standards. • Manage all IT audits, examine information security, computer operations, and application change controls that keep errors to less than 1%, and negotiate solutions and corrective action plans. -
Senior Grc AnalystLoblaw Companies Limited Feb 2020 - Jan 2022Toronto, Canada Area• Worked on Risk Register in Archer tool: reviewed existing entries; performed Asset identification, evaluation; vulnerability assessment, risk assessment and documented ISMS controls after thorough discussions and reviews with stakeholders.• Reviewed, monitored, tested, and managed vendor and partner contractual compliance and controls, including SOC1/SOC2, insurance, and other certifications.• Delivery of the information security awareness program and briefings; scheduling, monitoring, and reporting on security awareness and induction training for all staff within the scope of the ISO 27001 schedule. -
Business AnalystLanner Electronics Inc. Jun 2017 - Feb 2020Toronto, Canada Area• Formulated and defined systems scope and objectives for complex projects and foster communications between business stakeholders and technology teams.• Lead the development of conceptual/architectural designs and user interface mock-ups.• Consult with users and clients to solve complex system issues/problems through in-depth evaluation of business processes, systems and industry standards and recommend solutions.• Identified and facilitated documentation development for new and modified business policies and procedures (SOPs and workflows) that ensured effective implementation of technology solutions.• Led change management efforts, including communication and risk mitigation strategies, that prepared the business to successfully adopt system changes to achieve business goals. -
Information Technology Internal AuditorFocalpoint Associates & Company Aug 2013 - Jul 2015• Coordinated walkthroughs testing technology controls for incident response, identity & access management, data privacy, application and vulnerability management, and incident response, which discovered risks and vulnerabilities to IT assets & resources.• Implemented segregation of duties, structural authorizations, access limitations, job profile assignments and evaluated security and business, increasing process control by 25%.• Utilized Computer Assisted Audit Techniques (CAAT) tools, including MS Excel and IDEA, to analyze manual and automated data, validating and recalculating revenue, income, and expense, which increased accuracy by 10%.• Performed periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and external Web integrity scans to determine compliance with laid down regulations.• Provided recommendations for enhancing IT operations and risk management and strengthened IT controls by collaborating with process owners and control operators across business functions.
Frequently Asked Questions about Lola O.
What company does Lola O. work for?
Lola O. works for Ontario Power Generation
What is Lola O.'s role at the current company?
Lola O.'s current role is IT Auditor.
Who are Lola O.'s colleagues?
Lola O.'s colleagues are Kris Semeniuk, Adam Ralston, Andrew Bulmer, Jacob Xu, Reid Willoughby, Anne Eakin, Carissa Gallant Léger.
Not the Lola O. you were looking for?
Free Chrome Extension
Find emails, phones & company data instantly
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial