Manage the IT Security team ensuring system-wide data and networks are secure.

• Perform risk assessments, plan audit coverage, and execute technology audit engagements. • Validate design of remediation plans to address control deficiencies and evaluate the effectiveness of remediated controls. • Represent audit and control perspective and risk evaluation to technology implementation teams and financial audit teams. • Conduct risk assessment for new IT projects and determine approach to audit coverage for high-risk projects. • Provide subject matter expertise regarding cloud-based applications.

- Provide IT risk assessment, evaluation, and remediation services to clients.- Identify control requirements, assess risk, and design and execute evaluation and audit procedures.- Collaborate with clients to strengthen control design and operation.- Consult with clients to document and implement appropriate control process, and to update existing documentation to incorporate improved controls.- Remediate deficiencies identified by internal and external entities.

• Planned and executed IT controls for all GRC business units. These business units provide software and content publishing and expert services for the banking, legal, and insurance industries. • Performed IT risk assessments across all business units.• Drove IT control related process improvements to strengthen internal IT controls.• Provided consultative support to IT and business management to ensure an effectively controlled technology environment and managed interactions with SOC1 and SOC2 providers.• Assisted management in the development and roll out of global policies and procedures.• Managed remediation of issues identified during internal audits, internal controls testing, and SOC audits.• Provided project management for corporate rollout of control process improvement initiatives.

Assess, evaluate, and conduct project audit reviews on high risk and large IT capital investment projects at U.S. Bank. Capital Expenditure Project audits are based upon project budget, risk level to the business line, application impact, and/or upon special request by a Business Line owner or Chief Risk Officer.Plan, scope, and oversee the work to be performed on all assigned Capital Expenditure project audits. Review staff work papers throughout the course of the project audit. Attend monthly project team and quarterly Steering Committee status update meetings. Provide regular status updates to the Project Manager and Business Line owners. Document and discusses audit findings/exceptions, and report audit results to stakeholders.

Planned, scoped, and performed IT General Controls (ITGC) audits for a Bio-Techne, a major manufacturer of biotechnology products, and its subsidiary companies.Worked closely with corporate IT management to evaluate the design of IT processes and implement revised Sarbanes-Oxley compliant processes.

• Directed IT Audit engagements for several publicly held audit clients, including audits of general computer controls, application controls, and operational processes. • Assisted clients in the implementation of Sarbanes-Oxley-compliant IT controls including System Development Life Cycle methodologies, program change controls, and administrative processes. • Worked with a wide variety of client personnel, including audit committees, senior IT management, and business area management to achieve IT control objectives and ensure efficient and effective management of IT resources. • Planned and performed ongoing risk-based review, testing, and reporting to ensure continued compliance. • Partnered with IT management to integrate controls into IT policies, procedures, and standards. • Provided presentations and written reports to all levels of corporate management.

Responsible for all IT Audit activities at AgriBank, a wholesale bank with more than $50 billion in assets. • Conduct risk assessments and develop risk-based annual audit plan and coordinate activities with financial and operational audit staff. • Design and perform IT Sarbanes-Oxley testing. • Collaborate with senior IT management to ensure implementation of audit recommendations and to integrate IT controls into policies, standards, and procedures. • Perform risk analysis and audit services for AgriBank district Farm Credit associations.

• Designed and taught a variety of Information Technology courses including Networking (Data Communications and Network Design, Network Configuration, and other courses), Systems Analysis, Database Design and SQL, IT Systems Management, and Client/Server Technology. • Designed and implemented curriculum for 2-year diploma and degree programs and advanced technical certificates in IT Auditing.

• Managed overall IT Audit engagements for several publicly held audit clients, including audits of general computer controls, application controls, and operational processes. • Supervised and trained audit staff, developed audit approach and methodology, and guided remediation of issues identified during audit. • Assisted clients in the implementation of Sarbanes-Oxley-compliant IT controls including System Development Life Cycle methodologies, program change controls, and administrative processes. • Worked with a wide variety of client personnel, including audit committees, senior IT management, and business area management to achieve IT control objectives and ensure efficient and effective management of IT resources. • Planned and performed ongoing risk-based review, testing, and reporting to ensure continued compliance. • Partnered with IT management to integrate controls into IT policies, procedures, and standards. • Provided presentations and written reports to all levels of corporate management.