Tim C. Email & Phone Number

Morgantown, West Virginia, US

• Spearhead the creation and implementation of a cutting-edge risk program to align with the company's ambitious growth strategy within a tightly regulated industry.
• Provide expert guidance and independent oversight to ensure that risk management disciplines were consistently applied and aligned with regulatory requirements.
• Collaborate closely with business and executive leaders to cultivate a risk-aware culture and embed risk management principles throughout the organization, thereby strengthening its overall resilience.
• Serve as a trusted advisor and subject matter expert for all audit and risk-related matters, helping the organization to anticipate and manage risk effectively.

Houston, Texas, US

• Developed and executed a visionary technology audit and audit data analytics strategy that transformed the audit division's processes and capabilities.
• Spearheaded a team of 4 IT auditors to deliver impactful results by employing a thought leadership approach, conducting in-depth root cause analysis, and presenting actionable solutions that accelerated the client's.
• Directed a team of 5 data analysts to create highly innovative and thought-provoking content using advanced visualizations and Power BI dashboards that supported the County's senior leadership.
• Championed the implementation of consistent audit practices department-wide by serving as the TeamMate expert.
• Earned trust and built strong relationships with business partners across the organization through providing quality insights regarding risk, controls, and data.

Independent consultant with experience in leading, managing, and executing audit, SOX, technology, and enterprise risk engagements. Prior experiences include:Audit: Achieved compliance with the Institute of Internal Audit (IIA) Standards as validated by a third-party assessment. Committed to professional development and hold designations of Certified.

Houston, TX, US

• Reporting to the Audit Committee, directed and oversaw all aspects of the Internal Audit function for a growth-oriented, publicly traded master limited partnership (MLP) with a $1 billion market cap. Developed a.
• Reestablished the department and transformed the function into a value-added business partner by building strong working relationships with executive management and the Board.
• Partnered with the accounting function to establish the Company’s 302 and 404 Sarbanes-Oxley (SOX) approach and compliance efforts based on the Committee of Sponsoring Organizations of the Treadway Commission (COSO).
• Developed an audit plan that considers and continuously assesses the financial, compliance, information technology, fraud, and operational risks of the Company. Led the business process, operations, and IT audit teams.
• Ensured compliance with audit standards and methodology and delivery of high-quality internal auditing services in accordance with the professional standards promulgated by The Institute of Internal Auditors (IIA).
• Developed and implemented the Enterprise Risk Management (ERM) program with tools and reporting aligned with COSO. Assisted executive leadership and risk owners in creating and maintaining risk maps and present overall.

Sugar Land, Texas, US

• Reporting to the Audit Committees, directed and oversaw all aspects of the Internal Audit function for a series of publicly traded MLPs, including separately traded CVR Refining and CVR Partners, with over $5 billion.
• Reestablished the department and transformed the function into a value-added business partner.
• Increased SOX audit efficiencies and maintained positive interaction with external audit.
• Led and delivered high quality business process, operations, and IT audits within budget.

San Antonio, Texas, US

• Reporting to the Audit Committees, directed and oversaw all aspects of the Internal Audit function – reporting directly to the Audit Committees of Western Refining and Western Refining Logistics, a Fortune 300.
• Transformed the Internal Audit function from a SOX focused department to a value-added, risk focused department that addressed strategic, financial, operational, and emerging risks Grew the department from 3 to 7 team.
• Implemented automated workpapers and data analytics (ACL).
• Assisted with the implementation of an effective Enterprise Risk Management program.
• Achieved compliance with the IIA Standards as validated by a third-party assessment.
• Ensured compliance with the COSO 2013 framework.

Scottsdale, Arizona, US

* Reviewed the financial statements, MD&A and annual and interim earnings* Discussed the guidelines and policies for risk assessment and risk management* Acted as a trusted business advisor to the Community

San Antonio, TX, US

• Provided professional internal auditing work as a component of Tesoro’s governance structure and was ccountable for financial, operational, information technology, and Sarbanes-Oxley (SOX) audits consisting of.
• Managed consulting services, including independent risk assessments and investigations. Oversee the execution of integrated audits to ensure the application and supporting system components of business process audits.
• Initiated internal process improvement initiatives to enhance career development for our staff, to enrich our interactions with key stakeholders and to improve the internal performance of the department.
• Led the development of the annual audit plan and responsible for maintaining the audit universe.
• Maintained organizational and professional ethical standards, including overseeing our internal quality assurance program and external assessments and maintaining our audit policy manual and TeamMate.
• Communicated effectively (both oral and written) with all levels of management, internally and externally, on technical and business related matters.

London, GB

• Provided assurance and advisory services including project management, internal audit outsourcing, systems and controls compliance, information security and privacy.
• Managed a client portfolio in excess of 5,000 client hours and budgets exceeding $1.1 million.
• Supervised multiple engagements and concurrent teams typically consisting of 2-8 members.
• Directed the external IT audit strategy and approach for numerous assurance engagements and ensure appropriate integration of systems and process auditing and controls, development of an efficient risk-based audit.
• Led Internal Audit outsourcing engagements including the testing of ITGCs, system and application controls on behalf of management, providing security and privacy related services and assessing the effectiveness of the.
• Reengineered the IT support processes of an international systems hosting provider to design and implement a global, consistent support process based upon CobiT and ITIL.

GB

• Served a two-year rotation in London, England working on Royal Dutch Shell; duties included overseeing international teams in the UK, United States, Malaysia, and Nigeria and developing our international audit approach.
• Scoped, developed and led the external IT audit strategy and approach for a Global 50 priority client; duties included providing international direction and support, developing a consistent, global, risk-based audit.
• Led the outsourced IT Internal Audit function of an oilfield services Fortune 1000 organization; duties included conducting annual risk assessments, creating and overseeing the delivery of an overall IT audit strategy.
• Conducted risk and quality reviews of peer PwC offices to ensure compliance with internal guidelines and professional standards of auditing.
• Developed a computer-assisted audit technique (CAAT) leveraging Microsoft Access to analyze manual journal testing as part of SAS99 procedures for a SAP client.
• Revised our local audit approach to IT General Controls leveraging engagement best practices and revisions to legislation (AS5) to facilitate a risk based approach.

Menlo Park, California, US

• Managed technical consulting engagements, risk assessments, and implementations.
• Administered the training of staff within the Enterprise Security Consulting practice.
• Identified new product offerings and supervised the creation of relevant marketing materials, audit plans and strategies, training requirements, and budgets.
• Assessed the effectiveness and efficiency of the financial, process, and security controls in place for the purposes of financial reporting for external audit clients.
• Drafted standards, configurations, policies and procedures for a leading healthcare system for compliance with the Health Insurance Portability and Accountability Act.
• Redesigned and optimized contract management processes for clients by incorporating an automated solution to achieve standardization, control and enforce compliance.

• Assessed the effectiveness and efficiency of the financial, process, and security controls in place for the purposes of financial reporting for external audit clients.
• Drafted standards, configurations, policies and procedures for a leading healthcare system for compliance with the Health Insurance Portability and Accountability Act.
• Redesigned and optimized contract management processes for clients by incorporating an automated solution to achieve standardization, control and enforce compliance.
• Helped build the enterprise security practice; duties included identifying training needs for our team, leading vulnerability and security/controls assessments, developing marketing materials and creating consistent.
• Executed enterprise security configuration and controls reviews. Duties included reviewing system configurations (e.g. operating systems, networking devices, and firewalls), executing automated and manual vulnerability.
• Performed an analysis of the contract management process for three software vendors.

St. Louis, MO, US

St. Louis, Missouri, US

Master Of Business Administration (Mba), Operations Management

Bachelor Of Science (B.S.), Management Information Systems, General

High School Diploma, High School/Secondary Diplomas And Certificates