Tyler Murphy Email & Phone Number

San Mateo, CA, US

San Mateo, CA, US

• Lead and execute comprehensive IT audits covering areas such as information security, data privacy, IT governance, and regulatory compliance within the fintech industry.
• Develop and implement risk-based IT audit plans aligned with organizational objectives, ensuring thorough coverage of key risk areas and regulatory requirements.
• Manage a team of external IT audit consultants, providing guidance, mentoring, and performance feedback to drive continuous improvement and ensure audit objectives are met.
• Collaborate with cross-functional teams including IT, security, compliance, finance, and legal departments to assess the effectiveness of internal controls and drive enhancements to mitigate risks.
• Evaluate the adequacy and effectiveness of information security controls, including access controls, change management controls, and incident response procedures, to safeguard sensitive financial data.
• Prepare clear and concise audit reports detailing findings, recommendations, and action plans for senior management and audit committee review, facilitating informed decision-making and risk mitigation strategies.

Hanover, New Hampshire, US

• Collaborated with White Mountains’ management team in executing a range of IT audit activities as part of the overall Annual Internal Audit and Sarbanes-Oxley (SOX) plan, including independently leading the IT SOX.
• Advised management of White Mountains’ subsidiaries on the appropriate design of IT general controls and developed close relationships with stakeholder teams. Supported the business audit team in areas where IT and.
• Evaluated whether controls at each of the subsidiaries were in compliance with internal control frameworks and external policies and regulations and provided recommendations to strengthen the subsidiaries’ controls.
• Assisted with the IT risk assessment process, which supported the annual IT audit plan, by maintaining an awareness of both internal and external current and emerging IT risks. Developed materials to communicate.
• Assessed cybersecurity practices and risk areas and provided strategic recommendations to management to assist in predicting, guarding against, and proactively responding to evolving cyberattacks.
• Liaised with external auditors on IT-related aspects of their audit, including their audit of internal controls over financial reporting, to articulate audit procedures, findings and their impact, and overall audit.

Canton, MA, US

• Oversaw the development, implementation, and validation of compliance for IT regulatory areas including SOX, PCI-DSS (for the Dunkin’ mobile app), and global data privacy regulations (CCPA and GDPR), while managing the.
• Provided risk management leadership and expertise pertaining to corporate information security risk initiatives, including security awareness training, social engineering testing, and vulnerability scanning, and worked.
• Managed the development of Dunkin’s third-party vendor risk management program process by instituting a vendor management policy, implementing a vendor risk management tool (OneTrust), and defining procedures for the.
• Oversaw the effectiveness of both the tools and partnerships required to execute a successful IT compliance program and oversaw remediation efforts for IT compliance exceptions. Assisted in automating ongoing audit.
• Provided an understanding of the internal and external risks with respect to Dunkin’s operating environment, and performed risk evaluation, treatment and reporting with respect to IT risk across the organizations..

London, GB

• Managed multiple end-to-end SOCR (SOC 1 and SOC 2) and SOX and ICFR financial statement audit engagements for prominent Fortune 100 clients. Worked with the clients to tailor the assessments and reports to identify and.
• Led the implementation of SOC 2 reports, from pre-assessment stage to Type 1 to Type 2, at multiple clients, which included 4 out of the 5 Trust Services categories (Security, Availability, Processing Integrity, and.
• Served as primary IT manager across eight clients and managed teams of two to seven staff and seniors, providing feedback on their growth and development and leading their quarterly feedback process.
• Managed engagement resources, oversaw project timelines and budgets, coordinated with subject matter advisors (SMAs) when required, managed the creation of final audit reports, and communicated audit results to both.
• Deepened client relationships through ongoing meetings and on-site visits, understanding the clients’ needs, developing proposals for new work, and providing project oversight and end deliverables.
• Led meetings with management and C-Suite across several insurance and wealth and asset management clients around security issues, understanding of risk and controls, and communication of new standards and regulations.

London, GB

London, GB

GB

• Performed audit and attestation services over financial services companies’ IT environments and executed walkthroughs and testing over their controls.
• Assessed companies’ IT systems and structure to determine significant risks.
• Served as a liaison between audit teams and clients to explain IT impact on financial applications.

Bachelor Of Science In Business Management, Accounting, Information Technology Management

Master Of Science In Accounting (Msa), Accounting

Management

High School Diploma, General Studies