Vice President Director of Technology Business Controls in Global Technology Services at State Street Corporation

Enterprise Technology Services Risk and Control

• Coordinate all aspects of the IT SOX Audit for the entire US Division: responsible for creating and updating narratives, gathering populations and sample supporting documentation for walkthroughs and testing, and conducting walkthroughs for 60+ applications in scope across 6 Business Units• Establish a common approach for managing the IT SOX Audit that can be applied to the entire US Division to avoid inconsistencies in working with Internal and External Auditors• Conduct risk assessments of third parties and external vendors using SIG framework• Assist US Division Business Units during IT internal audits and integrated audits• Coordinate US Division responses for Government and State Exams of John Hancock / Manulife

• Established the IT Risk Management group within the Long Term Care Business Unit • Liaison between the Business Unit and Internal / External auditors for IT audits• Created an outsourcing and vendor management framework for the Business Unit to ensure compliance with the Corporate Vendor Management Policy• Coordinated all aspects of IT SOX testing for the Long Term Care business Unit• Responsible for creating management responses for IT audit deficiencies and for conducting follow-ups on open issues and remediation plans.• Conducted risk assessments of third parties and external vendors• Assisted Finance and Operations during integrated audits• Facilitated responses to client questionnaires• Assisted with State and Government Audits of John Hancock / Manulife

• Completed integrated and technical audits, including audits of IT infrastructure, applications and system development life cycle projects. • In-charged up to five IT and operational audit staff on technical audits and system development life cycle reviews• Developed Audit Command Language (ACL) routines to complement audit program steps and conducted training on these routines for IT Audit staff• Performed attestation walkthroughs and testing on behalf of the external auditor

• Planned and conducted information systems and operational audits to review and asses the adequacy of internal controls• Performed Sarbanes-Oxley testing and documented results for external auditors and reporting• Managed operational and financial auditors on integrated audits

• Performed IT General Controls Reviews and worked in conjunction with financial audit teams• Completed Statement on Auditing Standards (SAS) 70 Reviews• Assisted public clients with Sarbanes-Oxley 404 documentation based on COSO and CobiT Control Frameworks• Specialized in Computer Assisted Audit Techniques (CAAT) and Audit Command Language (ACL) Analysis at the E&Y International Shared Analysis Center.

• Prepared market, branch location, and other tracking studies to identify new business opportunities for clients in the banking industry• Carried out product review studies and comparisons to create new banking products that would provide a competitive advantage and increase revenues• Performed mortgage loan quality audits and created databases to track the reviews