About Me:An IT Auditor with a solid foundation in QA testing. I bring a unique perspective to the dynamic realm of IT auditing, combining technical proficiency with a meticulous attention to detail. My journey in the IT landscape has been enriched by years of hands-on experience in Quality Assurance, where I honed my testing skills, ensuring the robustness, reliability, and giving reasonable assurance of (software) systems. This background equips me with a comprehensive understanding of the intricate interplay between technology, security, and quality assurance—an invaluable asset in the realm of IT auditing.Technical Expertise:My proficiency extends across a spectrum of testing methodologies, encompassing both manual and automated approaches. Through extensive QA testing, I have cultivated a discerning eye for identifying vulnerabilities, weaknesses, and potential risks within complex IT infrastructures. Leveraging this expertise, I conduct thorough and insightful IT audits, employing a meticulous approach that not only identifies issues but also provides actionable recommendations for bolstering security and compliance.Outcome-Driven Philosophy:Beyond the technical aspects, I am driven by a profound commitment to delivering outcomes that matter. I recognize that the results of an IT audit extend far beyond a checklist of findings—they are pivotal to the overarching success and security of an organization. With an outcome-driven philosophy, I approach each audit as an opportunity to fortify the digital landscape, empower stakeholders with informed decisions, and contribute to an organizational culture that values resilience, adaptability, and technological excellence.Key Skills:As an IT Auditor, I specialize in testing controls to give reasonable assurance over financial reporting, Information Security, Risk Management, Compliance, Internal Controls, Audit and Assurance, Security Assessment, and Data Privacy. My role as a Control Tester involves a focus on Technology Risk, ISO 27001, SOC 1 and SOC 2 Compliance, IT Governance, Vulnerability Assessment, Security Policies, and Security Awareness Training. I excel in conducting Compliance Audits, navigating IT Governance Frameworks such as COBIT and ITIL, and ensuring Regulatory Compliance (e.g., SOX, SSAE 18, PCI DSS). My approach is rooted in proactive Risk Mitigation, aligning technical expertise with a strategic vision for enhancing organizational security and resilience.