- Featured in:
-
More IT Audit Manager Resumes
Use these IT Audit Manager samples as a guideline or visit our extensive library of customizable best resume templates.
Select
Customize
Download
Find out what is the best resume for you in our Ultimate Resume Format Guide.
Additional Information Technology Resume Samples
IT Audit Manager Resume Samples
No results found
0-5 years of experience
Managed all aspects of IT audits reviewing information security, computer operations, and application change controls. Conducted tests of IT controls regarding SAP, PeopleSoft, Lawson, UNIX, Windows, OS/400, Oracle, and DB2. Communicated with executive management to review audit results, negotiate findings, and create final audit reports.
- Significantly improved the IT audit process by working directly with the external audit partners (Ernst & Young) to reduce the audit time and costs charged to the client resulting in improved customer relations.
- Created tailored risk-based audit plans allowing improved focus on key critical business areas.
- Managed data analytics implementation; delivered significant time and cost savings to audit teams (IT, financial).
- Initiated “desk” audits to minimize travel, onsite disruptions to audit clients, and costs associated with audits.
- Initiated audit improvement efforts to increase annual audit hours 20% without additional resources.
0-5 years of experience
Provider of electrical, engineering, and automation products/solutions to global industrial, manufacturing, and construction clientele including systems integration, technical services, and turnkey industrial systems.
- Directed a staff of 2, managed all information technology audits supporting a 50K employee workforce.
- Recipient, Siemens ROC Award for outstanding performance
- Managed the Inventory Record Accuracy program and eliminated 20% of the company’s physical inventories.
0-5 years of experience
Responsible for the management and delivery of IT and business process audits to ensure business risks were recognized and appropriately managed before the company was adversely affected. Activities included scoping, budgeting, meeting with process owners, developing testing procedures, audit testing, reviewing staff work, conducting meetings to present deficiencies, writing final report and work papers sign off. Served as liaison to external auditors regarding internal IT audit issues and procedures.
- Designed and conducted marketing spend reviews which resulted in the identification of over $1.3M in non-receivables.
- Performed contract compliance reviews to ensure adherence to payment terms, resulting in the identification and recovery of over $270K.
- Coordinated the quarterly SOX 302 Assessment used by executives to certify and assess the internal controls over financial reporting.
- Established application interface controls to ensure proper reconciliation as part of the SOX program.
- Designed requirements and controls for system development projects – online promotions, project initiation request system and customer billing system.
- Evaluated SAS 70 reports to identify compensating controls for third parties’ deficiencies.
0-5 years of experience
Developed the IT audit program including establishing key relationships, assessing risk, creating the audit plan, conducting audits, and reporting results. Assessed and reported PCX options exchange and Archipelago electronic stock exchange compliance with SEC regulations concerning security, penetration testing, capacity, stability, and IT general controls.
- Partnered with Exchange Operations and IT to establish operation controls for the new Java – SQL Server based PCX electronic options exchange and inter-market linkage systems.
- Established IT problem tracking, identified failure root causes, and recommended strengthened controls over software testing and change management to stabilize new systems.
- Provided control improvement recommendations during audits of market surveillance and enforcement, IT security, data centers, networks, and operating systems.
- Recommended changes in purchasing Microsoft licenses, leading to a savings of $300,000.
0-5 years of experience
Assisted senior management in development of IT risk assessments and corresponding audit programs. Developed and executed audits over the company’s IT operations and security functions.
- Developed and managed the company’s 2010 internal audit in support of Sarbanes-Oxley Act 404 requirements
- Designed and executed an audit to assess the effectiveness of provisioning procedures for the enterprise network, Virtual Private Network (VPN), and key applications.
- Audited system implementations and major system enhancements for compliance against enterprise security standards
- Designed and developed an automated continual auditing system/database to assess access appropriateness of the network and key applications
- Managed and trained junior and senior IT auditors on audit techniques and departmental documentation standards
0-5 years of experience
Managed and performed IT audits, Sarbanes-Oxley (SOX) and PCI DSS compliance testing for Systemax’s operating companies based in New York, Miami, Hungary (including seven additional European companies) and India.
- Reported directly to the VP of Internal Audit and manage 2 staff.
- Coordinated the annual risk based strategic IT audit plan and managed a wide range of IT, operational and system reviews to evaluate whether risks to the company are identified and minimized, acceptable internal policies and procedures are followed, resources are used efficiently and economically and the organization’s objectives are effectively achieved.
- Managed numerous departmental projects as well as mentored and developed staff for high performance auditing.
- Managed and performed detailed system implementation reviews for Systemax’s Retail, Warehouse and Web operations.
- Worked closely with IT and Operational Management on compliance reviews, COBIT & PMI best practices and control adoption.
- Communicated audit results and issues to Executive Management through written audit reports, pre-implementation memorandums and discussions.
0-5 years of experience
Provided audit coverage over the IT infrastructure and business applications. Performed detailed application audits for Oracle Financials, SAP, data center reviews, and technical audits including DB2, CICS, RACF, UNIX, Windows, and Oracle resulting in positive impacts on the control environment, operating performance and cost structure. Managed, trained, and mentored three IT auditors.
- Developed and reviewed work papers, work programs, reports, and custom data extraction routines using Easytrieve Plus and ACL.
- Spearheaded effort to utilize ACL software to analyze business data for potential fraud.
- Played a vital role in a new business process reengineering initiative using Six Sigma methodology to streamline and enhance efficiency.
0-5 years of experience
Simultaneously managed from 3-5 audit teams who performed Sarbanes-Oxley testing for a global bank.
- Managed the reporting of 40+ international engagement teams by providing guidance for correct
- Headed compliance and business improvement audits in both external and internal audit co-source
- Managed 3-year relationship with client and observed that implementation of interim and annual
- Formalized operating procedures and frameworks used by 200+ IT auditors to improve their output and integrate with the financial audit teams.
- Delivered audit training in 12 European and Middle Eastern countries which led to an improvement in overall audit quality as evidenced by EY’s internal audit quality review process.
- Methodology ambassador for Netherlands IT auditors. Role included making decisions where keen
0-5 years of experience
Delivered accurate IT Audits, IT consulting, and SOX compliance oversight. Performed risk assessments for information technology systems, identified general controls, and provided crucial internal technical compliance auditing for Sarbanes-Oxley 404 standards for healthcare, manufacturing, and banking clients.
- Produced accurate and reliable results through production of financial applications, and reported on successful accounting controls.
- Managed specialized systems integration projects for ERP and data migration for manufacturing companies.
- Led firm-wide quality audit initiatives with the development of auditing procedures and audit programs.
- Utilized software and control matrix to document SOX controls and other general IT controls.
0-5 years of experience
Performed internal review of information security practices and was responsible for the following areas: ArcSight change / incident management, threat / vulnerability practices, information security reporting (functional and executive), and information security governance practices.
- Other areas of internal review projects include: backup / archiving, disaster recovery, business continuity, datacenter upgrade, vendor management, various application uplifts.
- Assisted in creating system metrics and reports for the top levels of Ameriprise IT leadership.
- Acted as subject matter expert for information security for risk and control teams.
- Provided training and supervised staff IT auditors on an as needed basis.
- Lead projects, including planning, execution, and reporting for multiple functions.
- Identified areas for improvement, communicated with layers of management through from manager to CIO, and drove changes to completion.
0-5 years of experience
Led and participated in consulting engagements with commercial banks in providing services in IT risk and control.
- Performed and managed the IT SOX program for 3 clients ensuring (1) risk assessments following auditing standards were performed; and (2) the testing of the IT general controls and automated controls were adequately tested and documented; thus, ensuring a better internal control environment. The program achieved: total client satisfaction and knowledge transfer to the client through effective training and documentation.
- Performed IT audits (e.g., general controls, Information Security, SAS 70 reviews and Application reviews). Audit reports were prepared and presented to the client’s senior management. Audit findings were positively presented and accepted. Corrective solutions were implemented.
- Developed IT policies (e.g., Security) and procedures for a client.
- Assisted clients in preparation for external compliance audit activities (e.g., PCI and bank examiners).
- Achieved high marks in customer satisfaction that reinforced the firm’s reputation of service excellence. Assisted in efforts in retaining existing clients, “add-on” sales and recruiting new clients. Sold $200,000 in consulting services through new sales.
0-5 years of experience
Assisted companies in Internal IT Audit and Sarbanes-Oxley testing and documentation
- Performed successful IT Audits in the financial services and automotive industries
- Reported audit results to management and suggested improvements to processes and controls
- Served as a liaison between management and external auditors on IT Audit
- Assisted banks with compliance with the Gramm-Leach-Bliley Act (GLB)
10+ years of experience
Developed Audit Plans & Reports, examined application systems, servers, microcomputer controls, data and network security, and disaster recovery.
- Planned, conducted, and supervised systems control reviews in diverse systems environment with client/server, mainframe, and relational database systems.
- Executed systems development review, reengineering, and feasibility studies for complex financial, payroll/human resources, inventory, procurement, and project accounting systems; developed document imaging and automated output system controls.
- Evaluated and enhanced debit card, procurement card, web catalog, and EDI/EFT e-Commerce systems; assessed desktop & network support program and Remedy support system.
- Developed and implemented Internal Control Seminar-CSA (COSO); conducted COSO Management Training Program, Developed Internal Audit Web Page.
- Client-Server environment: Oracle Financials-ERP, RDMS, Sybase SQL Server, Sun Solaris, UNIX, and Windows NT. CAATS: SQL, Data Warehouse-Oracle Discoverer. Mainframe: IBM ES 9000, MVS/ESA, and CA-ACF2.
0-5 years of experience
Responsible for developing and implementing a comprehensive audit program of data processing operations, including detailed functional and installation reviews, application audits, and systems development life cycle engineering compliance.
- Conducted information system audits of the enterprise system, computer security program, as well as individual unit audits. NT, Unix, Firewalls and Routers.
- Reviewed Policies, Procedures and Guidelines stated in security program and ensure compliance.
- Prepared risk assessment applicable to the university; conducting application, contingency and disaster recovery reviews.
- Audited and advised all IT projects within the IT strategic planning management policy.
10+ years of experience
- Created the risk manager position for a multi-year technology program and grew it into a divisional risk management group. Led the design and implementation of a comprehensive business and IT risk management framework.
- Initiated and led the development of the pre-implementation audit strategy and methodology, integrating the COSO and COBIT frameworks. The practice significantly reduced the amount of audit and compliance issues by creating solutions for control deficiencies in a timely and cost- effective manner.
- Launched the Business Systems audit team with data analysis capabilities. The comprehensive and tight integration with operational audit approach not only increased operational audit efficiency and effectiveness, but also made audit one of the key players in the enterprise operational excellence initiative.
- Reduced costs associated with external assurance and reporting requirements by deploying an efficient continuous auditing approach for the global IT infrastructure audit that provided a rolling 12-month of audit results. (Approximately 25% hour reduction in two years.)
- Effectively managed relationships with key clients, stakeholders, and external parties by setting expectations, managing the timing and sourcing of audits; providing ongoing communications regarding audit results. Completed 18% more audits without increasing the budget.
- Received “Best of Finance” award for leading the enterprise control improvement initiative.
- Received “Great Leader” award for building high performance teams by promoting an open and collaborative team environment and continuous coaching and mentoring for professional growth.
0-5 years of experience
Performed IT audit assessment including LAN, WAN, servers, routers, websites, firewalls, databases, and enterprise applications. Provided information risk strategies for clients including Wells Fargo, CalPERS, Netscape, NEC, and the GAP.
- Led and managed team of KPMG consultants, company employees and contractors to develop successful disaster recovery and business continuity projects for the clients’ PMO incorporating KPMG’s and client’s Best Practices.
- Assessed and reviewed IT Securities of ERP packages including Oracle and SAP systems based on KPMG Systems Integration Controls Methodology.
- Performed and managed IT security audits such as applications, operating systems, firewalls, and networks based on CoBIT, risk-based framework.
- Supervised and mentored 3 junior auditors in planning, interviewing, executing, writing audit reports and communicating audit findings to management.
- Conducted operational, financial, and IT internal assessments and audits of bank functions to determine efficiency and cost savings for this Bay Area focused financial services institution.
- Identified a $150,000 underpayment owed to the bank from Deluxe Corporations.
- Tracked and monitored liquidation assets on LAMIS system (Liquidation Asset Management Information System).
0-5 years of experience
Performed annual technology risk assessments and produced annual technology audit plans.
- Designed and executed IA programs covering technology areas.
- Documented all Technology audit work papers in Team Mate.
- Referenced and adhered to COBIT, NIST and COSO industry standards.
0-5 years of experience
Managed numerous IT Audit Engagements from risk assessment through audit plan development to execution and remediation coordination.
- Evaluated existing system security and made recommendations for the mitigation of IT-related business risks.
- Assisted in pre-implementation reviews of new application systems considered for purchase or in house development
- Located audit clients and performed various marketing activities in the Southern Sales Territory.
0-5 years of experience
Managed numerous IT Audit Engagements from risk assessment through audit plan development to execution and remediation coordination.
- Evaluated existing system security and made recommendations for the mitigation of IT-related business risks.
- Assisted in pre-implementation reviews of new application systems considered for purchase or in house development
- Located audit clients and performed various marketing activities in the Southern Sales Territory.
0-5 years of experience
Developed and maintained IT audit plan and updated Audit Director on audit execution
- Provided recommendations to improve controls related to the revenue processing cycle based on an audit of the process. As part of the audit, interviewed personnel in various departments and created a process map which highlights interactions and dependencies between the university’s Banner ERP system and various external processes
- Planned and executed all phases of IT general controls audits including software change management and business continuity planning
- Planned and executed first comprehensive access control review of the university’s ERP system. Performed extensive interviews to identify root causes of issues identified and made recommendations to improve access controls
- Provided guidance and worked with Information Security department on PCI compliance requirements as a member of the PCI steering committee
- Provided support to financial and operational audits in identifying IT system dependencies
- Identified opportunities for continuous audit testing and developed SQL queries to support the transition from manual testing
- Supervised and provided guidance to student auditors in execution of user access audits
- Assisted Audit Director in developing presentations for the audit committee on IT-related topics
0-5 years of experience
Managed global IT audit team
- Developed and managed 2011 SSAE 16 (formerly known as SAS 70) strategy. Responsible for Executive Steering Committee and training development for internal participants. Delivered highly successful first year audit report.
- Developed new audit reporting formats to include business insights and best practice assessments
- Developed ITGC reports to assist management with remediation and implemented IT Standard controls list with training for all technologies in scope for financial audit
- Guidance on business process maps to validate key controls, technology resources and automated controls appropriately depicted. Developed overall data-flow technology maps to ensure scope is accurate
- Implemented Lunch and Learn program for business knowledge development in Internal Audit
6-10 years of experience
Collaborated with the Information Technology (IT) Audit Director and other members of the audit team of seven to perform the IT Audit plan, allocate resources, supervise staff members and prepare reports for Executive and Senior Management and, the Audit Committee. Performed annual risk assessments identifying strategic audit opportunities valued by senior management.
- Conducted multiple audits simultaneously related to application reviews, data center operations, IT process management, security and network operations to complete audit plan on time.
- Led closing meetings and review of audit reports and issues, counseled on key risks and controls and reconciled controversial audit issues with senior management.
- Provided Financial/Operational auditors with IT risk and control expertise during audits of operations and financial applications to facilitate the integrated audit approach providing value to clients.
- Mentored IT Audit team by coaching on audit projects, methodology and business acumen.
0-5 years of experience
- Managed and executed SOX and operational audits of DIRECTV’s internal and outsourced IT environments
- Enhanced the reporting process and templates used to provide management with comprehensive status updates of audit testing, findings, and remediation activities
- Identified and employed tools and scripts to improve the efficiency and effectiveness of test procedures
- Improved the quality standards and review process of IT audit work papers
- Ensured audits met department standards, timelines, and budgets
- Provided direct reports with on-going feedback, project evaluations, and development plans to improve their skills and knowledge of audit testing procedures, project management, and IT processes
0-5 years of experience
Performed all functions of IT auditing for General Computer Controls audits, Integrated audits, Sarbanes-Oxley and SAS70 (SSAE16) reviews. Functions included assessing risk in individual and integrated settings; developing, revising and communicating audit memo; developing and documenting narratives for processes to review controls; creating and executing test scripts of controls which included testing of derivatives; review and document findings; devise and make recommendations to remedy findings; retesting of controls to ensure that findings were remediated and drafting and proofing audit memos and reports using ISO, COSO, COBIT and internal methods of clients across various business lines which included Operations, Trading Floors, Project Management, System Implementations, as well as IT divisions.
- Reviewed IT policies and procedures for IT Governance, IT Infrastructure and Application Change Management, IT Security, IT Projects and Implementations, Backup, Recovery and Disaster Recovery Plans and Computer and Network Operations.
- Lead analysis teams of 2 – 6 people on various engagements and conducted engagements in solo environments for clients such as HSBC, Amalgamated Bank, Bank of India, and commercial entities.
- Reviewed, corrected and re-performed audits from past IT auditors.
- Developed, managed and reviewed budgets for value justification and strategies as well as prepared test plans that received a ROI from 120 – 200% via personalization and ease of usability of test plans for each staff member and clients as well as document, review and communicate their results and efforts to external personnel which often included senior management (CEO, CFO, CIO and Executive Boards) and senior committees for Fortune 500 companies.
- Researched and managed client expectations throughout engagements while communicating and diffusing areas of contestation in regards to remediations and observations noted from testing.
- Received 100% buy-in for remediations and areas of improvement from all clients along all business lines.
0-5 years of experience
Responsible for managing Corporate internal audits utilizing the Ally Audit Methodology by planning the audit strategy, resource allocation, fieldwork testing and reporting using project management techniques
- Understood and adhered to Bank Holding Company (BHC) regulations and utilized COBIT and COSO to map audit and control objectives
- Focused on integrated audits related to IT General Controls, Operating Systems, Databases, Network, SAP, Procurement, SDLC and System Implementations
- Supervised work of audit staff, conducted performance reviews, trained staff, reviewed audit workpapers and presented audit reports to executive management.
0-5 years of experience
As leader of the IT compliance team with a regional professional services firm, provided SOX consulting to software and semiconductor companies. Deliverables included risk analysis, control rationalization, and testing.
- Developed IT Security Audit testing methodologies and plans.
- Managed engagements, including client and project team status, Time and Expense budgets and scope management.
- With sales team, contributed to RFP responses, client needs analysis and other pre-sales activity.
0-5 years of experience
Sarbanes-Oxley work executed – SOX compliance audits for IT, payroll, treasury, expenditure, inventory, revenue, finance cycles – polish and US clients
- Risk based business processes/ operational/ information security/ application/ project management reviews executed for various business functions/cycles (HR, IT, financial) and various systems (SAP, Baan, Unix, Windows, Oracle) – polish and US clients
- Engagements planned/executed/ work papers reviewed/results delivered to local/global/top management
- Recommendations presented/ follow-up to top management/ regional and local management board
- HR systems implementation supervised – personal data protection audits reviews executed – polish and US clients
- Due diligence assignments – various sectors
- User privileges/security settings reviews executed for main ERP systems (SAP, Oracle) and sector dedicated systems (Lawson, Tandem) – polish and US clients
6-10 years of experience
Hired as AVP. Promoted to VP in six months and to First VP 12 months later.
- Recruited to report to the Head of IT Audit, managing three IT Audit teams with a total headcount of 10 IT auditors.
- Replaced the initial IT Audit Manager on the Y2K project, resulting in closer supervision for the Y2K IT Auditor and subsequently stronger working relationship between Internal Audit and Y2K IT team and regulatory examiners.
- Successfully worked with corporate teams, documenting processes and defining Sarbanes Oxley related controls.
- Established eCommerce and integrated audit function supporting the Bank’s migration to web-based outsourcing vendors (managed three professionals).
- Information Protection Manager, defining policy, performing project consulting and providing security awareness training
- Information Technology Audit Manager, managing two IT Auditors
0-5 years of experience
Developed and led the execution of the annual risk assessment, audit plan and audit approach utilized for the Federal Trade Commission compliance audit as required by the FTC Settlement Order dated February 16, 2006.
- Developed and executed IT audit function, including development of the ChoicePoint (CPS) Internal Audit & FTC annual risk assessments and audit plans.
- Led the completion of internal reviews to assess CPS’ risk factors and performance related to existing IT and proposed IT projects; advised management on business controls impacted by IT through direct interaction and as a member of various project teams and committees.
- Rationalized redundant controls to focus on key PeopleSoft Security controls, reducing CPS annual budget; designed process narratives and walkthroughs, including testing procedures and control activities; assisted CISO with the development and implementation of enterprise-wide PeopleSoft/ PeopleTools Security policies and procedures.
- Developed internal GCC training program for Financial Audit team and the VP of Internal Audit.
- Managed a staff of six senior and staff IT auditors; displayed teamwork, integrity and leadership; supported staff / colleagues and value others’ contributions; fostered an efficient, innovative and team-oriented work environment; provided constructive on-the-job feedback and mentoring.
0-5 years of experience
Manage the IT Audit function for the newly spun-off entity that was the result of the split of [company name] and Leidos in September 2013. Relaunch audit function, which includes hiring and training resources to perform IT Audits. Developed Annual IT Audit Plan and contributed to annual risk assessment and overall Internal Audit Plan. Manage IT Audit Staff to completion of key milestones of annual SOX Testing.
- Develop relationships with Director and Vice President Level IT Management to share risk and audit insights, to provide advisory services, and to be a trusted advisor for risk and compliance matters
- Establish processes to identify root cause, document and track remediation plans and report progress to management and the Audit Committee
- Partner with the Office of the CISO to assess risk, schedule audits, and track audit issues.
- Retain talent through staff development, career guidance, and working with other departments to find positions that match skill sets
- Review staff workpapers, provided review notes, and wrote audit reports that summarized risks
- Manage relationship with external audit IT team, including sharing insights of the corporate environment and implementing workpaper standards as governed by the PCAOB
6-10 years of experience
- Responsible for delivery of Global audits. Led Data Privacy global audit executed in 13 countries including US, Canada, Spain, England, Asia Pacific and Latin America.
- Responsible for managing and developing three senior IT Auditors and three IT Auditors
- Performed and managed the delivery of re-engineering audits, system development reviews, and integrated audits.
- Responsible for the development and planned implementation of the Project Management C0E (Center of Excellence)
- Recognized by executive management for the audit of the company-wide Agent Profitability Payout which consisted of multiple CAAT processes
- Developed and implemented the SDLC audit standards, processes and programs implemented globally.
- Developed and implemented the integrated audit standards, processes and programs implemented globally.
- Trained business auditors on the integrated audit processes
0-5 years of experience
Lead engagement manager on a large commercial truck manufacturer, responsible for managing project metrics, scope, budget, timelines and issues. Reported status to managing partners and key client contacts via written and oral presentation. Effectively managed budget that ranged between $3 to $5 million over 3 years.
- Managed multiple business systems controls evaluations for Fortune 500 industries, which include manufacturing, insurance, healthcare, financial services as well as local government agencies. Interviewed process owners, mapped data flow, identified process controls, assessed control strength and designed control improvements for complex enterprise systems.
- Conducted several information technology audits specializing in consumer, industrial and financial service markets. Evaluated IT general controls and system application controls in terms of financial audit risk.
- Evaluated information technology risks for the firm’s audit clients that included the assessment of business processes to identify risks related to the use of information system technologies and internal controls.
- Played key roles in several Sarbanes-Oxley 404 attestation engagements, directly involved with the evaluation, documentation, and testing of IT general controls, and application controls.
- Performed pre-SAS 70 procedures and helped several clients plan for the attestation process. Presented the clients with control improvements needed prior to the attestation period.
- Worked in an advisory role within several Fortune 100 companies to assist with evaluating both technology and business processes, including developing, testing, and documenting IT general controls, application controls, and IT entity level controls for Sarbanes-Oxley compliance.
- Created proposal presentations for potential new clients based on requests for proposals (RFP) submitted to the firm. Identified client needs and matched firm services and expertise.
- Actively involved in the firms staff mentoring program and new hire orientation process. Created new staff evaluation and feedback process for performance reviews.
0-5 years of experience
Responsibilities have included conducting all phases of audit planning and execution for technology, security, operational and financial audits in both domestic and international operations, performing information systems controls and technical reviews, SOX 404 readiness assessment and testing, participation on numerous teams and projects involving information technology and security matters, in addition to recruiting, coaching and mentoring an internationally dispersed team comprised of 25 individuals. Responsible for developing and implementing the IT audit universe and risk identification process. Managed and participated in audits in the areas of [company name], Risk Management and General Controls, Consumer Health and Pharmaceutical Sales & Marketing, Human Resources and Payroll, Purchase to Payment, Revenue, and Accounting and Reporting. Technologies covered: UNIX, AS400, Windows, Internet/Intranet, Firewalls, Routers, Switches, Wireless, and application reviews, SAP, PeopleSoft, etc. Audits were conducted to ensure compliance with FDA and HIPAA regulations.
- Key contact / knowledge expert on Offshore/outsourcing vendor audits.
- Served as Records retention Champion
- Position reported to Vice President Global Internal Audit.
- Managed SAP/ERP implementation across the USA and abroad.
- Managed IT budget.
0-5 years of experience
Managed service delivery to Aegon Information Technology – manages Transamerica’s computing infrastructure including data centers, network and disaster recovery.
- Partnered with IT technical management to adopt enterprise security standards that enhanced host and network security.
- Repaired and enhanced the department’s relationship with IT management to increase audit’s coverage of IT risks and processes.
- Partnered with SOX team to rationalize general computer controls inventory, test plans, workpaper templates and instructions to support effective and efficient program execution.
0-5 years of experience
Manager Oracle Consulting Services, Human Resource and Payroll, Payroll Tax Consulting Services.
- Manager IT Audit Department conducting Sarbanes-Oxley compliance audits (SOX 404).
- Responsible for implementing “SOX” controls for “SOX” IT audits for various clients.
- Developed, tested and implemented “SOX” Key Controls while preparing clients for “SOX” audits.
- Utilized rules, regulations and procedures from COSO and COBIT IT audit standards.
0-5 years of experience
Trained and supervised Information Technology audit staff.
- Developed and implemented the annual audit plan.
- Acted as consultant on major IT projects.
- Created the strategy for Audit Division involvement in the project to attain HIPAA compliance.
0-5 years of experience
Responsible for planning, performing and managing Sarbanes-Oxley Section 404 Information Technology and financial audits for multi-division manufacturing company both domestically and international.
- Duties included on-site testing of internal controls related to information technology systems, practices and policies in accordance with COSO, COBIT and ITIL requirements.
- Coordinated all IT related issues with the financial audit team and finance dept management.
- Performed information technology and system development reviews using various “in house developed CAAT’s” and ACL Data Retrieval software.
- Managed the day-to-day activities of Senior IT Auditors.
- Supported financial audit team with the development of audit queries
- Performed financial audit testing on an “as needed” basis
- Post Implementation Reviews of various ERP applications (i.e. Oracle, MS Dynamics/Navision). Including review of requirements planning, and specification development.
0-5 years of experience
- For a Fortune 100 client implemented an annual audit program targeted at relevant risks. Identified and prioritized projects within the audit plan.
- Supervised projects with emphasis on time management to ensure the efficiency and effectiveness of audit procedures.
- Presented the audit plan to audit committees as internal audit manager for banking, insurance and manufacturing clients.
- Provided direct supervision to the audit staff during audit projects, including review of documentation, project management, training of new staff, team development, data mining and creating an integrated audit approach to audits with the financial audit teams.
- Planned the execution of testing, reporting, and supervision activities on various SSAE 16, SOC 1 and SOC 2 reports.
- Planned the scope of the assessment, walkthrough of controls, completed the Health Information Protection (CHIP) Questionnaire for HIPAA/Hitrust CSA assessments.
- Supervised Post Implementation SAP audits of In SAP House Cash, Treasury Modules for a Houston Oil and Gas Company.
- Recruited and developed talent, currently working with a team of three seniors and two staff auditors.
- Worked closely with directors, managers, and staff to integrate practice development skills into a team approach to client service and new business development.
6-10 years of experience
Co-ordinated and managed end to end business/IT audits within Cisco. As part of the audit interviewed senior management and business process owners to identify major risks. Created AS IS process maps to identify critical IT/Business controls. Led the initiative to identify root cause and presented alternative recommendations. Documented and discussed the results, action items, and recommendations with senior management.
- Analyzed Cisco’s Order Management application to ensure PCI compliance and proper security controls. Provided recommendations and web application security framework to development teams to build security into the development process.
- Provided security-consulting services to Life Connections Health Centre that include architecting and leading a HIPPA compliant data protection review, and a strategic planning project.
- Responsible for comprehensive information security services including; vulnerability and risk assessments, network and Internet security, business continuity/ disaster recovery planning.
- Evaluated operational and security processes of Cisco intellectual property within engineering (CDO) and manufacturing organizations.
- Reviewed Customer Service operations of Cisco and evaluated six main processes that constitute approximately 120,000 transactions per month.
- As part of Lean Manufacturing process reviewed CDO demand planning, Manufacturing demand planning and ROP sizing.
- Reviewed multiple data center operations, Interviewed key personnel and performed risk assessment of data centers and created disaster recovery roadmap
- Determined if security requirements were available in above specified systems and/or products in order to meet standard security guidelines. Performed a risk management assessment and developed appropriate countermeasures.
- Worked with product developers and system implementers, to ensure that countermeasures were properly applied.
0-5 years of experience
- Effectively planned and managed audit engagements, supervised the work of assigned auditors, and made appropriate adjustments to the audit plan as needed.
- Coached and guided less experienced auditors in the audit process, business operations and processes.
- Performed audits of global IT environment, including applications and IT operations (security, change management, data center operations).
- Planned the scope of the audit and prepared related audit program.
- Identified potential IT risks of the business, customer and employees; and developed recommendations for corrective action.
- Evaluated internal controls, perform risk assessments, and assist in the development of the audit plan.
- Planned, managed, and performed control testing in support of audits and SOX 404 compliance.
- Conducted closing meetings at the conclusion of engagement to present key audit findings to business leaders.
- Drafted formal written reports, detailing findings and recommendations and provided summary evaluations on the overall adequacy and effectiveness of the systems of internal control under review.
- Developed and maintained business relationships to stay current with business activities and risks.
0-5 years of experience
Plans, manages, and leads both IT and integrated audits, primarily focused on pre and post-implementation reviews of key systems and processes, for one of the world’s largest commercial property and casualty insurers with operations in 54 countries.
- Functioning as a valued business partner in identifying process improvement opportunities that lead to positive change for the company.
- Actively involved with the on-going planning and evaluation of the audit universe and 2015 audit plan as well as being the lead manager for IT SOX testing.
- Creating executive level audit reports and presenting to both internal and senior level management.
- Mentoring and aiding in the professional development of both junior (i.e., co-ops and interns) and staff level personnel.
0-5 years of experience
Led and trained a global IT audit team on various risk-based IT and security audits
- Designed and tested Sarbanes-Oxley IT controls and followed up SAD items list
- Developed annual IT audit plan including details of priorities, strategies and required budget for plan execution
- Developed audit programs in accordance with PCAOB, IIA and ISACA standards
- Worked closely with external auditors on various ISO, SAS70 and SOX audits
- Reviewed security policies and operation procedures to ensure compliance
- Reviewed change control procedures and policies, business impact analyses (BIA) and business continuity plans (BCP)
- Developed continuous auditing programs utilizing data analytics and IDEA.
0-5 years of experience
Managed complex audit projects focused on technology risk to support the Mortgage and Consumer Banking lines of business.
- Utilized relationship management skills to build business relationships with audit clients.
- Conducted quarterly risk management discussions with key business executives to identify emerging risks.
- Assisted in the bi-annual risk assessments to identify high-risk business processes to be included in the audit plan.
0-5 years of experience
- Led infrastructure (UNIX), application and project audits
- Functioned as an IT audit lead for the India Outsourcing audit
- Served as the SoX subject matter expert, and led the same effort for companies that were being integrated with [company name]
0-5 years of experience
- Determined the strategic direction for IT audit, developed the related risk assessment and audit plan while continuously assessing risk factors during the year for relevance and priority.
- Managed the co-sourced IT resources leading to the successful completion of the annual audit plan.
- Established effective communication with executive IT management including information security to identify changes in the IT environment, communicate and prioritize audit findings and recommendations while marketing the value internal audit.
- Advised senior audit management regarding IT-related portions of audit committee presentations, promoted IT risk awareness and applied IT audit methods to financial/operational audits.
- Participated in both internal audit and the corporate IT organizations’ annual planning to proactively ensure appropriate consideration and inclusion of IT risks and related controls.
0-5 years of experience
- Conducted IT Health Check for an international company in various locations in the USA and Canada. Verified that best practices were adopted.
- Performed high level General Control review for an Insurance client overseas. Conducted unannounced visit to data center ensuring procedures were followed.
- Performed Sarbanes-Oxley Act application IT audit review using COSO and COBIT tools. Interviewed high level management ensuring support and coordination was an integral part of the process.
0-5 years of experience
Performed IT audits of North American, Asia/Pacific and European business units.
- Managed and led IT audits of network infrastructure, operating systems, databases, applications, and development projects; participated in the overall management and leadership of Internal Audit Department.
- Provided audit consultation on IT vendor contracts for business units.
- Communicated audit opinions/recommendations both written and verbally to Audit and business unit senior management
- Partnered and consulted with corporate IT and Contingency Planning senior management to ensure consistency and synergy of risk and control strategic direction
- Contracted with and employed co-sourced external auditors as needed
0-5 years of experience
- Managed audit teams responsible for analyzing processes dependent on federal guidelines to operate appropriately
- Led engagement team responsible for testing and developing the SAS-70 Service Auditor’s Report
- Responsible for testing design and implementation and operating effectiveness for general and application controls during year-end financial statement audits
- Held direct administrative responsibilities for E&Y professionals including merit increases, performance development and inspiring teamwork while utilizing innovative approaches to supervision
- Clients Included: US Health and Human Services (HHS), US Centers for Disease Control (CDC), US Department of Treasury (IRS)
Information Technology Cover Letter Examples
Rate This Article
[IT Audit Manager]
Last edited by: Gabriela Barcenas, CPRW, Content Writer II -
Gabriela Barcenas
CPRW, Content Writer IIGabriela is a Certified Professional Resume Writer (CPRW) and career adviser. With 10 years of digital media experience and five years of resume writing expertise, her publication history includes fashion, education, travel, social justice, equitable design and career advice.
