Associate Manager -IT Internal Audit/ IT Security Governance
ï‚· Engaged in comprehensive SOX 404 (Sarbanes-Oxley Act) IT audit programs for the global company covering various geo locations (AMERICAS-Tampa/ New York/ Southborough, EMEA- Sweden/ Austria/ UK/ Germany/ Hungary/ Qatar/ UAE, APACAustralia/ Sri Lanka/ India/ Singapore/ Malaysia etc.)
ï‚· Lead a team of IT SOX professionals to complete the planning, execution, documentation, and communication of all ITGC and IT application control testing related to SOX complianceï‚· Lead the development and maintenance of the annual SOX- IT testing scope and plan. ï‚· Developed risk and control matrices (RCMs). ï‚· Examined the design and operating effectiveness of management GITC, Infrastructure and application controls. ï‚· Provided recommendations/ improvements for control enhancements against industry benchmarks such as COBIT, CIS, NIST, COSO frameworks.
 Prepared and maintained required documentation (working papers/ audit reports) to a high standard of quality.  Reported audit findings in a detailed and concise manner in-line with IIA standard.  Monitored IT SOX testing and deficiency remediation. Escalate concerns or delays.  Guided multiple business departments in developing action plans to fix control deficiencies.  Engaged in overseas internationally travelled IT internal audit engagements (in APAC region)  Evaluated process owners’ responses to end-user control considerations and the impact of testing results in the SSAE 18 SOC1/ SOC2 reports for in-scope third party service providers.
ï‚· Supported Global CIA on SOX program update and progress reporting. ï‚· Coordinated SOX IT program testing with co-sourced internal audit IT team, external IT auditors, control owners and managers. ï‚· Prioritized activities on multiple projects to meet deadlines. ï‚·