Overview
Work History
Education
Area Of Specialty
Certification
Technical
Summary Of Experience
Timeline
Generic

Stefan Ewubare

Alpharetta

Overview

7
7
years of professional experience
1
1
Certification

Work History

Senior Internal IT Auditor/Compliance Officer

Dollar General
09.2021 - Current
  • Performing audits and reviews of key business processes and systems under development using the NIST framework
  • Internal control reviews and recommending best practices
  • Leading and conducting forensic, periodic, and transactional testing to ensure compliance with all applicable State, Federal, and self-regulatory agency requirements to ensure financial and IT systems compliance for the company
  • Performing general information systems control, application, and business process projects and reviews, assessed business risks, and evaluated the design and effectiveness of controls for mitigating risks in support of financial statement audits and SOC1 / SSAE 16 / SAS 70 reports
  • Preparing audit scopes, compliance readiness programs, reported findings, and presented recommendations for improving data integrity and operations
  • Leading the Audit issue and compliance management program to support SOX and SOC 1 & 2 attestation
  • Conducting audit fieldwork and walkthrough of controls, performed detailed testing, analysis of controls, validations, and creation of clear and accurate documentation of workflows in IT process and report of test results and exceptions
  • Communicating and interacting with diverse levels of management on audit issues and managing audit engagements from entrance through closing conferences
  • Leading the identification and redesign of business processes and procedures and obtained buy-in for combining and/or eliminating processes to achieve maximum efficiency in the implementation of risk management process solutions
  • Evaluating IT Compliance gaps and working with management to recommend solutions to improve policies, procedures, efficiency, and controls
  • Performing reviews of Data Center general controls, company-server security, operating systems, systems development life cycles (SDLC), monitor procedures relating to physical security over Data Center, computer operations and network communications security
  • Utilizing the COBIT framework to help link business goals to IT goals to provide metrics to measure the achievement of linking these goals and identify the associated responsibilities of business and IT process owners
  • Interpreting pertinent Government regulations, third-party requirements, and implement changes in policies and procedures
  • Achieved an internal audit score of 99.9% success rate of observance to policy and procedures that prevented SOX fines for the fiscal year.

Compliance Regulator /IT Internal Auditor

Inertia Legal
08.2019 - 06.2021
  • Provided delivery of quarterly User Access and Segregation of Duties control reviews
  • Researched and recommended processes, control improvements and automation opportunities
  • Developed and implemented action plans designed to maintain a high level of SOC performance
  • Provided leadership and direction to peers and key stakeholder groups
  • Performed IT SOC control assessments for Reporting
  • Provided IT Compliance oversight
  • Provided advisory services to internal IT, business units, Internal and external auditors
  • Performed ITGC audit in accordance with IPPF standards, including GTAG, COBIT, ISACA, ITAF, IIA, and ITIL frameworks
  • Provided advisory discovery process for PCI DSS clients
  • Execution of requirements for PCI DSS compliance for clients to mitigate risk and enhance remediation
  • Managed engagement activities between compliance, internal audit, and external audit teams
  • Supported management through risk identification, control testing and process improvement procedures
  • Supervised and coordinated projects for external auditors and examiner evaluations
  • Reported internal control issues to management and supplied comprehensive recommendations to mitigate the associated risks
  • Gathered data for internal audits through interviews, financial research, and downloads
  • Articulated audit findings, risks, and detailed recommendations to upper management.

Governance Risk Compliance Analyst

Verizon
03.2017 - 06.2019
  • Conducted management and delivery of IT and business process audits to ensure business risks are recognized and appropriately managed before the company was adversely affected
  • Conducted scope meetings with process owners, developed testing procedures, performed audit testing, presented deficiencies, and wrote final reports
  • Served as liaison to external auditors regarding internal IT audit issues and procedures
  • Performed audit with IT general controls such as, access control, change management, IT operations, disaster recovery and platform reviews (Windows and UNIX OS)
  • Performed internal and external IT risk assessments, conducted gap analysis against industry standards, and provided recommendations on mitigation options
  • Lead integrated audits for evaluating network related issues, identified IT related risks assessments and updated various risk and controls files to ensure firm wide identified risks are adequately addressed by control activities
  • Communicated audit progress and results to both department and business unit management, both verbally and in writing
  • Evaluated segregation of duties over application security involving the company's ERP systems (SAP, PeopleSoft, and Oracle Financials) and executed audit strategy
  • Communicated with the company's external auditors on general computer control related matters and SOX test procedures to ensure compliance with the Sarbanes-Oxley Act, particularly sections 302 and 404 related to internal controls
  • Coordinated with external auditors and provided necessary information and evidence for SOC audits
  • Ensured the organization’s compliance with SOC reporting standards, such as SOC 1, SOC 3 & SOC 3 for service organizations
  • Collaborated with stake holders in managing and ensuring ISO 27100 compliance program
  • Ensured the organization’s compliance with NIST standards and guidelines, such as the NIST Cyber Security Framework and NIST 800 series publications
  • (NIST 800-53 for security and privacy controls)
  • Collaborated with cross-functional teams to align GRC efforts with the organization’s overall objectives and strategies.

Education

IT Desk Support -

Chub Computer Institute
Jersey City, New Jersey

JD (Bachelor of Law) -

Ambrose Ali University

Area Of Specialty

  • Compliance Matrix
  • IT/Business Audits
  • Internal Controls
  • Audit and Regulatory Requirements and Standards (COBIT, SOC 1, SOC 2, SOX, FISMA, ISO 27001 and NIST)
  • Audits, Compliance, and Business Reporting
  • Business Continuity and Disaster Recovery Planning
  • Information Security Infrastructure and Authentication
  • Risk Assessment Process for Various Functional Areas
  • SharePoint, PeopleSoft, and Siebel - Customer Relationship Management (CRM)
  • AuditBoard (CRM)

Certification

Certified Information Systems Auditor (CISA) In-View

Technical

COBIT, ITIL, ISO 27001, COSO, NIST, SOX, SOC1 & 2, AuditBoard, CaseWare e-Audit, IDEA Data analytics, ACL GRC (Highbond), MS Visio, MS SharePoint, Microsoft Office Suite, Google Suite and JIRA, LAN, WLAN, WAN, MAN, VPN, PRTG Network Monitor, and Internet, Windows (95, 98, Vista, 7 & 8), Win Server 2008, 2012

Summary Of Experience

Experienced IT Auditor with 7 years of experience in conducting IT audits, ensuring compliance with industry standards, and identifying potential risks and vulnerabilities. Proficient in SOX audits, SOC audits, and IT risk assessments. Adept at analyzing complex systems and providing actionable recommendations for improvement.

Timeline

Senior Internal IT Auditor/Compliance Officer

Dollar General
09.2021 - Current

Compliance Regulator /IT Internal Auditor

Inertia Legal
08.2019 - 06.2021

Governance Risk Compliance Analyst

Verizon
03.2017 - 06.2019

IT Desk Support -

Chub Computer Institute

JD (Bachelor of Law) -

Ambrose Ali University
Certified Information Systems Auditor (CISA) In-View

Similar Profiles

CREATE PROFILE
Stefan Ewubare