A seasoned professional with extensive experience in IT Audit, IT General Control Reviews (GCR), Third-Party Risk Management (TPRM), Cyber Security Audit, Information Security Audit, and Accounting. Known for a robust understanding of regulatory frameworks such as COSO, COBIT, PCI DSS, NIST 800-53, and ISO 27001, combined with in-depth knowledge of Sarbanes-Oxley Act (SOX), HIPAA, and ERP security assessments. Adept at performing comprehensive risk assessments and ensuring compliance with industry standards through meticulous auditing and evaluation processes. Proven track record in identifying and mitigating risks, enhancing security protocols, and optimizing IT and accounting practices to drive organizational success.More...