|
Kate T. McDonald, CISA
|
|
|
1 Dice Way | Stamford, CT 06005 | 000-000-0000 | ktmcdonald@dice.com
|
|
|
|
|
Analytical and experienced IT Auditor with expertise in general control
and application review
|
|
|
|
SUMMARY OF QUALIFICATIONS
|
|
- 6 years of experience in IT audits for retail, manufacturing, and health care industries.
- Proven track record of assessing system/network availability, security, and data integrity to identify, manage, and reduce risks and ensure general compliance.
- Extensive background in all stages of audits, including planning; study, evaluation, and testing of controls; reporting; and follow-up.
- In-depth knowledge of Sarbanes-Oxley Act (SOX) and business processes.
- Acute understanding of networking, hardware, software, and data centers, as well as emerging technologies, such as biometrics and mobile devices.
|
|
|
PROFESSIONAL EXPERIENCE
|
|
|
ABC Company, Stamford, CT
|
2005 – Present
|
|
|
IT Auditor II for this Fortune 500 retailer with 1200 employees.
|
|
- Oversee 3 auditors to identify IT related risks throughout development phases. Areas include networks, operating systems, ERP, databases, security, and disaster recovery.
- Conduct SAP and legacy system reviews to support products and ensure business objectives are met.
- Perform general controls oversight and review to verify compliance with SOX provisions and professional standards.
- Liaise between in-house managers/IT department and external financial and operational auditors.
- Ensure audit tasks are completed accurately and within established timeframes.
|
|
|
DFG Inc., New York, NY
|
2003 – 2005
|
|
|
IT Auditor for this publicly traded manufacturer with 265 employees.
|
|
- Identified and evaluated risks during review and analysis of System Development Life Cycle (SDLC), including design, testing/QA, and implementation of systems and upgrades.
- Prepared audit scopes, reported findings, and presented recommendations for improving data integrity and operations.
- Conducted reviews of data centers, extranets, telecommunications, and intranets to assess controls and ensure availability, accuracy, and security under all conditions.
- Used ACL to administer computer aided audit tests (CAAT).
- Coordinated with IT department and external auditors during SOX IT testing.
|
|
HJK Company, New York, NY
|
2001 – 2002
|
|
|
IT Auditor for this major health care provider with 150 employees.
|
|
- Performed operational and financial integrated audits and pre- and post-implementation reviews.
- Helped establish annual audit plan for core competency areas using risk assessment methodology.
- Reviewed systems for adequate management controls, efficiency, and compliance with policies, regulations, and accounting principles. Made recommendations when necessary.
- Created flowcharts to document business systems and processes for IT audit reports.
- Coordinated with various departments to create remediation plans for deficiencies found during audit.
|
|
|
TECHNICAL SKILLS
|
|
Windows NT/2003, UNIX, ACL, MS Office (Word, Excel, PowerPoint), AS/400, Linux, Sybase, Solaris, Novell, Sequel, Oracle, firewalls, routers/switches, LAN/WAN, TCP/IP, VPN, HTML, JavaScript
|
|
CERTIFICATIONS
|
|
|
Certified Information Systems Auditor; ISACA (2005)
|
|
|
EDUCATION
|
|
|
Bachelor of Science, Computer Science; City University of New York
New York, NY (2000)
|
