Profiles search
Compton Noble - CISA
Trusted advisor!
New York, NY, United States
Details
Experience:
2022 : Present
Capital One
Cybersecurity Assurance
2020 : 2022
Sumitomo Mitsui Banking Corporation
Director Cybersecurity Audit
2020 : 2020
MUFG
Vice President Information Technology Audit
▪ Key role in the development and delivery of a risk-based internal audit plan.
▪ Participated in bi-annual enterprise risk assessment review as a security and technology subject matter expert.
▪ Conducted internal audits (Technology and integrated Fin-Ops review) to ensure compliance with the Pearson governance program and government regulations.
▪ Evolved technology audit approach to reflect the increasingly digital nature of Pearson’s strategy and products.
▪ Innovate global internal audit methodology with the creation of the ‘no surprise’ approach to communication with key stakeholders during an audit engagement.
▪ Propelled internal audit initiative with the creation of a data analytics strategy
▪ Assisted the Center of Excellence SOX Team as an SME during Year-End testing of ITGC controls.
▪ Liaison with external auditors
▪ Performed internal training on trending risk
▪ Assisted CAE with the preparation of Audit Committee papers
▪ Monitored and report on open audit actions, to proactively drive accountability by the business to improve Pearson’s control environment.
2016 : 2020
Pearson
IT Audit Manager
▪ Created Audit Department for the organization.
▪ Documented audit universe and created an audit plan to identify risk, recommend remediation and worked with key stakeholders to implement risk mitigation solutions appropriate to protect the business without impacting its mission.
▪ Implemented a new risk-based audit program leveraging the COBIT framework.
▪ Directed the organization through first FFIEC, PCI and NACHA compliance audit providing management with gap and remediation analysis throughout the process.
▪ Facilitated third-party auditors for SOC I SSAE18 (formerly SSAE16) and SOC 2 engagements.
▪ Created workflow for the organization using EMC GRC Archer - Audit module.
▪ Conducted technology and integrated audits for complex SaaS Infrastructure across several lines of business in North America, Australia, and EMEA.
▪ Conducted periodic compliance activities to help ensure the business use of technology was in accordance with legal and regulatory requirements. (including ABC, AML, Sanctions related due diligence)
2015 : 2016
Bottomline Technologies
IT Audit Manager
Capital One
Cybersecurity Assurance
2020 : 2022
Sumitomo Mitsui Banking Corporation
Director Cybersecurity Audit
2020 : 2020
MUFG
Vice President Information Technology Audit
▪ Key role in the development and delivery of a risk-based internal audit plan.
▪ Participated in bi-annual enterprise risk assessment review as a security and technology subject matter expert.
▪ Conducted internal audits (Technology and integrated Fin-Ops review) to ensure compliance with the Pearson governance program and government regulations.
▪ Evolved technology audit approach to reflect the increasingly digital nature of Pearson’s strategy and products.
▪ Innovate global internal audit methodology with the creation of the ‘no surprise’ approach to communication with key stakeholders during an audit engagement.
▪ Propelled internal audit initiative with the creation of a data analytics strategy
▪ Assisted the Center of Excellence SOX Team as an SME during Year-End testing of ITGC controls.
▪ Liaison with external auditors
▪ Performed internal training on trending risk
▪ Assisted CAE with the preparation of Audit Committee papers
▪ Monitored and report on open audit actions, to proactively drive accountability by the business to improve Pearson’s control environment.
2016 : 2020
Pearson
IT Audit Manager
▪ Created Audit Department for the organization.
▪ Documented audit universe and created an audit plan to identify risk, recommend remediation and worked with key stakeholders to implement risk mitigation solutions appropriate to protect the business without impacting its mission.
▪ Implemented a new risk-based audit program leveraging the COBIT framework.
▪ Directed the organization through first FFIEC, PCI and NACHA compliance audit providing management with gap and remediation analysis throughout the process.
▪ Facilitated third-party auditors for SOC I SSAE18 (formerly SSAE16) and SOC 2 engagements.
▪ Created workflow for the organization using EMC GRC Archer - Audit module.
▪ Conducted technology and integrated audits for complex SaaS Infrastructure across several lines of business in North America, Australia, and EMEA.
▪ Conducted periodic compliance activities to help ensure the business use of technology was in accordance with legal and regulatory requirements. (including ABC, AML, Sanctions related due diligence)
2015 : 2016
Bottomline Technologies
IT Audit Manager
Company:
Capital One
Spoken Language:
English, French, Spanish
About
Work hard - play hard!
Insightful, results-driven professional with notable success directing a broad range of corporate initiatives while participating in the planning, analysis, and implementation of solutions in support of business objectives.
Knowledge:
Cloud Computing and Cloud Security, Identity Access Management (IAM), Big DATA (Data Analytics, RPA, and AI), Data Visualization (Tableau), Operating Systems (Linux/UNIX based OS, MS Server and Windows), Virtualization Platform, Network Defense, COBIT, ITIL, ISO, SAFe AGILE, PCI-DSS, HIPAA, FFIEC, CCPA, GDPR, NIST, FISMA, FINRA, SOC I & II TYPE 1 & 2
Passion:
Working with and helping, teams, communities, and individuals succeed in life.
Profile Photo
