Profiles search
Seido Afia, MBA, CISA
Business Risk Analyst Lead - VP | Cybersecurity
Dallas, TX, United States
Details
Experience:
2022 : Present
Comerica Bank
Business Unit & Risk Analyst Lead | VP - Cybersecurity at Comerica Bank
Provide Clients with insight to DTCC Information Security platform to maintain client engagement.
Facilitate and coordinate requests and client responses from multiple areas within Technology Risk Management (TRM) including requests for PenTest results, vulnerabilities, IT Risk and remediation Plans.
Serves as a backup to fulfill external regulatory requests on behalf of TRM
Supports the internal/external audit processes and drive the process on behalf of TRM
2016 : 2022
The Depository Trust & Clearing Corporation (DTCC)
Technology Risk Consultant
• Engage with technical process owners to understand technical process steps, identify risk, and drive toward a completed documentation that aligns with the IT Governance and Risk Management programs
• Provides solutions and coordinates the execution of control mechanism/testing against technical procedures to ensure appropriate execution and that risk is mitigated to an appropriate level
• Manage/led IT audits and reviews with all subsidiaries, coordinate with operational/functional audit teams. Develop detailed scope and test programs for audits and reviews
• Conduct meetings, interview control owners, generate documentation request lists, evaluate documentation and prepare recommendations for improvement
2015 : 2016
Next Level Recruiting, LLC
Information Technology Audit Supervisor
• Prepared planning documentation (i.e., narratives, flowcharts, interviews) for business processes in accordance with IIA standards.
• Assisted in performing ITGC walkthroughs as part of the IT financial audit support team, including Change Management, Logical Access, Computer Operations, reporting SSAE 16 (now SSAE 18) standard and application controls testing for numerous applications including SAP.
• Performed additional SOX testing on Change Management, Segregation of Duties, and Access Controls Led weekly ITGC Audit status meetings to discuss progress, test results, findings and other matters related to the ongoing audit
• Performed audits of applications, networks, and platforms and provided recommendations for the correction of weaknesses, non-compliance with corporate IT policies and procedures, segregation of duties, and improvement of operation.
• Presented audit findings to management through effective SSAE 16 (now SSAE 18) standard reporting to ensure compliance with Sarbanes Oxley's requirement to show effective internal controls covering financial reporting.
2013 : 2015
Swanston Consulting
Senior Information Technology Auditor
Comerica Bank
Business Unit & Risk Analyst Lead | VP - Cybersecurity at Comerica Bank
Provide Clients with insight to DTCC Information Security platform to maintain client engagement.
Facilitate and coordinate requests and client responses from multiple areas within Technology Risk Management (TRM) including requests for PenTest results, vulnerabilities, IT Risk and remediation Plans.
Serves as a backup to fulfill external regulatory requests on behalf of TRM
Supports the internal/external audit processes and drive the process on behalf of TRM
2016 : 2022
The Depository Trust & Clearing Corporation (DTCC)
Technology Risk Consultant
• Engage with technical process owners to understand technical process steps, identify risk, and drive toward a completed documentation that aligns with the IT Governance and Risk Management programs
• Provides solutions and coordinates the execution of control mechanism/testing against technical procedures to ensure appropriate execution and that risk is mitigated to an appropriate level
• Manage/led IT audits and reviews with all subsidiaries, coordinate with operational/functional audit teams. Develop detailed scope and test programs for audits and reviews
• Conduct meetings, interview control owners, generate documentation request lists, evaluate documentation and prepare recommendations for improvement
2015 : 2016
Next Level Recruiting, LLC
Information Technology Audit Supervisor
• Prepared planning documentation (i.e., narratives, flowcharts, interviews) for business processes in accordance with IIA standards.
• Assisted in performing ITGC walkthroughs as part of the IT financial audit support team, including Change Management, Logical Access, Computer Operations, reporting SSAE 16 (now SSAE 18) standard and application controls testing for numerous applications including SAP.
• Performed additional SOX testing on Change Management, Segregation of Duties, and Access Controls Led weekly ITGC Audit status meetings to discuss progress, test results, findings and other matters related to the ongoing audit
• Performed audits of applications, networks, and platforms and provided recommendations for the correction of weaknesses, non-compliance with corporate IT policies and procedures, segregation of duties, and improvement of operation.
• Presented audit findings to management through effective SSAE 16 (now SSAE 18) standard reporting to ensure compliance with Sarbanes Oxley's requirement to show effective internal controls covering financial reporting.
2013 : 2015
Swanston Consulting
Senior Information Technology Auditor
Company:
Comerica Bank
About
Experienced IT Auditor, Risk Assessment, Information Security and Regulatory Compliance Professional. Self motivated, engaging team player, great communicator and goal getter.
Profile Photo
