Alan Jones
Details
Information Technology : I T Auditing and I T Project Management
Northern Kentucky University
Bachelor of Science (B.S.)
Business, Management, Marketing, and Related Support Services
Minnesota State University, Mankato
*Regulatory and non-regulatory IT Audits for clients within multiple industries. These audits include
SOX, HIPAA, PCI, GDPR, Cybersecurity, and Social Media audits, assessments and reviews.
*Governance/Risk/Compliance/ reviews contrasting ITIL best practices with current organizational
policies, procedures, and processes, (example : Business Continuity )recommending alternatives,
and assisting with remediation.
*Cybersecurity Assurance Assessments identifying strengths, weaknesses, vulnerabilities, and
recommendations for areas of remediation.
*Management of a multitude of PM disciplines including ERP, SDLC, infrastructure consolidation, application Enhancement.
2018 : Present
Scope Technology Solutions LLC
Independent Consultant : I T Audit, GRC, Cybersecurity, and Project Management
2017 : 2018
Interstates
MIT Cybersecurity Analyst III
*Perform IT and other internal audits in compliance with the provisions of the Internal Audit Charter, the Internal Audit Plan, The Institute of Internal Auditors' Standards for the Professional Practice of Internal Auditing.
*Assess the operating effectiveness, efficiency, and accuracy of records for information technology general controls.
*Evaluate the proper design of internal controls based upon COBIT, ITIL, PMI, and PCI, best practices and standards.
*Tracked, managed, and completed, full roster of Service Provider documentation including SOC 1 Reports, 107GL Documents, and Management Evaluation Responses, to ensure adequate control coverage over vendor/supplier applications and services.
*Audit systems and records of the company, its subsidiaries, and departments and interview management and staff to ensure effective and efficient controls and comp liance with applicable agreements, laws and regulations.
*Examine IT department activities for compliance with management plans and policies.Assist internal and external auditors in accessing and analyzing system data and other tasks when needed. Investigate suspected or known fraud and to develop controls for fraud prevention.
2016 : 2017
Tempur Sealy International
Senior Global Information Technology Auditor
Consulting with clientele per contracted requirements for Information Technology Auditing and Information Technology Project Management. Information Technology Audits include compliance with the provisions of client's Internal Audit Charter and Internal Audit Plan, Risk Assessment, and Regulatory mandates from SOX, PCI, FERPA, and HIPAA. Performed the IT Audit engagement from preparation, kick-off meeting, interviews, walk-through, risk assessment / evaluation, scoping of audit, testing (ITCG, Security, Disaster Recovery, Business Continuity, and COBIT, ISACA, IIA, PMP, and ITIL standards and best practices), formal report writing and submission, advising on improvements for processes, policies, procedures, and operational methods, and post-remediation controls testing. Information Technology Project Management includes ERP, SDLC, addition of software functionality, Data Mapping, Data Formatting, Data Migration, Business Continuity, Disaster Recover, and Infrastructure Consolidation. Project Management contracted points of entry included : Initiation, Planning, and Managing. Successfully lead and managed project teams (5 -250) in the execution, organization, motivation, and fulfillment of producing quality deliverable(s).
2008 : 2017
Scope Technology Solutions LLC
Manager Information Technology Audit and Project Management
Built and supervised (1-2 auditors) internal Information Technology Audit function, within twenty states and three continents, for national leader in industrial / consumer packaging industry (four-billion dollars in revenue). Planned, conducted, and managed domestic and international Sarbanes Oxley 404 (SOX) audits including financially integrated risk assessments, general controls, application controls, and security. Scheduled and performed audit engagement opening / closure meetings, formal written reporting with impact analysis and recommendations for remediation, while building and enhancing audit relations within organization and with external auditors.
2006 : 2008
Bemis Company, Inc.
Supervisor I T Auditing / SAP Controls & Compliance Team Lead
Skills
Analysis, Business Process, ERP, Governance, Information Technology, Information Technology Auditor (CISA), Information Technology Business Systems Analyst, Information Technology Project Management Professional (PMP), ITIL, Leadership, Management, PMP, Process Improvement, Project Management, SAP, Sarbanes-Oxley Act, SDLC, Security
About
Information Technology Professional with a formal Masters Degree in Information Systems: IT Audit, re-enforced with professional certifications in (CISA) Auditing Information Systems w/Top 10% Score, (CRISC) Comprehensive Risk Management suite of services, (PMP) Managing Information Technology Projects, and (ITIL) enhancing Information Technology Service Support and Delivery to include Change Control, Configuration Management, Incident / Problem Management etc.
My extensive experience includes:
1) Project Management (SDLC, ERP, SAP, DYNAMICS AX, JDE, and SITELINE/SYMEX) Infrastructure consolidation, Data Mining, and Migration.
2) Risk Management and Analysis
3). Auditing Information Systems both nationally and internationally (SOX, COBIT: HIPAA, PCI, FERPA, Social Media, Business Impact Analysis/Disaster Recovery Plan, Business Analysis, Balanced Scorecard, and Project Management / Project Audits).
Additionally, my work ethic, positive approach, professionalism, and superlative communication, will help you to achieve Audit and Project cooperation, teamwork, industry best practices, effective remediation of control deficiencies, and quality project deliverable(s).
Profile Photo
