IT Auditor-Senior - EY India LLP - Hyderabad, India
(2024-06)
- Executed ITGC audits for global clients, assessing the design and operating effectiveness of controls over access management, change management, IT operations, application security, configuration management, physical security, and disaster recovery
- Led SOC 1 and SOC 2 assessments for global clients, assessing ITGCs, application controls, and business process controls against AICPA Trust Services Criteria, and coordinating with stakeholders to address control gaps and remediation
- Performed control testing for large, global banking institutions as part of the first line of defense (1LOD), assessing the design and operating effectiveness of key IT and operational controls
- Performed SOX compliance activities for in-scope IT applications, ensuring alignment with established SOX requirements and internal control frameworks
- Identified IT control deficiencies during audits, performed root-cause analysis, and developed detailed remediation plans to meet compliance timelines
- Worked closely with internal and external auditors, facilitated evidence walkthroughs, and served as a point of contact for SOX-related audit activities
- Evaluating Change Management, Access Management, IT SOD Management, and Testing of ITGC controls
- Evaluated the design and operating effectiveness of IT Application Controls (ITACs), including input, processing, and output controls supporting reliable transaction processing
- Hands-on experience in business process controls such as HR and Payroll, Cash Management, Inventory Management, and Procurement
- Performed IT SOX reviews and checked the SOX readiness assessments for clients across industries. Assessments include developing the testing plan, mapping the controls, and testing design and operational effectiveness (TOD and TOE)
Consultant-3 - Protiviti India ltd. - Bengaluru
(2023-08 - 2024-05)
- Performed Internal Financial Controls (IFC) assignment. As a part of the assignment, she performed Test of Design (TOD) and Test of Operating Effectiveness (TOE) covering IT General controls and Inventory management
- Conducted ITGC testing for a multinational Fortune 500 company, large energy and SaaS based Company
- Performed walk through testing, test of design and test of operating effectiveness for controls around access
- Participated in physical audit of data center for media and banking clients
- Performed Risk assessments on various standards including ISO27001:2013
Consultant - Deloitte Touche Tohmatsu Pvt Ltd. - Hyderabad, India
(2022-05 - 2023-06)
- Identifying the risk to organization while engaging vendors, to assist in the development, access management, transmission and/or storage of organization information assets
- Worked on Secondment project with Deloitte USI for 3 months on 8 different clients, right from conducting the walk through's and understanding the IT Infrastructure till execution of the report along with management
- Performed physical audits pertaining to Inventory for Hospitals, Construction industries, Pharma, Educational Institutes
- Performed Business process controls such as P2P, Payroll & HR, Statutory compliance, Cash Management
IRM Analyst - Dieebold Nixdorf India Pvt Ltd. - Hyderabad, IN
(2019-11 - 2022-03)
- Supported internal ITGC audits by assisting in walkthroughs and testing the design and operating effectiveness of controls across access management, change management, and IT operations
- Coordinated and facilitated external audits, following up on audit issues, responses, action plans, and remediation
- Identified and provided early risk alerts to delivery and leadership teams to avoid escalations
- Prepared audit workpapers, test scripts, and control narratives, ensuring proper documentation and compliance with internal audit standards
- Supported follow-up testing to validate the implementation of management action plans for previously identified ITGC issues
Senior Associate - Dell International Services - Hyderabad
(2017-05 - 2018-10)
- Provided second level Support on Dell supplied products or peripherals. Assign incidents in line with documented guidelines and procedures
- Resolved customers' service or billing complaints by exchanging merchandise, refunds or billing adjustments
- Cultivated a positive work environment that fostered collaboration among team members while also encouraging individual achievement goals
- Developed a deep understanding of the company's products and services to effectively communicate their benefits to potential customers
