Sai Deepika Dusamuda
Hyderabad
Summary
Looking for an opportunity in various domains of information security to help the Organization to achieve its Information Security goals for business growth.
Over all 5.5 years of IT experience with Worked on Internal Auditor for 1.5 years and currently working as an IT External Auditor for 4 years. Skilled in planning, leading and conducting audits of business units with a focus on risk assessment, business process controls, and compliance with applicable laws, regulations and policies Experienced in identifying key risks & controls, in-depth knowledge of Sarbanes Oxley readiness, controls optimization, including the configuration of controls around security, Computer Operations and within IT environments Proficient in conducting audit support services (application and IT general controls) for external audit engagements, including engagements under SoX requirements; comprehensive knowledge & understanding of Technical IT Application controls. Worked on ITGC Controls TOD and TOE for: Logical Access, Change Management and Operations Controls and preparing workpapers. Perform and document control testing to support the Internal Audit plan and SOX 404 internal control assessment. Communicate identified control deficiencies to management both orally and in writing. Involved in SOC 1 and SOC 2 Type 1 and Type 2 evaluation for the third party service organizations.
Overview
5
5
years of professional experience
Work History
Senior Associate
Deloitte Touche Tohmatsu India LLP
Remote(Hyderabad)
07.2020 - Current
- Responsible for IT Audit and SOX 404 IT internal controls testing including IT General Controls (ITGCs), Segregation of Duties, Automated Controls, as well as other Application Specific Controls for SAP as needed
- From collecting the population and Performed controls testing including TOD & TOE (Test of Design and Test of Effectiveness) and assisted Control Owners in identifying and remediating gaps
- Performed ITGC and Application/Configuration controls testing for SAP instances for Logical Access and Change management processes (SAP Security, SAP ABAP and Basis modules) across various businesses and benchmark them against global financial controls framework
- Co-ordinate with SAP implementation teams while SAP deployment across new businesses to ensure adherence to company’s financial control framework
- Co-ordinate with SAP Security teams to enforce User Provisioning and Access Management program across various SAP instances
- Further, partners with control owners from business to manage and mitigate identified SoD conflicts
- Advising clients on advice, the delivery of implementation projects, investigation and resolution of technical regulatory and accounting issues
- Spearheading the adaption, a work program and practice aid, as well as performing assessments to evaluate controls, security reviews, SOD, and potential for optimization
- Interfacing with the clients on solutions and executing projects on client engagements, forming client relationships and understanding of the client's business
- Performed testing controls like User Access Management, Change Management, Logical Security of Applications, Physical Security, Computer Operations, Backup & Restoration and Policies & Procedures
- Facilitating end-to-end deliverable to the client (External Audit); leading the design and regular periodic monitoring of IT controls.
Senior Assistant
Luminar Technologies
Remote
03.2019 - 07.2020
- Conducting Internal Audits ITGC Controls inside the Compliance and risk management team
- Assessing IT General Controls (ITGC) in the Information Technology environment, application controls, computer operations, program development, program changes and find gaps
- Co-ordinate with SAP implementation teams while SAP deployment across new businesses to ensure adherence to company’s financial control framework
- Co-ordinate with SAP Security teams to enforce User Provisioning and Access Management program across various SAP instances
- Further, partners with stakeholders from business to manage and mitigate identified SOD conflicts
- Reporting issues or deficiencies found during testing and escalating issues identified as result of control failures to the Lead/Manager
- Follow up on remediation action plans for issues raised during the SOX audits
- Responsible for making sure that all SOX audits were completed and submitted on time each quarter
- Performed controls testing including TOD & TOE (Test of Design and Test of Effectiveness) and assisted stakeholders in identifying and remediating gaps
- Test operational effectiveness to ensure compliance with section 404 of the SOX Act of 2002
- Performed ITGC and Configuration controls testing for SAP Security and Basis modules across various businesses and benchmark
- Review control descriptions, process narratives and testing strategies for reasonableness and accuracy.
Education
Graduation (Bachelor of Arts) -
Osmania University
Skills
- Information security audit
- compliance and Risk management
- ITGC SOX audit
- Internal Audit
- IT External Audit
- SOX Compliance
- Technical IT Application controls
- ITGC Controls TOD and TOE
- Change Management
- Control testing
- SOX 404 internal control assessment and Testing
- SOC 1 and SOC 2 Type 1 and Type 2 evaluation
- IT General Controls (ITGCs)
- SAP Security
- Design and regular periodic monitoring of IT controls
- Remediation action plans
Timeline
Senior Associate
Deloitte Touche Tohmatsu India LLP
07.2020 - Current
Senior Assistant
Luminar Technologies
03.2019 - 07.2020
Graduation (Bachelor of Arts) -
Osmania University