Thota Sai Krishnama Naidu
Hyderabad
Summary
IT Compliance Manager with extensive experience at Deloitte, specializing in SOX governance and compliance. Demonstrated success in leading audit initiatives and enhancing internal controls while mentoring teams. Expertise in risk management and project oversight, ensuring regulatory adherence and driving continuous improvement. Proven ability to build productive relationships and thrive in fast-paced environments, managing goals and team development effectively.
Overview
11
11
years of professional experience
1
1
Certification
Work History
Manager | Audit & Assurance - Audit: IT, Data & Analytics
Deloitte Touche Tohmatsu India LLP
Hyderabad
11.2023 - Current
- Managed comprehensive SOX readiness assessments ensuring compliance with regulations.
- Led independent testing initiatives for IT general controls across diverse platforms.
- Monitored staff performance, addressing issues and promoting continuous improvement.
- Conducted rigorous completeness and accuracy testing on critical system reports.
- Mentored junior staff, driving skill enhancement and improved performance standards.
- Implemented risk management strategies, effectively mitigating potential threats.
- Coordinated project management activities alongside compliance efforts for optimal results.
- Facilitated regular meetings with staff to review progress and identify improvement areas.
IT Compliance Manager - SOX
Ericsson india global services
Bengaluru
11.2021 - 11.2023
- Company Overview: Industry - Telecom.
- Managing over 40 SOX applications across more than 3 vendors and over 50 teams.
- Core SOX Team - 17.
- Audit Management.
- Work closely with delivery teams, external and MIT audit partners, external suppliers, and leadership to ensure smooth execution and reporting.
- Conducting walkthroughs with various key personnel to understand the control design and IT environment of the client.
- Conducting and reviewing the test of design, implementation, and operating effectiveness of general IT controls.
- Prepare auditee teams for the audit scope.
- Validate the data and ensure compliance before sharing it with auditors.
- Develop resolution plans and strategies for existing and potential challenges in collaboration with management and other stakeholders.
- Consult and help teams with gap closure.
- Track the open gaps to closure, which includes closure validation.
- Apprise management of the audit gaps' closure status.
- Education and awareness training for internal and supplier teams prior to the start of audits.
- Draft the annual governance plan, testing calendar, and strategy for the accounts in alignment with contractual, audit, and regulatory requirements.
- Internal compliance testing.
- Lead internal compliance testing for multiple applications.
- Draft the internal audit plan and scope for various business entities.
- Review the draft test reports created by the team.
- Assess operating systems, databases, and applications against the security policies.
- Track the open gaps to closure, which includes closure validation.
- IT Governance and Compliance Delivery.
- Manage planning, scoping, execution, tracking, and reporting on all the SOX engagements.
- Effectively communicating across all levels of management internally and externally, adding value to high-visibility and high-priority projects.
- Involved in training, adding resources, mentoring, and grooming the staff.
- SOX scoping assessments and SOX control implementations.
- SOX control self-assessments.
- Cloud migration assessments and migration activities.
- SOX Framework reviews, and GRC organization structure review.
- Securing issue status and compliance reports sign-off from the CIO and leadership.
- Industry – Telecom.
SOX Compliance SME & SOX Auditor
TATA CONSULTANCY SERVICES LIMITED
Hyderabad
02.2015 - 11.2021
- Company Overview: Industry - Telecom
- Managed over 20 applications across more than 25 teams.
- Core SOX Team – 6.
- Performed IT audits by staying involved at all the stages of the project, from planning meetings and walkthroughs, up until documentation, and ensured all the deliverables were completed on time.
- Performed report testing and control testing to ensure the completeness and accuracy of the data.
- Providing IT SOX compliance training, develop and deliver training material to IT and audit staff.
- Build a strong relationship with the business owners, IT management, and external auditors.
- Coordinates all audit efforts with business process owners, regional management, and global audit teams.
- Creating detailed work products, such as audit analysis, correspondence, memoranda, and other working papers that document the procedures performed, present findings, and the results of those procedures.
- Evaluate and report internal control deficiencies and status to senior management and executive management.
- Evaluating the internal control measures and procedures, and reporting on areas of noncompliance.
- Execute audit fieldwork autonomously, in accordance with audit work programs, and make improvement recommendations.
- Performing tasks of data collection, verification, and interpretation, as instructed by the external auditors.
- Plan and execute audit assignments, which include assessing the design and operating effectiveness of the internal control structure, and compliance with policies and procedures.
- Driving all the teams during external audits.
- Design, test, and implement procedures based on dynamic changes in environments, processes, and technologies to meet regulatory standards.
- Assisted in creating final SOX reports for all applications that were submitted to the SOX Team for control assessment.
- Assisted in performing control self-assessments.
- Evaluating and auditing the current ISMS structure for non-SAP applications with respect to the ISO 27001 standard.
- Industry - Telecom
Education
B. TECH - Electronics & Communication Engineering
GITAM University
Visakhapatnam, Andhra Pradesh, India01.2014
Board of Intermediate Education, AP. - Mathematics, Physics & Chemistry
Sri Chaitanya Junior College
Vijayawada, Andhra Pradesh, India01.2010
Board of Secondary Education, AP. -
Viswa Bharathi School
Gudivada, Andhra Pradesh, India01.2008
Skills
- SOX governance and compliance
- Audit assurance and support
- Project management
- IT audits
- Process audits
- Team management
- Vendor management
- Financial oversight
- RFP drafting
- Risk management
- Internal controls evaluation
- Audit strategies
- Regulatory compliance
- Communication skills
- Problem solving
- Performance monitoring
- Staff mentoring
- Continuous improvement
- Cross-functional leadership
- Recruiting processes
- Time management
- Innovation management
- Goal setting
- Performance evaluations
Certification
- Certified Information Systems Auditor (CISA), ISACA
- Leading digital acceleration, Stockholm School of Economics
- Certified Sarbanes-Oxley Expert (CSOE), SOX CPA
- IRCA certified lead auditor, ISO 9001:2015, British Standards Institution (BSI)
- Tata Leadership Program alumni
Accomplishments
Published white paper in ISACA regarding cybersecurity, quantum computing Successfully went through the finals, and our whitepaper is published in ISACA
https://engage.isaca.org/HigherLogic/System/DownloadDocumentFile.ashx?DocumentFileKey=be0d6d90-f148-8569-2b4f-b51169c131db&forceDialog=0
References
References available upon request.
Timeline
Manager | Audit & Assurance - Audit: IT, Data & Analytics
Deloitte Touche Tohmatsu India LLP
11.2023 - Current
IT Compliance Manager - SOX
Ericsson india global services
11.2021 - 11.2023
SOX Compliance SME & SOX Auditor
TATA CONSULTANCY SERVICES LIMITED
02.2015 - 11.2021
B. TECH - Electronics & Communication Engineering
GITAM University
Board of Intermediate Education, AP. - Mathematics, Physics & Chemistry
Sri Chaitanya Junior College
Board of Secondary Education, AP. -
Viswa Bharathi School