Varshini Vijayarangan

• Experience in Information security, FAIT (ITGC, ITAC, IPE), SOC 1 & SOC 2, SOX testing, Good knowledge in conducting and implementing mitigation plans for gaps. Looking forward for a challenging and competitive work atmosphere leading to a professional experience where my skills, talents and abilities will be utilized to the fullest for mutual benefit.
• My experience includes conducting IT audits that are essential in supporting financial assessments and cover a diverse range of business-critical applications. Throughout these assessments, I conduct thorough evaluations of both management procedures and technical controls.
• My responsibilities include identifying significant technology and security-related risks, evaluating the design and effectiveness of controls, and periodically reporting these identified risks to the relevant engagements.
• For the assigned engagements, audits are conducted as per the timeline defined in audit calendar covering the domains like Asset Management, Change Management, Physical & Environmental Security, Human Resource Security, Logical Security, Operations Security, Information Security and Organization Policy, Network Security.
• Basic SAP knowledge: Familiar with SAP user access controls, change management, and data security. Skilled in documentation and reporting for SAP audits.

• Performed internal audit on ITGC components such as access management, change management, operations, incident related to SOX-404(ITGC).
• Performed Quarterly User creations, User Terminations, User access Reviews & Password configurations and Semi-annual Highly privileged user accounts and performed in change management steps.
• Performed testing and review of key controls, integrations, and segregations of duties (SOD) rules and remediation suggestion.
• Responsible for testing IT internal controls as part of the compliance and operational audits.
• Execute daily, weekly, checks to ensure access is terminated for users who left the organization.
• Performed follow-up on the status of outstanding internal audit findings.
• Working knowledge on Fire Fighter Access Reviews and Fire Fighter Log Reviews.
• Escalate any issues in a timely manner to Team Lead or Subject Matter expert. Maintain transparent communication channels with all relevant stakeholders and promptly respond to requests from stakeholders in relation to risk management actions, tasks, and
quality of outputs.