Profiles search
Abdulfatai Momodu
IT Risk Assurance and Cybersecurity Professional
Ft. Washington, MD, United States
Details
Experience:
• Plan, execute and lead security audits across an organization
• Inspect and evaluate financial and information systems, management procedures and security controls
• Evaluate the efficiency, effectiveness and compliance of operation processes with corporate security policies and related government regulations
• Develop and conduct risk assessment to identify, assess, measure and monitor information security risks to assets
• Review or interview personnel to establish security risks and complications
• Execute and properly document the audit process on a variety of computing environments and computer applications
• Assess the exposures resulting from ineffective or missing control practices
• Accurately interpret audit results against defined criteria
• Weigh the relevancy, accuracy and perspective of conclusions against audit evidence
• Provide a written and verbal report of audit findings
• Develop rigorous “best practice” recommendations to improve security on all levels
• Work with management to ensure security recommendations comply with company procedures
• Collaborate with departments to improve security compliance, manage risk and bolster effectiveness
• Travel extensively
2014 : Present
AmanTech Solutions LLC
IT Audit and Risk Assurance Consultant
• Manage the development and implementation of global security policy, standard, guidelines and procedures
• Identify scope, develop, implement and maintain information security risk management programs appropriate for organizational risk profile.
• Translate business, industry, and regulatory requirements into information risk management objectives and associated tactical /strategic information security initiatives.
• Scope security engagements, and effectively translate business requirements into engagement.
• Test and evaluate the effectiveness of information security policies, procedures, practices, and security controls.
• Conduct reviews and recommend updates of information Security Standard, Operating Procedures, based on best practices, current federal guidance, notices and directives.
• Conduct information security risk assessments and effectively communicate risk profile to client’s system owner
• Oversee and coordinate security efforts across business units and enterprise wide.
• Proven ability to achieve successful results in FISMA, RMF, OMB Circulars, and FISCAM implementation in Government environment.
• Conduct FISMA reviews, track and monitor information systems and information vulnerabilities and weaknesses for all information systems.
• Review POAM lifecycle and prepare FISMA and POAM reports.
• Experience in the design and execution of vulnerability management, configuration management, penetration tests and IT security audits, application security design and provision of advisory and consulting services to clients.
2011 :
CAD Business & I.T. Consulting
IT Audit and Information Security Risk Management Consultant
• Attend meetings with auditees to develop an understanding of the business processes.
• Travelling to different sites to meet relevant staff to obtain documents and information.
• Review and assess how well risk management processes are working and record the results.
• Examine and evaluate financial and information systems, management procedures and Internal controls.
• Perform risk assessments on key business activities and using this information to guide what to cover in audits.
• Interact with end users concerning virus, spam, and any other information security issues.
• Reviews and creates audit reports on user and system activities.
• Review new and existing infrastructure deployments for vulnerabilities
• Review network and infrastructure configurations for weaknesses
• Actively probes the network for new threats and risks and tests security measures to reduce and mitigate risk.
• Monitors security alerts on internet and determines whether reported threats could impact Clients information or telecommunication systems.
• Provide technical consulting to other groups on security requirements. Creates and delivers security training materials.
• Follow up on management oversight regarding compliance with security regulations, standards and laws.
• Develop security awareness by providing orientation, educational programs, and on-going communication.
2003 : 2008
Huge Halliday Consulting
Audit and Risk Assurance
• Handle full spectrum of financial and cost accounting role e.g. AR, AP, GL, forecasting, budgeting etc.
• Responsible for day to day finance and accounts operations
• Perform financial analysis and reporting to management as needed.
• Responsible for timely monthly consolidated financial statements, payments, cash-flow management reporting for submission to Management
• Coordinate with finance team to complete assigned accounting tasks within deadlines.
• Perform project cost forecasts/budgets, cost tracking, monitoring and controls.
• Issue project cost reports for review and approval.
• Perform cash flow forecasting, budgeting and working closely with the operations and project teams in analyzing margins, variances and cost analysis and report the same to management.
• Develop and maintain internal control and effective accounting system and policies for the set up.
• Monitor and record financial transactions according to company policies and regulations.
• Evaluate computerized accounting systems and provide recommendations to IT team for performance improvements.
• Establish and maintain systems for cost-sensitivity analysis and early-warning of cost-overruns
• Work consultatively with the respective departments on cost reduction initiatives
• Support Management by ensuring that intercompany cost allocations are in line with management agreements and transfer pricing policy
2000 : 2003
Genesis Group Nigeria Limited
Chief Accountant
• Participate in month-end close activities including the preparation and review of journal entries and review of budget-to-actual reports
• Prepare and review monthly reconciliations of assigned balance sheet accounts and ensure that general ledger accounts are reconciled with resolution to reconciling items
• More complicated work can include consolidations of domestic and foreign entities.
• Reconcile general ledgers, post journal entries, and assist with the preparation of financial statements
• Accruals, fixed-assets, revenue recognition & variance analysis.
• Reconcile intercompany accounts and post eliminating journal entries
• Substantiate financial transactions by auditing documents. Verify and analyze business records, transactions, and procedures
• Prepare monthly journal entries and account reconciliation for assigned general ledger accounts and balance sheets
• Prepare schedules for quarterly reviews and year-end audit for independent external auditors.
• Research issues, clarify information, and prepare supporting data
• Work closely with intercompany partners on intercompany reconciliations
• Prepare audit schedules and filing value added tax forms in multi-state environments
1999 : 2000
Genesis Group Nigeria Limited
Senior Accountant
• Inspect and evaluate financial and information systems, management procedures and security controls
• Evaluate the efficiency, effectiveness and compliance of operation processes with corporate security policies and related government regulations
• Develop and conduct risk assessment to identify, assess, measure and monitor information security risks to assets
• Review or interview personnel to establish security risks and complications
• Execute and properly document the audit process on a variety of computing environments and computer applications
• Assess the exposures resulting from ineffective or missing control practices
• Accurately interpret audit results against defined criteria
• Weigh the relevancy, accuracy and perspective of conclusions against audit evidence
• Provide a written and verbal report of audit findings
• Develop rigorous “best practice” recommendations to improve security on all levels
• Work with management to ensure security recommendations comply with company procedures
• Collaborate with departments to improve security compliance, manage risk and bolster effectiveness
• Travel extensively
2014 : Present
AmanTech Solutions LLC
IT Audit and Risk Assurance Consultant
• Manage the development and implementation of global security policy, standard, guidelines and procedures
• Identify scope, develop, implement and maintain information security risk management programs appropriate for organizational risk profile.
• Translate business, industry, and regulatory requirements into information risk management objectives and associated tactical /strategic information security initiatives.
• Scope security engagements, and effectively translate business requirements into engagement.
• Test and evaluate the effectiveness of information security policies, procedures, practices, and security controls.
• Conduct reviews and recommend updates of information Security Standard, Operating Procedures, based on best practices, current federal guidance, notices and directives.
• Conduct information security risk assessments and effectively communicate risk profile to client’s system owner
• Oversee and coordinate security efforts across business units and enterprise wide.
• Proven ability to achieve successful results in FISMA, RMF, OMB Circulars, and FISCAM implementation in Government environment.
• Conduct FISMA reviews, track and monitor information systems and information vulnerabilities and weaknesses for all information systems.
• Review POAM lifecycle and prepare FISMA and POAM reports.
• Experience in the design and execution of vulnerability management, configuration management, penetration tests and IT security audits, application security design and provision of advisory and consulting services to clients.
2011 :
CAD Business & I.T. Consulting
IT Audit and Information Security Risk Management Consultant
• Attend meetings with auditees to develop an understanding of the business processes.
• Travelling to different sites to meet relevant staff to obtain documents and information.
• Review and assess how well risk management processes are working and record the results.
• Examine and evaluate financial and information systems, management procedures and Internal controls.
• Perform risk assessments on key business activities and using this information to guide what to cover in audits.
• Interact with end users concerning virus, spam, and any other information security issues.
• Reviews and creates audit reports on user and system activities.
• Review new and existing infrastructure deployments for vulnerabilities
• Review network and infrastructure configurations for weaknesses
• Actively probes the network for new threats and risks and tests security measures to reduce and mitigate risk.
• Monitors security alerts on internet and determines whether reported threats could impact Clients information or telecommunication systems.
• Provide technical consulting to other groups on security requirements. Creates and delivers security training materials.
• Follow up on management oversight regarding compliance with security regulations, standards and laws.
• Develop security awareness by providing orientation, educational programs, and on-going communication.
2003 : 2008
Huge Halliday Consulting
Audit and Risk Assurance
• Handle full spectrum of financial and cost accounting role e.g. AR, AP, GL, forecasting, budgeting etc.
• Responsible for day to day finance and accounts operations
• Perform financial analysis and reporting to management as needed.
• Responsible for timely monthly consolidated financial statements, payments, cash-flow management reporting for submission to Management
• Coordinate with finance team to complete assigned accounting tasks within deadlines.
• Perform project cost forecasts/budgets, cost tracking, monitoring and controls.
• Issue project cost reports for review and approval.
• Perform cash flow forecasting, budgeting and working closely with the operations and project teams in analyzing margins, variances and cost analysis and report the same to management.
• Develop and maintain internal control and effective accounting system and policies for the set up.
• Monitor and record financial transactions according to company policies and regulations.
• Evaluate computerized accounting systems and provide recommendations to IT team for performance improvements.
• Establish and maintain systems for cost-sensitivity analysis and early-warning of cost-overruns
• Work consultatively with the respective departments on cost reduction initiatives
• Support Management by ensuring that intercompany cost allocations are in line with management agreements and transfer pricing policy
2000 : 2003
Genesis Group Nigeria Limited
Chief Accountant
• Participate in month-end close activities including the preparation and review of journal entries and review of budget-to-actual reports
• Prepare and review monthly reconciliations of assigned balance sheet accounts and ensure that general ledger accounts are reconciled with resolution to reconciling items
• More complicated work can include consolidations of domestic and foreign entities.
• Reconcile general ledgers, post journal entries, and assist with the preparation of financial statements
• Accruals, fixed-assets, revenue recognition & variance analysis.
• Reconcile intercompany accounts and post eliminating journal entries
• Substantiate financial transactions by auditing documents. Verify and analyze business records, transactions, and procedures
• Prepare monthly journal entries and account reconciliation for assigned general ledger accounts and balance sheets
• Prepare schedules for quarterly reviews and year-end audit for independent external auditors.
• Research issues, clarify information, and prepare supporting data
• Work closely with intercompany partners on intercompany reconciliations
• Prepare audit schedules and filing value added tax forms in multi-state environments
1999 : 2000
Genesis Group Nigeria Limited
Senior Accountant
Company:
AmanTech Solutions LLC
About
Highly motivated, diligent, analytical, professional; ability to serve as a corporate security risk specialist by ensuring technical security planning, testing, verification and risk analysis in accordance with TCP/IP protocols. Capable of defining, deploying and monitoring risk management, compliance, and information security programs while functioning as a primary IT disaster recovery coordinator. Have wide knowledge of current IT security tools-hardware and software security. Have a good understanding of IT business security practices and procedures. Good knowledge of ISAE-3402/SSAE-16/SAS-70, PCI, GLBA, SOX, HIPAA, COBIT, NERC, FFIEC, ITIL, ISO 27000 series, NIST SP 800 series and FISMA security standards. Ability to create and implement strategic plans and innovative solutions to improve productivity, reduce costs, and achieve company goals.
Profile Photo
