Profiles search

Karen Schlidt

Director Information Security
Milwaukee, WI, United States

Details

Education: BA & BBA

Organizational Communication, Management Information Systems

University of Wisconsin-Milwaukee

1988 : 2000



Accounting

University of Phoenix-Denver

2002 : 2005
Experience: 2023 : Present

Fiserv

Director Information Security - Payments Technology Division

•Coordinated and managed control requests for 25 PCI Security Standards Council assessments across the organization to achieve on time Record of Certifications.

•Trained and managed the daily activities of the Fiserv offshore team - Center of Excellence (COE) to assist in the review of PCI evidence.

•Developed procedural job aids to establish standardized guidelines for COE to reference when providing quality assurance reviews of evidence prior to submission for certification.

•Collaborated with Fiserv’s new PCI vendor, Viking Cloud, to ensure a seamless approach for the rollout of the 2022 assessments.

•Partnered with Cyber and the network infrastructure teams to gain appropriate evidence needed for certification.

2022 :

Fiserv

Manager Risk and Compliance

• Coordinated and managed 330 control requests for each external PCI Security Standards Council assessments for CheckFreePay Walk-In, BillMatrix and BillMatrixNext products to achieve on time Record of Certifications.

• Provided coordination and oversight of internal documentation collection and quality of information for approximately 300 requests per SOC audit to meet requests of each external SOC1 and SOC2 audits for CheckFreePay Walk-In, BillMatrix and BillMatrixNext.

• Coordinated and managed internal audits including quality assurance reviews of documentation prior to delivery.

• Partnered with senior management to establish and implement effective controls that remediated outstanding

audit findings identified during internal audits.

2019 : 2022

Fiserv

Risk and Compliance Lead

• Trained and managed the daily activities of an offshore team (Fiserv Global Services) to provide technical assistance and administration over internal audit software, Teammate, perform issue validation activities, and complete core assurance audit testing.

• Developed procedure manuals and job aids to establish standardized activities and guidelines for the offshore team to utilize in their daily activities.

• Identified opportunities to streamline audit execution methodology processes within Teammate to drive efficiencies in workload.

• Developed, executed, and managed all department audit issue validation and reporting activities for approximately 60 audit issues on a quarterly basis.

• Partnered with the department Data Analytics team (MS Power BI) to create issue tracking and reporting dashboards for internal department utilization as well as senior business leadership and audit committee.

• Operated as the Teammate system Champion/Administrator for the department and owned the successful conversion and optimization of system upgrades.

• Coordinated and prepared Audit Committee Board materials on a quarterly basis which included department metrics on issue validation, audit reports, audit plan progress, etc.

• Led and executed on a variety of technology operations, cybersecurity, and operational audits across a variety of businesses and platforms/applications across the enterprise to identify control weaknesses and provide recommendations for remediation.

2018 : 2019

Fiserv

IS Auditor, Tech Lead

2014 : 2018

Fiserv

Senior Information Technology Auditor
Company: Fiserv
Years of Experience: 26
Spoken Language: English, German

Skills

Access Lists, Accounting, Auditing, Budgets, Business Intelligence, CISA, Crystal Reports, Hyperion Enterprise, Internal Audit, Microsoft Office 2003, PeopleSoft, Process Improvement, SAP, Sarbanes-Oxley, Sarbanes-Oxley Act, Team-oriented, Unix, Vendor Management, Visio, VMware, Windows Vista

About

Performed multiple aspects of Sarbanes-Oxley (SOX) 404 compliance work, that included the planning and performing of eighty IT control tests across multiple systems, identifying control weaknesses and documentation of deficiencies. Reconstructed change management controls for programming teams. Performed follow-up testing to ensure that weaknesses and deficiencies were resolved by year-end. Pre-planning included meetings with external auditors to develop complete work programs.



Specialties: TECHNICAL SKILLS:

•Experience with auditing the following systems: Unix, AS-400 and Windows 2000/2003

•Experience with auditing the following ERP packages: SAP, Peoplesoft, JDE V 7.3 and Hagen 8.0 (print industry specific)

•Can utilize the following software: Adobe Acrobat 7.0 Pro, Microsoft Office 2003 Suite, Vista, Crystal Reports 9.0, ACL, Visio, Hyperion Enterprise and HFM, VMWare, Sam Spade, BlackICE, Nipper

•TeamMate Administrator/Champion

•CISA certified

•ITIL 3.0 Foundation (TPECS) Certification

•CCSFP Certified

•ISO 27001:2013 Lead Auditor Certification

•PCI - ISA, PCIP

•Studying for CRISC