High-Impact it Audit & Compliance Solutions
READY TO RAISE THE BAR ON IT CONTROLS?
Your Trusted Partner in Technology Risk, Assurance & Resilience.
Results-driven IT Auditor, information security management professional, and IT leader with proven track record of managing risk, balancing technology controls with business, security and compliance needs. Demonstrated experience performing Risk Assessments, identifying risk & control gaps, and managing mitigation efforts. Adept at cross-functional collaboration as needed to successfully manage projects, support technology initiatives & align with company goals.
KEY INDUSTRY EXPERIENCE
OIL & GAS
TECHNOLOGY
INSURANCE
FINANCIAL
LEGAL
RETAIL SERVICE
MANUFACTURING
HEALTHCARE
IT AUDIT ASSURANCE & ADVISORY SERVICES
⚡ Whether you’re facing a SOX compliance deadline, initiating a cybersecurity audit program, or seeking IT audit insights for a key project, I’m here to support your objectives.
What You Get:
Strategic insight and hands-on guidance from an experienced IT audit leader.
William offers the expertise you need, when you need it.
✓ Strengthen your IT control environment
✓ Align IT risks with business goals
✓ Gain confidence in your compliance & security posture
RISK-BASED AUDIT SERVICES
✅ RISK ASSESSMENTS & MITIGATION: Comprehensive risk assessment, mitigation planning/tracking, & risk-control matrix to improve risk resilience, executive visibility, and enable proactive decision-making
✅ IT Audit Planning: To have a structured and risk-based audit roadmap to ensure audit coverage where it matters most and maximize resource effectiveness
✅ IT Audits (Full-Spectrum): Targeted, deep-dive IT audits customized to your environment to gain visibility into control gaps, improve security, performance and reliability
REGULATORY COMPLIANCE
✅ IT COMPLIANCE AUDITS: Expert-led audits across regulatory frameworks to strengthen compliance & security controls, helping to avoid costly non-compliance penalties, and build stakeholder trust
⟩ SOX 404 / ITGC
⟩ Data Privacy (CCPA / GDPR)
⟩ HIPAA
⟩ FISMA
⟩ PCI DSS
SPECIAL PROJECTS
✅ THIRD-PARTY VENDOR REVIEW: To identify gaps, improve standards, and enhance vendor performance & accountability
✅ POLICY DEVELOPMENT & PROCESS MGMT: For End-to-End development and refinement of your policy framework
✅ SOC REPORT REVIEWS & TRAINING: SOC 1 & SOC 2 report assessments, enhanced review process standards, & tailored training
✅ BUSINESS CONTINUITY & DISASTER RECOVERY: Minimize downtime & disruptions by identifying/mitigating risk, analyzing business impact, & developing effective plans
✅ TECHNOLOGY RISK MANAGEMENT: To perform a comprehensive risk assessment, develop an effective risk & control matrix, and implement a process of continuous review
★★★★★
EXCEL SCRIPT IDENTIFIED OVER $3M IN DUPLICATE VENDOR PAYMENTS
A duplicate invoice payment search script was developed in Excel using SAP vendor invoice data that helped a Vendor Audit team to easily discover and collect over $3M in the first 2 years of operation.
OIL & GAS COMPANY
/
Public company
Your Trusted Partner in Technology Risk, Assurance and Resilience.