Open to opportunities

Enoch Kwaku Amegatse

@enochkwakuamegatse1

Message

Detail-oriented IT Audit and Compliance Analyst with cybersecurity expertise.

Ghana

Message

What I'm looking for

I am seeking a role that values compliance and cybersecurity, offering growth opportunities and a collaborative environment.

I am a detail-oriented IT Audit and Compliance Analyst with a strong foundation in computer science and hands-on experience in cybersecurity, risk assessment, and regulatory compliance. My expertise lies in conducting internal audits, evaluating IT controls, and ensuring alignment with industry frameworks such as NIST, ISO 27001, COBIT 5, PCI DSS, and GDPR. I am adept at identifying control gaps, testing security protocols, and driving remediation efforts to improve organizational risk posture.

Throughout my career, I have successfully conducted IT audits to evaluate the effectiveness of internal controls and risk management processes. My role at Infosec Consulting has allowed me to assess the design and operational effectiveness of IT General Controls (ITGC) and perform audits across various IT domains. I pride myself on my analytical thinking and attention to detail, which have been crucial in providing actionable recommendations to mitigate risks and enhance security posture.

Experience

Work history, roles, and key accomplishments

Current

IT Auditor

Current

Infosec Consulting

Oct 2021 - Present (4 years 1 month)

Conducted IT audits to evaluate the effectiveness of internal controls, risk management, and governance processes. Assessed IT General Controls (ITGC) and ensured compliance with industry frameworks like SOX, ISO 27001, NIST 800-53, COBIT, and PCI DSS. Identified control gaps, vulnerabilities, and provided actionable recommendations to mitigate risks and enhance security posture.

IT General Controls Risk Assessment Internal Auditing IT Compliance SOX ISO 27001 NIST 800 53 PCI DSS

Compliance and Security Analyst

Prudential Life Insurance Company

Jun 2015 - Sep 2021 (6 years 3 months)

Monitored and enforced compliance with regulatory standards such as HIPAA, GDPR, SOX, PCI DSS, and ISO 27001 across systems and business units. Conducted regular security assessments and internal audits to identify gaps in security policies, procedures, and controls. Developed, updated, and enforced security policies, procedures, and standards to safeguard organizational assets and sensitive data.

Regulatory Compliance Internal Audit Vendor Risk Management Policy Development Incident Response HIPAA)GDPR SOX PCI DSS HIPAA

Account Officer

Step-Mill Consult

May 2014 - Aug 2015 (1 year 3 months)

Negotiated contracts and maintained day-to-day account records, processing payments and expenditures. Managed the impress system for field workers and handled various administrative tasks assigned by the CEO.

Contract Negotiation Account Reconciliation Payment Processing

Data Entry Officer

Innovations for Poverty Action (IPA) - NGO

Sep 2012 - Mar 2014 (1 year 6 months)

Responsible for accurately entering data for various projects including TCAI, EPAME, and Hunger Project. Performed reconciliation of different projects to ensure data consistency and support uniform decision-making.

Data Entry Data Management Microsoft Excel Attention To Detail

Supporting Account Officer

VMobile Company Limited

Jul 2009 - Nov 2009 (4 months)

Passed journal entries and prepared Bank Reconciliation Statements, ensuring accurate accounting records for balance sheet accounts using Tally accounting software. Maintained an efficient filing system and performed other duties assigned by the Finance Manager.

Journal Entries Bank Reconciliation Account Reconciliation Tally Financial Reporting

Education

Degrees, certifications, and relevant coursework

Accra Technical University

HND, Accounting

Completed a Higher National Diploma in Accounting, gaining a strong foundation in financial principles and practices. Developed skills in general ledger management, financial reporting, and budget reconciliation.

Yesyoucan Cybersecure LLC

Certification, Cybersecurity GRC-IT Audit

Activities and societies: Focused on Cybersecurity Fundamentals, Governance, Risk, and Compliance (GRC) Frameworks, IT Audit Principles and Practices, Policy and Procedure Review, SOX Compliance (Testing of ITGC Controls), SOX Reporting, Risk Assessment, Hashing and Encryption Testing, PCI DSS Compliance, Third-Party Risk Management, Risk Management Framework, Data Security, Privacy, and AI, Vulnerability Management (Using Tenable Nessus).

Completed a comprehensive program in Cybersecurity GRC-IT Audit, focusing on cybersecurity fundamentals, governance, risk, and compliance frameworks. Gained expertise in IT audit principles, policy review, SOX compliance, risk assessment, and data security.