Himalayas logo
KC
Open to opportunities

Kenan Corbett

@kenancorbett

Cyber Risk & IT Governance Analyst driving control improvements and measurable risk reduction.

United States
Message

What I'm looking for

I seek roles where I can lead cyber risk governance, improve controls, automate monitoring, mentor teams, and present actionable risk insights to leadership.

I am a Cyber Risk & IT Governance Analyst with deep experience designing RCSA processes, aligning programs to NIST CSF and FFIEC guidance, and leading second-line testing across regulated environments. I have led full-lifecycle IT and cybersecurity audits, strengthened third-party risk management, and translated complex risk data into executive-ready dashboards and remediation plans.

I consistently partner with Cybersecurity, Infrastructure, Cloud, Compliance, and Finance teams to improve control design, automate monitoring with ServiceNow GRC, MetricStream, and Tableau, and present risk posture to governance forums. I mentor junior staff, drive control maturity improvements, and advise on compensating controls and regulatory expectations to support enterprise resilience.

Experience

Work history, roles, and key accomplishments

United Airlines logoUA

IT Auditor III

United Airlines

Jul 2025 - Nov 2025 (4 months)

Led full-lifecycle IT and cybersecurity audits across incident response, data protection, device management, and third-party security, strengthening TPRM and presenting remediation status to Audit Committee. Directed ITGC evaluations aligned to SOX, NIST 800-53, and ISO 27001, driving risk-based remediation and control improvements.

IT AuditThird Party Risk ManagementNIST 800 53SOXITGC
UC

Senior IT Auditor

UOT Consulting

Jun 2020 - Jul 2025 (5 years 1 month)

Led enterprise-wide cyber risk and IT control assessments integrating NIST CSF, ISO 27001, and FFIEC guidance, produced executive risk reporting and dashboards, and implemented RCSA processes in ServiceNow GRC to improve control maturity. Delivered process improvements that reduced manual compliance effort and enabled continuous monitoring.

NIST CSFRCSA ControlsISO 27001FFIECMonitoring
AT&T logoAT

IT Auditor

AT&T

Nov 2018 - May 2020 (1 year 6 months)

Performed 2LOD ITGC and application control testing focused on access, change management, and operations, assessed vendor cybersecurity controls and SOC reports, and strengthened SOX control design and audit readiness. Standardized control narratives and evidence repositories to improve audit efficiency.

ITGCSOX ComplianceChange ManagementAccess ControlAudit Evidence
Lenovo logoLE

Risk & Compliance Analyst

Lenovo

May 2018 - Nov 2018 (6 months)

Developed and implemented operational risk management frameworks and RCSA scopes, identified control risks, and established policies and procedures to standardize risk assessment and reporting. Re-scoped reviews to ensure validity and consistency across programs.

RCSA ControlsRisk FrameworksOperational Risk ManagementPolicy Development

Education

Degrees, certifications, and relevant coursework

Winston-Salem State University logoWU

Winston-Salem State University

Bachelor of Science, Marketing

2014 - 2018

Completed a Bachelor of Science in Marketing with coursework supporting business and analytics fundamentals relevant to risk and governance roles.

Tech stack

Software and tools used professionally

Salesforce logo

Salesforce

Gmail logo

Gmail

NetSuite logo

NetSuite

ServiceNow logo

ServiceNow

Evidence logo

Evidence

Enhance logo

Enhance

Remote logo

Remote

Winston

Method logo

Method

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Senior Cybersecurity Risk AnalystIt AuditorThird Party Risk ManagerRisk AnalystCybersecurity AnalystCompliance AnalystIT Security Risk ManagerSenior Information Security AnalystSenior Risk Management Analyst

Skills

Risk Control Self Assessments (RCSAs)NIST Cybersecurity FrameworkMetricStreamTableauSOX ControlsThird Party Risk ManagementCloud SecurityIncident ResponseRisk RegisterControl DesignRegulatory ReportingAudit Work Plan DevelopmentCAATs (Computer Assisted Auditing Techniques)SOC 1 2 EvaluationISO 27001NIST 800 53EnhanceEvidenceGmailMethodNetSuiteSalesforceServiceNowWinston Remote

Interested in hiring Kenan?

You can contact Kenan and 90k+ other talented remote workers on Himalayas.

Message Kenan

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Kenan Corbett - IT Auditor III - United Airlines | Himalayas