Open to opportunities

Olumuyiwa Olufunso

@olumuyiwaolufunso

Message

Detail-oriented IT audit professional with expertise in risk management.

United States

Message

What I'm looking for

I seek a role that fosters growth, collaboration, and innovation in IT audit.

I am a detail-oriented and highly analytical professional with extensive experience in IT audits and assurance, technology risk management, and cybersecurity compliance. My career has been dedicated to assessing the effectiveness of information security controls and enhancing security postures through in-depth risk analysis and strategic recommendations. I excel in managing both internal and external audit processes while navigating diverse compliance concerns, including SOC and ISO standards.

Currently, as a Senior Associate at Deloitte & Touche LLP, I evaluate information security controls using industry-standard frameworks like NIST and CIS. My role involves coordinating risk-focused audits and contributing to comprehensive risk management processes. I have successfully implemented standardized readiness assessments for ISO 27001 recertifications and developed toolkits for evaluating security compliance requirements. My ability to collaborate with cross-functional teams has allowed me to provide valuable insights that mitigate risks and enhance IT operations.

With a strong educational background in Information Systems Security and numerous certifications, including CISA and PMP, I am committed to continuous learning and improvement in the field of IT audit and risk management. I am passionate about leveraging emerging technologies to drive effective audit strategies and ensure compliance with regulatory standards.

Experience

Work history, roles, and key accomplishments

Current

Snr Associate- Tech Risk, Audit & Assurance

Current

Deloitte & Touche LLP

Jun 2022 - Present (3 years 5 months)

Evaluate information security controls using frameworks like NIST CSF and CIS Critical Security Controls. Coordinate risk-focused audits, prioritize critical IT systems, and conduct in-depth risk analysis. Execute internal audits per professional standards and manage compliance concerns through various regulations.

NIST CSF CIS Critical Security Controls ISO 27001 Risk Assessment Data Analytics Internal Controls Security Compliance Stakeholder Management

Internal IT Auditor

Johnson & Johnson

Jan 2022 - May 2022 (4 months)

Led reviews of General IT Controls and conducted IT Application Controls assessments. Collaborated with process owners to enhance IT operations and provided risk advisory projects tailored to public sector entities.

ITGC ISO 27001 Risk Management Data Analysis Governance

IT Auditor

General Dynamics Information Technology

Jul 2016 - Jan 2022 (5 years 6 months)

Supported documentation and modification of compliance-related SOPs. Tested SOX IT general and application controls, conducted risk assessments, and contributed to the improvement of audit tools and techniques.

Risk Assessment Process Improvement Internal Controls Documentation Debugging

Education

Degrees, certifications, and relevant coursework

Colorado Technical University

Master of Science, Information Systems Security

Master of Science in Management with a focus on Information Systems Security, equipping students with the skills to manage and secure information systems effectively.

Colorado Technical University

Bachelor of Science, Information Technology

Bachelor of Science in Business Administration with a concentration in Information Technology, providing a strong foundation in business principles and IT management.

Central Texas College

Associate of Applied Science, Information Technology

Associate of Applied Science in Information Technology, designed to prepare students for entry-level positions in the IT field with practical skills and knowledge.