https://wiki.owasp.org/index.php?action=history&feed=atom&title=User%3AStephen_ScottUser:Stephen Scott - Revision history2026-04-04T22:59:03ZRevision history for this page on the wikiMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=User:Stephen_Scott&diff=127534&oldid=prevKateHartmann: Creating user page with biography of new user.2012-04-07T02:10:51Z<p>Creating user page with biography of new user.</p>
<p><b>New page</b></p><div>I am currently working as a Senior Information Risk & Compliance Consultant with Espion Group.<br />
<br />
I previously worked as a Senior Auditor in IT Group Internal Audit team in AIB. I evaluated issues and advised the<br />
<br />
appropriate response from precedence and practice. I have developed specialist expertise in supporting the<br />
<br />
current and future control and direction of the business.<br />
<br />
My role involved the following:<br />
<br />
• Completion of Audit Definition Documents,<br />
<br />
• Identification of key risks controls and development of audit test plans.<br />
<br />
• Analysis/mapping of business processes through process flows to identify key controls and potential<br />
<br />
design weaknesses.<br />
<br />
• Document and provide relevant evidence to support audit findings<br />
<br />
• Identify and communicate audit findings to senior management<br />
<br />
• Discuss, challenge and gain agreement on identified issues<br />
<br />
• Complete audit report documenting audit summary, identified issues with associated impacts and<br />
<br />
management action plans for review by the Group Internal Auditor<br />
<br />
• Develop and maintain positive relationships with clients<br />
<br />
• Maintain knowledge of AIB policies, standards and organisational structure<br />
<br />
• As part of the annual audit planning process complete risk assessments<br />
<br />
• Maintain knowledge of Group Internal Audit’s audit methodology,<br />
<br />
Prior to this I worked as a lead SOX auditor with Operational Risk & Assurance Services, 3 of which were as an<br />
<br />
evaluator and as a Manage Data & Security process specialist. I incorporated many improvements to legacy<br />
<br />
processes which made testing run smoother and avoid any deficiencies. I have had a large amount of experience<br />
<br />
testing Windows, Oracle, SQL or UNIX environments. I am a qualified CISA since 2010. I am also a qualified ISO<br />
<br />
20000 Auditor and Consultant and have led many internal audits within AIB's IT Service Management areas. One of my main roles in OR & AS was as<br />
<br />
central Coordinator for Risk Management and Regulatory Compliance within the AIB IT Department. I<br />
<br />
hosted/chaired the monthly Risk Management Committee and Regulatory Compliance meetings. My work</div>KateHartmann