FELICIA WALSHAlpharetta, GA

Feliciawalsh3@gmail.comhttp://www.linkedin.com/pub/felicia-walsh/9/645/540

Summary of Qualifications

Audit & Compliance Manages Payment Card Industry (PCI), Statement on Auditing Standards (SAS 70), Statement on Standards

for Attestation Engagements (SSAE 16), client and internal audits to ensure company compliance recertification and mitigate risks.

Basic knowledge of SOX. Assisted in documentation gathering for audit. Works with stakeholders to prepare responses to audit findings. Builds and Maintains strong and effective relationships with internal and external auditors (KPMG, TrustWave,

etc.) Completed FFIEC and GLBA Risk Assessments to ensure compliance and security of customer data. Reviews logs related to events and access of systems and transactions history. Determine remediation

requirements and document incident response plans. Analyzes data and determines any risk, abnormalities or unlawful intent (fraudulent activities are reported and

escalated). Provides consulting services on all aspects of the organization's disaster recovery and resumption plans.

Provides assessment on internal controls for information technology platforms and compliance and risk mitigation techniques.

Conducts Risk Assessments and periodic reviews of multiple types of financial technology platforms. Provides formal response to Request for Proposals (RFP). Participates in strategy sessions with management and subject matter experts to develop effective testing and

remediation plans. Skilled in comprehending, communicating and applying practical solutions for policies and procedures

required for regulatory and industry standard risk mitigation. Specialized knowledge of financial industry regulatory and risk management practices and their practical

implementation within software products and platforms. Account Management, Product & Project Management

Understands functional requirements and translates into user stories that can be used by developers. Completes acceptance/smoke testing of functional requirements and confirms that systems are working as

expected. Manages software development scrum teams. Identifies options for improving business systems. In-depth knowledge of SDLC practices (Waterfall & Agile) within the software development industry and

specifically applied to J2EE software development practices. Manages software implementations. Creates detailed project plans. Applies a pragmatic and practical approach to managing tasks, insuring that top management priorities are

achieved in the most comprehensive and complete manner possible. Skilled in building relationships with peers, superiors and clients and effectively communicating with disparate

stakeholders about projects and tasks. Handles change in an effective and productive manner, keeping sight of the top priorities and adjusting as

needed to achieve necessary goals. Experience working with virtualized environments. Outstanding organizational and multi-tasking skills, comfortable in fast paced environments, produce quality

work even when under extreme time pressure and deadlines, collaborates in teams to produce quality reports.

Proficient in MS Office (Word, Excel, Project, Access, PowerPoint, Outlook), Adobe, Visio, Lotus Notes, LDRPS, JIRA, Archer and Clarity.

Professional Experience

American Cancer SocietyMay 2015 – January 2017 Sr. Consultant, IT Compliance

Manages audit and security projects. Manage PCI audit (annual) to completion and revalidate compliance as required by Visa/MC and other financial

issuer standards. Manage SOC audits (annual) to completion and ensure requirements are continually met by personnel. Collaborate across business functions to define, develop, maintain, and implement processes and procedures to

ensure adherence to risk and compliance requirements.Carters, Inc.November 2014 – May 2015 (Contractor)Sr. Compliance Manager

Manages audit and security projects. Document and provide specific knowledge of compliance requirements during contract renewal negotiations. Coordinate work efforts from Executive level management to all other levels within the enterprise to stay in

compliance with applicable laws. Provides consulting services on all aspects of the organization's disaster recovery and resumption plans. Basic knowledge of SOX. Assisted in documentation gathering for audit. Manages remediation efforts as a result of audit findings. Manage PCI audits (annual) to completion and revalidate compliance as required by Visa/MC and other financial

issuer standards. Manage SOC audits (annual) to completion and ensure requirements are continually met by personnel Collaborate across business functions to define, develop, maintain, and implement processes and procedures to

ensure adherence to risk and compliance requirements. Document improvements to process and procedures and implement enhancements around security controls to

achieve risk mitigation efforts that exceed strict regulatory compliance standards. Creates Security Awareness courses.

Safe Systems, Inc.January 2014 – September 2014 (Contractor)Information Security Officer

Manages audit and security projects. Ensures compliance to FFIEC and OCC guidelines. Implemented Vendor Management Program to ensure compliance with FFIEC and OCC guidelines. Implemented a Risk Management process, including risk assessments and due diligence for third party providers. Manage and completed Vendor Management and Risk Management activities such as Contract reviews, Risk

Assessments, and ongoing monitoring of all third party service providers. Communicate pertinent risk and compliance requirements to internal and external personnel and users. Collaborate across business functions to define, develop, maintain, and implement processes and procedures to

ensure adherence to risk and compliance requirements. Updates and maintains Information Security Policies and Procedures and keeps documentation up to date. Updated Disaster Recovery and Business Continuity Plans.

Elavon, Inc.May 2013 – October 2013 (Contractor)Risk & Compliance Governance PM

Defining, developing, maintaining, and implementing risk and compliance requirements per corporate program and procedures.

Liaison between Acquisition/Project Team Experts regarding IT policies, Vendor Risk Management, Business Continuity, and general risk management activities that need to be integrated/executed.

Collaborate across business functions to define, develop, maintain, and implement processes and procedures to ensure adherence to risk and compliance requirements.

Produce metrics to monitor projects/initiatives performance against expectations. Produce requirements documentation and status reports. Execute assurance activities to ensure adherence. Communicate pertinent risk and compliance requirements to internal and external personnel and users.

Total Systems Services, Inc. May 2012 – May 2013 (Employee)Information Security & Compliance Project Analyst

Coordinates and manages internal and external audits. Coordination of requirements gathering, software testing, new feature requests, and problem resolution.

Basic knowledge of SOX. Assisted in documentation gathering for audit. Documentation and interpretation of regulatory policies related to software products and infrastructure platforms,

including suggestions for remediation efforts regarding security controls and recommendations for new features to insure future compliance with policies.

Manage PCI audits (annual) to completion and revalidate compliance as required by Visa/MC and other financial issuer standards.

Manage SOC audits (annual) to completion and ensure requirements are continually met by personnel. Document and provide specific knowledge of compliance requirements during contract renewal negotiations. Coordinate work efforts from Executive level management to all other levels within the enterprise to stay in

compliance with applicable laws. Communicate and coordinate the handling of all questions arising from regulatory concerns. Document improvements to process and procedures and implement enhancements around security controls to

achieve risk mitigation efforts that exceed strict regulatory compliance standards. Coordinate Business Continuity and Disaster Recovery Plan Testing exercises.

Total Systems Services, Inc. June 2008 – May 2012 (Employee)Compliance Specialist

Project Manager, Coordination and management of internal and external audits in an information technology company using agile and previously waterfall practices.

Coordination requirements gathering, software testing, new feature requests, and problem resolution.

Documentation and interpretation of regulatory policies related to software products and infrastructure platforms, including suggestions for remediation efforts regarding security controls and recommendations for new features to insure future compliance with policies.

Review logs related to events and access of systems and transactions history. Determine remediation requirements and document incident response plans.

Analyze data and determine any risk, abnormalities or unlawful intent (fraudulent activities are reported and escalated).

Completed FFIEC and GLBA Risk Assessments. Manage PCI audits (annual) to completion and revalidate compliance as required by Visa/MC and

other financial issuer standards. Manage SOC audits (annual) to completion and ensure requirements are continually met by

personnel. Document and provide specific knowledge of compliance requirements during contract renewal

negotiations. Coordinate work efforts from Executive level management to all other levels within the enterprise to

stay in compliance with applicable laws. Communicate and coordinate the handling of all questions arising from regulatory concerns. Document improvements to process and procedures and implement enhancements around security

controls to achieve risk mitigation efforts that exceed strict regulatory compliance standards. Respond to Subpoena requests as received by Law Enforcement Agencies. Coordinate Business Continuity and Disaster Recovery Plan Testing exercises.

May 2007-June 2008 (Employee)Associate Project Manager

Manage and implement SDLC projects within tight time lines and with limited resources without sacrificing functionality or quality.

Requirements gathering. Ability to lead projects and manage resources to meet tight timelines. Risk assessment of security enhancements. Manage daily activities of 15 team members, including developers, testers and business analysts. Produce & communicate project status with weekly & monthly project dashboards. Communicate

project status and results to all levels of management within the enterprise. Implemented multiple web redesign projects (e.g. Sears, Barclays) Host and participate in weekly internal and client project status meetings. Maintain activity reports

during each meeting for organizational updates by same day or the next morning. Insure that all team members are aware of their specific tasks, time lines, and the status of any

dependent tasks handled by other team members. Support and improve project management processes to improve results of ongoing and future

projects.

July 2005 - May 2007 Senior Administrative Assistant

Coordinate, prepare and timely disseminate company reports and slide presentations. Provide statistics and client updates on a weekly and monthly basis. Track and manage client, change and internal requests and ensure billing for all project

enhancements. Act as liaison and maintain open lines of communication among senior executives. Coordinate high-level internal as well as external conference calls. Administer and maintain executive calendar to ensure appointments don’t conflict. Coordinate travel arrangements. Maintain and provide improvements to departmental website.

Leduc, Phillips & Associates, LLC, Atlanta, GAOctober 2002 – September 2003 (Employee)Tax/General Administrator

Project Management and tracking of all tax returns and audits. Assemble tax returns and audit reports, invoicing and billing of clients. Ensure printers, copiers, computers are maintained and contact technicians/vendors when needed

and keep office supplied stocked and organized. Assist with training and direction of new receptionist and office manager. Answer multiple phone lines as needed to assist receptionist.

Stephens, Reidinger & Beller, LLP, Newport Beach, CAOctober 2000 – September 2002 (Employee)Administrative Assistant

Project Management and tracking of all tax returns and audits Assemble tax returns and audit reports. Responsible for Invoicing & Billing, Daily tasks included data input, Order office supplies, manage schedules, and coordinate

conference calls.