In the previous years of Mark's IT experience, he served many roles; to include; programming, system analysis, middle-management, executive leadership and IT consulting.  Since 2003, Mark has entered into the field of Audit & Compliance.

With this broad experience of IT, Mark has leveraged his technical skills into auditing Information Systems & Technology environments.  When Mark is asked why he entered this segment of IT; the answer is simply put ...

Mark is able to address the concerns of executive management; having served that role for over 10 years in his previous career.  He also has the practical course of discussion and solutions for line staff and techies; unmatched by typical auditors that lack the skills and experience running IT departments and working in an executive management role.  Mark has those credentials.  His clients see the results and realize that employing an experienced "IT guy" in coordination with internal and external auditors, creates a definite advantage.  Solutions are discovered.  Results are proven.  Success is real.

With Marks unique skill sets, he creates a documentation system that is easy to use and review during the audit.  He creates a "dashboard" technology using a simple and basic setup of multi-linked Excel spreadsheets.  One tool that provides a reusable, systematic approach and inexpensive product to track and document IT audits.  One entry point to all process areas, control objectives, control activities and documentation; including calculated percentages that represent completion statistics in all areas of the audit. 

This approach delivers management with a "quick look" at the progress of an annual audit & compliance project, at the same time providing links to all the detailed evidence of reports, documents, policies and procedures.

During 2004 to 2010, Mark has perform 14 internal audits in all types of businesses and industries.  Mark begins understanding the business plan and the business model.  He realizes that IT can only be aligned appropriately by following business objectives.  Then, Risk Assessments and Business Impact Analysis are performed.  Process Areas are created. Control Objectives and Control Activities are written.  Management and key IT staff are involved to ensure they agree with the audit approach.  Significant benefits are realized as IT staff and management realize the expectations and results gained from this design.  Further benefits are proven by working with internal and external auditors and hearing their comments on this unique proven approach.  They see it.  They get it!

Mark has performed SOX-404, SAS-70/SSAE 16, IT General and Application Control Audits these past 6 years.  References will provide confirmation of Mark's success.  Documentation booklets will reveal practical results.

   Call or email Mark ...

                  Discussion is free  -- results are real!