Jay A.

Scaramazzo
MBA/International Business
Certified Internal Auditor (CIA)
Certified Information System Auditor (CISA)
Work Locations: New York, Paris, and Miami
E-mail: js105836e@westpost.net

Experience: Highly Regulated Major International Wall Street Institution

Feb. 2008 - Present Sr. Internal Audit Technology Manager/IA Manager of Audit Ex
ecution/Computer-Assisted Audit Technique (CAATs) Specialist
* Implemented Internal Audit (IA) Area Information Management Strategy
* Implemented IA Stand-alone and GRC Technology solutions
* Established Audit Universe Planning templates
* Developed/Implemented CAATs Infrastructure for Continuous and Fraud Monitorin
g
* Developed internal control score card
* Established/Implemented Cost justification studies
* Defined/Implemented IA process improvement strategies
* Evaluated/Documented internal controls and their deficiencies
* Created IA-Paperless automated environment
* Evaluated/Established/Reported on key IA output requirements for metrics monit
oring and reporting
* Gathered/Led/Recommended Enterprise-Wide GRC (Governance, Risk, Compliance) Ac
ton Team for tool-set review,
vendor bidding/selection and implementation strategy procedures
* Developed/Documented/Implemented IIA Quality Assessment/Improvement Program
(QAIP) design and implementation processes in accordance with IIA Standards
* Maintained and Monitored continued education and certification requirements th
e IA Department
* Responsible for Issue/Incident management follow-up and resolution
* Developed IA Key Performance Indicators (KPI) for Audit Committee Reporting
* Performed CAATs for Pre-Implementation Audit Reviews
* Performed various Software Change Control Audits
* Developed and Implemented IA-Document Retention Policy Procedures and Schedule
s
* Established and Implemented IA-Regulatory Report Monitoring and Reporting
* Responsible for Audit Committee Meeting Materials and Presentations
* Responsible for the Oversight of Regulatory Acton Plan Monitoring and Follow-u
p
* Strong Interpersonal and diplomacy skills with the ability to interact at all
levels in the organization
* Strong project management of matrix-resource tracking abilities
* Trained Auditors, Users, External Audit and Regulatory Staff on automated IA T
ool-sets and area methodologies
* IA Expert Lead on Change Control Processes and Best Practices
* Trained Lead Auditors and Sr. IA Management on Corporate Level Change Control
processes and best practices
* Performed Vendor Evaluation, license negotiations/bidding and control follow-u
p
Mar. 1997 - Feb. 2008 Manager of Software Configuration/Release Management (SCM)
* Performed Asset Management and Monitoring
* Established Business contingency planning & monitoring procedures
* Committee Chairperson Lead for Multi-Enterprise change-control meetings and in
cident
management follow-up through incident closure
* Codified and implemented programming language Best-practices
* Maintained a comprehensive knowledge of Financial and Operational Areas
* Well versed in conflict resolution and negotiation skills
* Performed continuous Risk Analysis of current disaster recovery procedures
* Responsible for direct interface with External Auditors and various Federal an
d State Regulatory Bodies
* Performed Due Diligence and Risk Evaluation of Software and Operational
controls for newly acquired enterprises, including independently testing/vali
dating their procedures and controls in place
* Ensured compliance with best practice corporate governance and financial servi
ces regulations
* Performed flawless Enterprise-wide application implementation
* Established software processes and improvements towards CMM/CMMI Review and Ce
rtification
* Evaluated key output requirements for metrics monitoring and reporting
* Identified internal control deficiencies within Infrastructure Support Environ
ment
* Identified opportunities to improve and enhance business performance
* Integrated Distributive and Mainframe Quality Assurance and Testing Methodolog
ies
* Assisted in International workstation development design & implementation
* Management of Multi-Enterprise application and procedural code control for In/
Out/Co-sourcing efforts
* Management of Overseas Outsourced Application and Procedural Code Control
* Defined/Implemented Metrics and Work Unit definitions for key staff contributi
ons
* Maintained/Managed On-site/Off-site Multi-cultural team
* Responsible for Multi-Site Project Management
* Performed Periodic Systems and Security Audit of distributive and mainframe en
vironment infrastructure
* Performed Project planning, application build management and product-line rele
ase management
(Continued on page 2)
* Established re-usable object library controls
* Performed IT Compliance Pre-Audit reviews and Post-Audit findings review
* Established SCM review, strategy development and process implementation of new
ly acquired companies
* Performed/Documented/Reported on Software risk and asset management overview a
nd
controls implementation for Mergers and Acquisitions
* Established Standards and Procedures for industry wide best practice coding ru
les
* Managed Staff objective setting, coaching, review, training and re-skilling
* Strong ability to relate systems aspects to business controls
* Strong analytical, data-analysis, interviewing, negotiating, oral/written comm
unication and
relationship management skills.
Oct. 1988 - Mar. 1997 Manager of Mainframe Software Development and Quality Assu
rance
* Performed Alternate Data Center Site Testing
* Wrote applications to support Domestic and International business functions
* Performed Database Design and Normalization
* Developed Prototype for Corporate White Paper on internal infrastructure Clien
t/Server Evaluation
* Supervision of 10 programmers for systems implementation
Feb. 1987 - Oct. 1988 Dean Witter Reynolds
Sr. Programmer/Sr. Business Analyst
* Wrote and Supported Partial and Full DWR Lottery Recall Procedures
* Managed 6 Jr. Programmers.
Jan. 1986 - Feb. 1987 Morgan Stanley
Sr. International Business Analyst
* Supported Analysis and Programming to Real-Time London-New York-Tokyo Stock C
learance.
Feb. 1984 - Jan. 1986 Thomson McKinnon Securities
Business Analyst and Accounting Support
* Business Analyst/Applications Support Specialist
* Accounting and Month-end Reconciliation Support
* Compliance Support.
Education: MBA, Schiller International University, US/France (Nov. 2010)
Professional Certifications, New York University:
(1) "IT Auditing" (Dec. 2008)
(2) "Financial Accounting" (Jul. 2006)
(3) "Local Area Network Administration" (Jul. 1991)
(4) "Computer Programming" (Dec.1988)
B.A. French Education, Arizona State University, Tempe, AZ (Aug. 1992)
French Literature, L'Institut des Etudes Europeenes: Paris, France (Aug. 1986)
International Baccalaureate, West London College, London, England (Aug. 1985)
Certifications: Certified Internal Auditor/CIA, The Institute of Intern
al Auditors, (Nov. 2007)
Certified Information Systems Auditor (CISA) The Information Systems Audit and C
ontrol Association (Dec. 2007)
Certification in Control Self-Assessment, The Institute of Internal Auditors (I
n progress)
Certified Fraud Examiner, Association of Certified Fraud Examiners (In progress)

Professional
Organizations: The Institute of Internal Auditors (IIA)
Association of Certified Fraud Examiners (ACFE)
The Information Systems Audit and Control Association (ISACA)
IT Compliance Institute (ITCi)
Sarbanes-Oxley Compliance Professionals Association (SOXCPA)
Skills Section: Hardware: Intel PC Architecture, Oracle, UNIX, TCP/IP, IBM Main
frame Series, MS Windows NT. Software: Coding Standards Enforcement Tools: Abr
axas C/TEST, PARASOFT JTest and WebKing, Fortify CodeAssure, CAST 5; Resource St
andards Metrics. Distributed: XML, HTML, JAVA, Lotus Notes, Visual Basic, C, Vi
sual C++, IBM ClearCase/ClearQuest/BuildForge, SERENA PVCS Version Manager/Track
er/ Changeman-DS/ Mover, Microsoft Word, Excel, Access, Power Point, Project, &
SharePoint, SurveyMonkey INTERNET Technologies and Security, QAuditor, Galileo,
VISIO Flow-Charting, ActiveData Excel, ACL, Mercury ITG, SQL. Mainframe: DB2/SQL
, CICS, OS/MVS/ESA, Cobol/II, VSAM, ADABASE/Natural, TSO/ISPF, JCL & Utilities
Languages: English (fluent), French (fluent), Spanish (fluent), Italian
(working knowledge), Arabic (in-progress)
References: Available Upon Request