Page 122 - IACET Application
P. 122
KELLIE HARDEE, CISA, CRISC
2908 Barwell Road
Raleigh, North Carolina 27610
+1 (850) 566-7414
hardeeka@gmail.com
SUMMARY
Dedicated risk professional with more than 5 years’ experience working and managing teams in the corporate
environment. Proficient in exercising expertise in risk, compliance, and information security management.
Continuous learner with a passion for innovation in information security risk. Resourceful in problem solving and
leading complex multi-projects and ensuring desirable outcomes.
EXPERIENCE
CISCO SYSTEMS, INC. Morrisville, NC
IT Risk Management Specialist December 2018 – present
• Supervising audit projects by assessing significant risks and controls to develop appropriate audit scope;
assigning, supervising, and reviewing audit activities to ensure quality, proper, and timely completion;
assessing quality of systems of internal controls; communicating and negotiating with all levels of
management audit findings for appropriate and timely development of action plans to address unmitigated
exposures; and preparing audit reports for management review.
I5O CONSULTING SERVICES Raleigh, NC
Risk Analyst / Accreditation Coordinator February 2018 – present
• Aid clients in risk management of corporate technology, infrastructure, standards, processes, and
strategic direction and use tools to help guide the client in accomplishing their business goals; performs
and documents periodic testing and evaluations to ensure the compliance of all categories of the IACET
accreditation requirements; communicating and negotiating with all levels of management audit
findings for appropriate and timely development of action plans to address unmitigated exposures; and
preparing risk management and process reengineering reports for management review.
FIRST CITIZENS BANK Raleigh, NC
Senior Integrated Auditor June 2017 – November 2018
• Supervising audit projects by assessing significant risks and controls to develop appropriate audit scope;
assigning, supervising, and reviewing audit activities to ensure quality, proper, and timely completion;
assessing quality of systems of internal controls; communicating and negotiating with all levels of
management audit findings for appropriate and timely development of action plans to address unmitigated
exposures; and preparing audit reports for management review.
• Conducting and leading audits reviewing IT infrastructure including, but not limited to, network
infrastructure, database infrastructure, change and configuration management, and cyber defense and
threat.
• Assisting penetration testers performing assessments to conduct offensive security practices to gather
deeper situational awareness, provide greater security insight of the environment, and assist Incident
Response team with training against advanced threats.
• Gathering relevant business, regulatory, process, and system information; validating/updating process
flows, risks, and controls; preparing accurate, complete, clear, and timely audit evidence that reflect an
ability to identify risks and independently assess design of internal controls.
