Summary
Overview
Work history
Education
Skills
Certification
Reference
Timeline
Generic

MUYIDEEN LABAIKA

Bicester,UK

Summary

I am an experienced IT Audit professional with expertise in Technology Risk and Cyber GRC. I possess extensive knowledge in conducting IT audits and assessments to identify and manage cyber risks. My skills include evaluating IT general controls, implementing Cyber GRC strategies, and utilizing data analytics tools to enhance efficiency. Additionally, I have a strong understanding of international security standards like ISO 27001 and compliance regulations such as PCI DSS. With my technical expertise and knowledge, I provide valuable insights to help organizations minimize cyber risks and optimize their IT operations

Overview

9
9
years of professional experience
2035
2035
years of post-secondary education
1
1
Certification

Work history

Senior IT Auditor

Southern Internal Audit Partnership
Winchester, Hampshire
05.2025 - Current
  • Lead reviews of IT general controls (ITGCs), including logical access, change management, backup and recovery, and user account management across multiple public sector clients
  • Conduct assessments of cybersecurity frameworks, policies, and incident response processes aligned to international standards
  • Ensure IT operations across client environments comply with regulatory and control frameworks such as the Data Protection Act(DPA), GDPR, and local authority standards while aligning audit practices with the Global Internal Audit Standards (GIAS)
  • Plan and deliver risk-based audits by identifying emerging threats and aligning audit scopes with client-specific risk registers to assess the design and operating effectiveness of key IT controls.
  • Conduct reviews of critical business applications focusing on user access provisioning, administrative privileges, data input/output controls, and interface integrity.
  • Act as a key point of contact across multiple client sites, presenting audit findings and supporting clients in strengthening IT control environments.

Senior IT Auditor

Principality Building Society
11.2023 - 12.2024
  • Led end-to-end delivery of diverse, value-added, risk-based audits; from planning and fieldwork through to reporting and business action agreements, with a focus on technology assurance in IT, Security, Data, Operational Resilience, and Business Change
  • Tested IT General Controls (ITGCs) and documented audit work papers across Access, Change, and Operations management.
  • Developed and maintained strong stakeholder relationships: Cultivated and sustained robust working relationships with key audit stakeholders across the organization, enhancing collaboration and audit effectiveness.
  • Ensured compliance with SWIFT's Independent Assessment Framework (IAF): Conducted and facilitated standard assessment thereby improving the accuracy and reliability of SWIFT attestation submissions through independent verification.
  • Led initiatives to develop and implement data analytics within Internal Audit, driving greater assurance and operational efficiency.
  • Supported team members and Audit managers: Utilize extensive knowledge and experience to assist other Internal Audit team members in their audit deliveries and aided Audit Managers in discharging their responsibilities, ensuring high-quality outcomes and overall team success.

IT Auditor

Zahtech Limited
05.2022 - 10.2023
  • Performed risk assessments and gap analysis of the company's information security program against industry best practices, including SOX, ISO27001/ 27002, and others as required.
  • Drafted process narratives and produced documentation on the design, implementation, and operating effectiveness of IT general controls (ITGC).
  • Ensure effective IT security controls by collaborating with stakeholders such as IT Security, Audit, IT users, and HR for security-related control testing and remediation.
  • Implemented and managed information technology control design and compliance with authoritative sources like NIST, SOX, GRC, PCI, etc.
  • Supported the development and implementation of Business Impact Assessments (BIA) and Business Continuity Plans (BCP) by providing objective assurance to ensure the overall resilience of the organization's IT systems.

IT Auditor & Control Analyst

OOA Consulting
Lagos
01.2020 - 04.2022
  • Conducted comprehensive security posture assessments, identified emerging threats, and assessed organizational risks using NIST SP 800-53 and ISO 27001 frameworks.
  • Performed SOX walk-throughs and testing, adhering to the testing strategy and project timeline, to ensure compliance with regulatory requirements and manage risks.
  • Generated reports for clients and the internal audit team, summarizing the findings from IT audit testing and presenting solutions to address any issues identified, along with recommendations to improve controls and processes.
  • Developed and executed risk-based audits, evaluated processes and controls for scalability, effectiveness, and efficiency, and devised risk mitigation strategies.
  • Supported the implementation of IT internal audit programs for key clients by conducting interviews, assessing for current state, analyzing data, and documenting results in accordance with ISACA IT Audit framework and ISO 19011 Audit standard.
  • Documented procedures for reviewing IT General Controls (ITGCs), Entity Level Controls (ELCs), and IT Application Controls (ITACs).
  • Prepared audit programs, work papers detailing audit procedures, process diagrams, and ensure adequate audit evidence in accordance with departmental and professional standards.

Internal Auditor

Polaris Bank
Lagos
12.2017 - 12.2019
  • Supported SOX ITGC audits and adequately tested the design and operating effectiveness of key IT controls implemented to address risk, and contributed to data quality improvement on the GRC tool that supports Controls mapping, IT Audit documentation, and security compliance.
  • Tested IT Internal controls and IT Dependent management controls to ascertain design efficiency and operating effectiveness, and improved audit strategies, including the use of data analytics tools such as Alteryx for Journal Entry (JE) testing.
  • Executed IT Internal Audit engagements, as assigned, and supported external SOX audit and other relevant attestation programs. Also communicated audit findings and opportunities for improvement to control operators and senior management.
  • Reviewed the IT policies and procedures against the provision of COBIT 5 frameworks to ascertain governance and management of IT within the organization. Also benchmarked Information Security policies against ISO 27001 for adequacy.
  • Supported audit of internal IT controls reviews, and provided guidance to control owners on the objectives, and expectations for key controls along with vendor risk management and third-party risk management process through review of SOC 2 reports and related vendor controls.

Revenue Assurance & Data Reporting Analyst

Bureau of Statistics
Kwara
07.2016 - 12.2017
  • I was responsible for providing assurance over the credibility of some significant GLs in the financial statement using CAAT tools such as IDEA, Audit Command Language (ACL), and Alteryx.
  • Leveraged a range of tools and techniques to proficiently handle and manipulate large datasets, extracting valuable insights and providing data-driven inputs to support strategic decision-making.
  • Effectively communicated insights, findings, and recommendations to relevant stakeholders to promote transparency and accountability in the data management process.
  • Utilized monitoring tools to oversee the various data processes and collaborated with cross-functional project teams to ensure that data integrity was maintained throughout the project lifecycle.
  • Coordinated with Business Intelligence, Data Science, and Data Engineering teams to develop comprehensive end-to-end analytical solutions.
  • Compiled and presented monthly and quarterly performance reports to the management team, utilizing data visualization techniques to highlight key trends and patterns in social prescribing referrals and intervention activities.

Education

Master of Science - Big Data Analytics

Sheffield Hallam University
04.2001 - 01.2023

Bachelor of Science - Computer Science

Kwara State University

Skills

  • Proficiency in internal control frameworks
  • COBIT
  • ISO 27001
  • NIST Cybersecurity Framework
  • ITIL
  • Familiarity with Sarbanes-Oxley Act
  • Understanding of audit methodologies
  • Ability to create internal audit materials
  • Process flows
  • Work programs
  • Audit reports
  • Control summaries
  • Knowledge of Risk identification
  • Risk assessment
  • Risk management

Certification

  • CISA Certified
  • CRISC Certified
  • ISO27001 LA
  • Excel Analytics & Power BI
  • Big Data Analytics with Python
  • Advance Microsoft Excel
  • Agile Project Management
  • Microsoft Office 365

Reference

Available on request.

Timeline

Senior IT Auditor

Southern Internal Audit Partnership
05.2025 - Current

Senior IT Auditor

Principality Building Society
11.2023 - 12.2024

IT Auditor

Zahtech Limited
05.2022 - 10.2023

IT Auditor & Control Analyst

OOA Consulting
01.2020 - 04.2022

Internal Auditor

Polaris Bank
12.2017 - 12.2019

Revenue Assurance & Data Reporting Analyst

Bureau of Statistics
07.2016 - 12.2017

Master of Science - Big Data Analytics

Sheffield Hallam University
04.2001 - 01.2023

Bachelor of Science - Computer Science

Kwara State University
MUYIDEEN LABAIKA