Samuel Attuquayefio

Detail-oriented IT Audit and Risk professional with 8 years of experience in auditing information systems, cybersecurity, cloud infrastructure, and operational resilience within regulated environments. Highly proficient in evaluating complex IT processes, executing both automated and manual control testing, and creating data-driven solutions to enhance audit quality and efficiency. Demonstrated strength in building strong stakeholder relationships, championing innovation through automation and AI, and delivering insights that support strategic business objectives. Passionate about enabling business transformation through secure, compliant, and resilient technology practices. Detail-oriented Audit Manager with excellent risk management abilities. Skilled in reviewing financial statements to identify errors. An expert in GAAP and accounting best practices.

• Certified AWS Cloud Practitioner
• Certified Cloud Security Professional
• Certified ISO 27001 Implementer
• Certified Information System Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified Network Security Professional ( CNSP)

• Led a technology risk assessment for a multinational financial institution, identifying key security gaps and recommending strategic improvements that reduced risk exposure by 30%.
• Developed a control testing automation framework that reduced manual testing time by 40% and increased issue detection accuracy.
• Recognized for cross-functional leadership in delivering a major audit of cloud migration controls under tight deadlines
• Streamlined SOX compliance testing for a client, reducing audit timelines by 15% through improved audit methodologies and efficient team collaboration
• Championed a peer learning initiative that improved audit team knowledge sharing and accelerated onboarding by 50%
• Played a key role in enhancing the cybersecurity posture of a major client, helping them pass a critical ISO 27001 audit with no nonconformities
• Supported the execution of a large-scale IT audit project that met all timelines and client expectations, garnering praise from senior leadership for thoroughness and professionalism.
• Assisted in the discovery of a significant cybersecurity vulnerability in a client’s infrastructure, leading to swift corrective action and risk mitigation.
• Contributed to a team effort that successfully completed an audit engagement ahead of schedule, delivering high-quality results and enhancing client satisfaction.
• Designed and delivered IT risk training sessions for clients, improving awareness and implementation of best practices across organizations

• ISACA (Information Systems Audit and Control Association)
• (ISC)² – International Information Systems Security Certification Consortium

• Platforms: Windows, UNIX/Linux, Mainframe
• Tools: ACL, IDEA, Tableau, Power BI, Jira, ServiceNow
• Languages: Python (audit automation, data analysis), SQL
• Cloud: AWS, Azure, GCP (audit and governance)
• Frameworks: NIST, ISO, COBIT, ITIL

• Banking & Financial Services – Audited core banking systems, cloud risk management, and IT governance frameworks.
• Insurance – Evaluated IT risk controls, cybersecurity resilience, and regulatory compliance.
• Retail & Commercial – Conducted IT asset audits, business continuity assessments, and ERP system reviews.
• Public Sector – Assessed IT security strategies, risk frameworks, and digital transformation initiatives.
• Pension Schemes – Reviewed IT infrastructure and security controls to ensure data integrity and compliance.

• Strong communication and stakeholder management skills, with experience in delivering reports to senior executives.
• Empathetic team player who models Group values in daily interactions.
• Adept at mentoring junior team members and leading audit engagements.
• Committed to continuous learning and creating an inclusive, growth-oriented team culture.
• Passionate about digital risk, innovation, and driving strategic technology improvement