IT Audit Analyst | Cybersecurity Risk | SOX & ITGC | AI Governance | CompTIA Security+ | CISA Candidate

Contact Me

trankenny007@gmail.com

About Me & Goals

When I first stepped into the world of technology, I was fascinated by how much trust organizations place in their systems and how much is at stake if those systems fail. That curiosity grew into a focused passion for IT audit, technology assurance, and cybersecurity.

I hold a B.S. in Computer Information Systems and Technology from The University of Texas at Dallas and am continuing my education with an M.S. in Information Technology and Management (expected May 2028). I currently hold CompTIA Security+ and Google Cybersecurity certifications, and I am pursuing the Internal Auditing Education Partnership (IAEP) program while preparing for the CISA exam.

I am currently an IT Audit Analyst at Fidelity Investments, where I lead planning, fieldwork, and reporting for SaaS management and oversight audits. Previously, I interned in Corporate IT Audit at Lennox International (S&P 500), where I tested SOX ITGCs and ITACs and researched AI governance frameworks. I also bring IT support experience from The Beck Group and client-facing technical support experience from Apple.

Whether it’s testing controls, assessing risk, or exploring the governance challenges of emerging technologies like AI, I’m committed to turning complex problems into actionable solutions.

Resume

Education

M.S., Information Technology and Management The University of Texas at Dallas (Expected May 2028)
B.S., Computer Information Systems and Technology The University of Texas at Dallas (December 2025)

Work Experience

IT Audit Analyst @ Fidelity Investments (January 2026 - Present)

Led planning, fieldwork, and reporting for the ThreatMetrix SaaS Management & Oversight Audit, evaluating governance, configuration management, and Attorney-Client Privileged (ACP) data controls
Assessed authentication and risk-scoring workflows across ThreatMetrix and ECAAP, Fidelity’s identity platform, evaluating access controls, data integrity, and regulatory compliance
Executed log analysis and evidence testing using Splunk and Snowflake SQL for ITGCs and application controls across cloud-based SaaS environments
Developed Python automation scripts to streamline evidence collection, policy checks, and control testing, reducing manual effort and improving audit consistency

Corporate Audit IT Intern @ Lennox International (June 2025 - August 2025)

Performed SOX ITGC and ITAC testing using AuditBoard, SAP, and Excel to assess compliance and document results at an S&P 500 company
Researched AI governance best practices (COBIT, NIST, ISO 42001), assessed AI use cases for risks including bias and transparency, and drafted an audit planning memo outlining scope and methodology
Partnered with external audit teams and cross-functional stakeholders to refine testing methodologies and strengthen IT control processes
Documented audit procedures and findings, identified control gaps, and delivered reports with actionable remediation recommendations

IT Help Desk Technician @ The Beck Group (June 2024 - August 2024)

Resolved hardware, software, and network issues while leading the replacement of 80+ computers and secure recycling of 200+ laptops
Streamlined onboarding for new hires by configuring laptops, provisioning application access, and guiding initial IT setup
Gained hands-on experience in IT operations, asset management, and problem-solving within a fast-paced enterprise environment

Apple Support College Advisor @ Apple (May 2023 - September 2023)

Provided remote support for iOS and macOS customers, achieving 100% satisfaction scores while troubleshooting technical issues
Strengthened communication and technical skills in a high-volume, customer-focused environment

Certifications

CompTIA Security+
Google Cybersecurity Certificate (September 2025)
Certified Information Systems Auditor (CISA) - Candidate
Internal Auditing Education Partnership (IAEP) Program - In Progress

Technical Skills

Audit & GRC: IT General Controls (ITGC), IT Application Controls (ITAC), SOX Compliance, COBIT, NIST, ISO 42001, AI Governance, Risk Assessment, Control Testing
Tools & Platforms: Splunk, Snowflake SQL, SAP ERP, SAP S/4HANA, AuditBoard, ThreatMetrix, ServiceNow, Active Directory, Microsoft 365
Programming & Data: Python, SQL, Excel (Advanced), Data Validation, Log Analysis, Automation Scripting
Technical Support: Hardware/Software Troubleshooting, Networking, Remote Desktop Protocol (RDP), macOS, iOS, Windows, Secure Data Destruction

Projects

Python Audit Automation Scripts (2026)

At Fidelity Investments, I developed Python automation scripts to streamline audit workflows for the ThreatMetrix SaaS oversight audit. These scripts automated evidence collection, policy validation, and control testing, reducing manual effort and improving team efficiency during fieldwork.

Tools Used:

Python - Scripted automation for evidence gathering and policy checks
Splunk - Queried and analyzed log data
Snowflake SQL - Performed data validation and evidence testing

SOX Compliance: IT Application Controls (ITACs) Testing (Summer 2025)

During my internship at Lennox International, I contributed to SOX compliance efforts by testing IT Application Controls (ITACs) across key systems. Using standardized audit workpapers, I:

Reviewed system configurations and control documentation
Performed walkthroughs with control owners to understand control logic
Validated control effectiveness through sample testing and screenshot evidence

Tools Used:

SAP - Accessed and reviewed relevant system data and configurations
Excel - Organized findings, tracked risks, and supported data analysis
AuditBoard - Drafted planning documentation and maintained audit records

AI Governance Assessment (Summer 2025)

At Lennox International, I helped lay the groundwork for an AI governance audit, focusing on risk identification, scope definition, and framework alignment.

Key Contributions:

Researched AI governance best practices from COBIT, NIST, and ISO 42001
Assessed internal AI use cases to surface compliance and risk concerns
Drafted a planning memo outlining the audit’s objectives, methodology, and scope
Identified key risks tied to AI adoption, including data bias, model transparency, and regulatory alignment

Laptop Replacement & Secure Recycling Project (Summer 2024)

During my internship with The Beck Group, I replaced over 80 outdated computers and managed the secure recycling of 200+ laptops, ensuring data security at each stage using Dell’s BIOS wipe feature, DBAN for older models, and physical drive destruction for legacy systems.

Tools Used:

Microsoft SharePoint - Tracked deployment progress and documentation
PDQ Deploy & PDQ Inventory - Automated software installations and device tracking
Active Directory - Managed user accounts and group memberships
DBAN - Wiped older hard drives securely

Imaging (Laptop imaging) DBAN (Darik's Boot and Nuke)

Broadcast Storm Troubleshooting (Summer 2024)

At The Beck Group, I helped diagnose and resolve a broadcast storm caused by a network-connected TV that disrupted internet connectivity across an AT&T job site. After systematically isolating each device on the network switch, we identified and removed the source, restoring connectivity immediately. I then researched preventative measures including VLANs, storm control, and network monitoring.

Broadcast Storm

Data Visualization Project (Spring 2024)

Created a high-low-close candlestick chart visualizing Apple Inc.’s stock data from Yahoo Finance using Excel, demonstrating data analysis and presentation skills.

Apple (High Low Close)

Business Communication Presentation (Spring 2025)

View PDF

Leadership & Community Involvement

UT Dallas IIA/ISACA/ACFE Student Chapter Dallas IIA - Member (August 2025 - Present)
Supported logistics for the Dallas IIA Super Conference (1,000+ professionals) and attended the 2026 UTD Fraud Summit (Fidelity-sponsored)
14th Annual 2025 Dallas IIA Super Conference Volunteer
Senior Capstone Marketing Team, White Rock Granola
Volunteer, Bonton Farms