Profiles search

Stephen Tam, CPA, CISA

Denver, CO, United States

Details

Education: BSAcc & MAcc

Accountancy

University of Denver - Daniels College of Business

2007 : 2011

Experience: 2022 : Present

Conga

Director of Information Security Compliance

2019 : 2021

Deloitte

Manager - Cyber Risk Services

2017 : 2019

PwC

Manager - Digital Risk Solutions

2014 : 2017

PwC

Senior Consultant - Enterprise System Solutions

2011 : 2014

PwC

Risk Assurance Associate

Company: Conga

Years of Experience: 16

Skills AACG, Application Security, Assurance, Budget Development, Budget Management, Business Intelligence (BI), Business Strategy, CISA, CPA, CSS, Customer Acquisition, Cyber, Cybersecurity, Enterprise Risk Management, External Audit, Financial Accounting, Financial Audits, Financial Reporting, General Ledger, HTML, Information Security, Information Security Management, Internal Audit, Internal Controls, IT Audit, IT Compliance, IT Controls, ITGC, IT Governance, IT Risk Management, IT Strategy, Oracle Advanced Controls, Oracle Applications, Oracle Cloud, Oracle E-Business Suite, Oracle ERP, Oracle Financials, Oracle GRC, Risk Management, Risk Management Consulting, Sarbanes-Oxley, SAS70, Security Management, SSAE 16, Staff Development, Staff Training, TCG, US GAAP

About Stephen is an information technology professional with a focus on cyber security and IT risk management. Stephen is currently the Director of Information Security Compliance at Conga. He is based in the Broomfield, Colorado office of Conga. Stephen focuses on identify and analyzing risks within an organization's IT infrastructure and processes, and developing solutions to mitigate those risks.

Prior to Conga, Stephen specialized in performing assessments of configurations and security within an organization’s IT infrastructure, which includes both on-premise and cloud-based models. Additionally, Stephen has significant experience with Oracle EBS security, Oracle Cloud Fusion ERP security, and the Oracle Risk Management Cloud (RMC) application suite, having implemented it at various organizations, including Fortune 100 companies. Prior to the focus on Oracle security and controls, Stephen performed SSAE16 and SOX 404 integrated audits, with a focus on IT General Controls and Business Process controls. His industry experience spans the energy, finance, healthcare, insurance, mining, retail, technology, and telecommunication industries.

Stephen is a licensed CPA in the state of Colorado and CISA certified.