user pic

Andrea Acciarri

Director at PwC - Enterprise Systems Solutions
New York, NY
I am a Director in New York Office of PwC - Enterprise Systems Risk and Controls practice.

PwC's Enterprise Systems Risk and Controls team is a national practice focused on helping our clients deal with the challenges and risks that they are facing with today's increasingly dynamic technology environment. We focus on the end to end interoperability of complex technologies, business processes and transformational projects that companies rely upon to run their business.

My experience includes several large-scale compliance and operational process improvement projects focused on: risk management, compliance, implementation of GRC (Governance, Risk and Compliance) solutions, and management of internal audit engagements.

I have been providing business process and information technology advisory and assurance services to my clients for 9 years. I have a significant experience in dealing with multinational clients with complex business processes, organizations and enterprise application solutions.

My specialties include:
• Optimization of controls, maximizing the implementation of automated controls, and creating efficiencies for Clients;
• Design of automated and manual controls in order to mitigate compliance requirements (including SOX and other US and European regulations);
• Design of Salesforce compliance solutions to manage IT and business risks;
• Salesforce pre and post-implementation reviews;
• Design of SAP GRC solutions (Access Control and Process Control) to identify and manage risks related to accesses to SAP systems, as well as to optimize the documentation and testing of automated controls;
• SAP pre and post-implementation reviews.

I am a Certified Information System Auditor (CISA) and Certified in Risk and Information System Controls (CRISC).

Areas of Expertise
Audit Compliance Enterprise Security GRC (Governance Risk and Compliance) Policy Management Enforcement Risk Assessment & Management SOX (Sarbanes-Oxley)
CISA CRISC ISO 27001 Lead Auditor (IRCA )