Brenda Piazza is a Director of IT Audit Services at CBIZ MHM, LLC. She has more than 20 years of Information Technology experience in diversified industries: biotech, banking, government, non-profit, real estate, manufacturing and healthcare fields.
For the past 10 years Brenda has been project managing SSAE 16 (SOC 1) Type I and Type II audits for third party service providers in various industries and is a lead provider of other SOC audits (SOC 2 and SOC 3). She has also been involved in Sarbanes-Oxley internal controls auditing for the past 10 years.
Brenda has also been involved in internal controls readiness projects and attestation clients for the past 15 years in the areas of IT General Controls, IT Application Controls and Business Processes. She has performed several ISO 27001/2 IT assessments and more than 200 IT Risk Assessments for various public and private companies. The IT Risk Management Assessments have included identifying risks as it relates to financial statements, controls to address those risks, and best practices.
Brenda's other areas of expertise include logical security, change management processes, fraud controls, software development life cycle (SDLC), data conversion and migration, and hardware/software needs assessment and implementation.