Senior Manager | Risk Advisory
20 Boulevard de Kockelscheuer
Thomas is a Senior Manager within the Risk Advisory (RA) department, focusing on Information & Technology Risk, and has 10 years of experience in IT audits (external statutory audit, internal audit and ISRS 4400/AUP), Third Party Assurance reports (ISAE 3402, ISAE 3000, SOC 1 /SSAE 18, SOC 2 & SOC 3), IT regulatory compliance assessments (in particular regarding outsourcing and cloud projects based on CSSF and EU regulations) and IT risk management (ISO 27001 ISMS, ISO 22301 BCMS, Identity & Access Management, etc.) serving a portfolio of small to large size companies, mainly from the financial sector (bank, FSP and management company).
Thomas is a Certified Information System Auditor (CISA), a Certified ISO/IEC 27001:2013 ISMS Lead Auditor, a Certified ISO 22301 BCMS Lead Auditor and Lead Implementer, holds a COBIT 5 Foundation certification, a HERMES Swiss Project Team Professional HSPTP certification (based on PRINCE2’s concepts) and an ITIL® version 3 Foundation certification.