Ashish Bedi


KPMG in Luxembourg

Ashish joined KPMG Luxembourg's Information Risk Management practice in 2023. He provides IT regulatory advisory services to financial clients. With 15 years of experience in governance advisory and IT and security audits, he manages business and IT regulatory compliance, covering banking license applications, information security, and IT audits. He has gained extensive knowledge of IT and outsourcing requirements by EBA guidelines and CSSF circulars. By assisting institutions under CSSF inspection, he has developed a strong understanding of regulator expectations for IT governance, security, and outsourcing.

Areas of expertise

  • Information Technology Audit,
  • Digital Operational Resilience,
  • IT and Outsourcing Regulatory Compliance,
  • Governance and Risk Management,
  • Third Party Assurance
  • Bachelor's degree of engineering in electronics and telecommunication engineering

  • Certified Information Systems Auditor (CISA)

  • Certified in Risk and Information Systems Control (CRISC)

  • Certificate of Cloud Security Knowledge (CCSK)

  • ISO 27001Lead Auditor - Information Security Management System

  • ISO 23001 Lead Auditor/Lead Implementer - Business Continuity Management System