Brett is a Manager in the Application Security Controls practice for KPMG LLP’s GRC service network. He has experience in SOX compliance, separation of duties, and Workday implementations. Prior to joining KPMG, Brett was an internal audit manager responsible for leading and performing all phases of financial and compliance audit projects (planning, fieldwork, reporting). His internal and external audit experience allows him to fully understanding audit requirements, incorporate leading practices, and help clients successfully go-live with Workday. He is passionate about people, internal controls, and Workday.
Engagement experience
- Managing a security review and designing IT General Controls for a large software company as they implement Workday Financials
- Brett was the Internal Audit functional lead responsible for the redesign, evaluation, and preparation of the risk control matrix (RCM), including security and IT General Controls used to comply with Workday functionalities
- Represented the Internal Audit team in large cross-functional projects and initiatives impacting various Workday modules, which included the implementation of and changes to systems, business strategies, cross-departmental initiatives, and other operational changes
- Led security assessments focused on separation of duties by maintaining a comprehensive ruleset and working with process / control owners to mitigate and remediate any conflicts within Workday