We are in need of next generation governance. The demands on business to move faster is challenging the "traditional" audit methodologies. How can auditors ever be able to verify the compliance of a complex, dynamic enterprise deployment, if that deployment is subject to change at any time — unless they are able to automate the audit process itself?
Pamela Nigro, MBA, CRMA, CISA, CGEIT, CRISCSenior Director of Information Security
Heath Care Service Corporation (HCSC)
Ms. Nigro is a subject matter expert in IT Controls, and is the Senior Director of Information Security focusing on the GRC practice at Heath Care Service Corporation (HCSC). She is responsible for IT risk and compliance testing for the five Blue Cross Blue Shield Plans comprising HCSC.
Prior to HCSC, her experience in the Systems and Process Assurance practice at PwC focused on services related to controls around IT management. She served both audit and non-audit clients. As a consultant, she helped HCSC develop its control framework using ITIL and COBIT. Effective communicator who serves as a clear bridge between executive leadership, non-technical stakeholders, and "in-the-trenches" technical teams. Recognized subject matter expert in SOx, SOC 1, SOC 2, and IT Risk Assessments.
Pam is an Adjunct Professor at Lewis University in Romeoville, IL where she teaches courses on Ethics, Risk, IT Governance and Compliance, and Information Security, in the MSIS and MBA programs. She received her MBA from Stuart School of Business at Illinois Institute of Technology, in Chicago, Illinois.