|
Fri t,.0 17, 'v 0�. (h.u��g,�a, i�. �2,i�lrti �..�
<br />CLA (t illunl,drSoiiAllrrn I I.I')
<br />Principal, Business Risk and IT Services Phone 717-558-0860
<br />Harrisburg, Pennsylvania james.kreiser@CLAconnect.com
<br />-Dr -ofIIe
<br />Jim is a principal in the Clifton LarsonAllen LLP (CLA) specialized advisory services
<br />group. He has 22 years of professional services experience in providing consulting
<br />and advisory services. Jim spent 10 years of his experience working at a Big 4 firm in
<br />their business risk and technical risk services groups. His experience also includes
<br />internal audit roles at CitiBank, AMP, and Capital BlueCross. Jim has held roles of chief risk officer, general
<br />auditor, and others. His focus has primarily been in the governmental sector, health care, and financial
<br />institutions. At CLA, Jim has focused on clients particularly on consulting, IT, internal audit, and third -party
<br />reporting services.
<br />Some of the key clients Jim has focused on include the Pennsylvania State System of Higher Education,
<br />Commonwealth of Pennsylvania, State of Rhode Island, Maryland Department of Budget and Management,
<br />West Virginia Higher Education Policy Commission, State of Delaware, 1-Iaverford College, California Housing
<br />Finance Agency, Washington State Department of Transportation, Maryland Transportation Authority, and many
<br />others.
<br />rel hni(,al rt�XBtit�tit�faG:P
<br />Jim's experience includes managing and leading projects, which include engagements related to outsourced and
<br />co -sourced internal auditing, IT audit, third -party reviews and performance audits, enterprise risk management
<br />processes, IT security and auditing services, SSAE 16 reporting (SOC 1 and SOC2), operational improvements,
<br />process solutions and implementation for those solutions across the organization.
<br />His primary focus for the firm is in the Public Sector Group (State and Local Government, Higher Education, and
<br />Non -Profit organizations).
<br />His service experience is business risk, IT, and internal audit services. Specific experience includes, but is not
<br />limited to, the following:
<br />• Internal audit outsourcing and co -sourcing, including, information technology, financial, performance
<br />audits, and operational audits.
<br />• IT security and risk consulting
<br />• Enterprise -wide risk assessments.
<br />• IIA Quality Assurance Reviews (OAR)
<br />• Vendor management and Implementation Assessment
<br />• Compliance related activities and benchmarking
<br />• Presentations and Training; including speaking at various conferences/professional organizations on 11'
<br />controls, Security, ERM, and third -party reporting, and risk management.
<br />
|