Gina Gondron is a Senior Manager in Frazier & Deeter’s Process, Risk and Governance (PRG) practice. Gina leads the delivery of IT audit and advisory services to clients across a variety of industries with emphasis in healthcare and technology. Gina is highly skilled at applying her deep knowledge of IT processes and controls in the context of addressing important financial, operational and compliance risks. She works closely with IT organizations of all sizes to meet internal and external audit requirements.
Gina’s specialties include performing IT general control testing, SOC examinations, and testing across a variety of compliance and control frameworks (HIPAA, HITRUST, ISO 27000, privacy, and security). She also has extensive experience performing pre-IPO internal control assessments, managing ongoing Sarbanes-Oxley compliance programs, internal audit outsourcing and co-sourcing, and contract assessment. Gina has deep familiarity across a broad range of common IT applications including Sage, MS Dynamics, Great Plains, NetSuite, Oracle, SAP, Lawson, Hyperion, and mainframe environments.
Gina brings over 10 years of experience, including the past 7 years with F&D where she has been instrumental in the growth of the PRG practice and developing our scalable Sarbanes-Oxley and IT audit methodologies to fit your needs. She began her career in Ernst & Young’s Business Risk Services practice, performing information technology control assessments for large public companies
IT Governance, Risk and Controls
SSAE 16/Service Organization Controls Reports (formerly SAS 70)
Industry and Association Speaking Engagements
Cybersecurity: Considerations for Internal Audit, ISACA Atlanta Geek Week, August 2016
Leveraging Comprehensive Assurance Reports, IIA Atlanta Conference, September 2016
Leveraging Comprehensive Assurance Reports, IIA Columbia Conference, September 2016