Strong IT Controls: Your IT Risk Program's Strategic Advantage

Steve Schlegel
Steve Schlegel Deloitte
Greg Keches
Greg Keches Boston Consulting Group
Greg Boehmer
Greg Boehmer Deloitte
Melissa Pici
Melissa Pici Syniverse

On-Demand Webinars

Webinar Speakers

Steve Schlegel specializes in performing business process and information systems technology reviews, risk and controls assessment, and business process improvement for a variety of clients with diverse architectures. In his 20+ years of experience he has assisted clients in enhancing their business operations by enabling them to better manage risks with efficient and effective business processes, controls and sophisticated technology solutions.

Greg Keches has spent his career trying to articulate how information security risks can be mitigated effectively. Over the course of 12 years of consulting for EY, Greg served a broad range of industries from large cruise lines to Fortune 100 Data Storage companies. Greg joined Boston Consulting Group in 2023 to investigate Cyber Risk Quantification and to grow resilience and trust for the company and its clients. Greg graduated from Boston College’s Carroll School of Management with a concentration in Information Systems. Greg subsequently received his Executive Master’s in Cybersecurity from Brown University.

Greg Boehmer is a Managing Director within Deloitte’s Risk and Financial Advisory services practice. He has more than 19 years of auditing (internal and external), cybersecurity, risk management, and consulting experience with Deloitte. He specializes in controls (IT, business process, and cyber) and supervising cybersecurity maturity assessments. He has delivered approximately 15 cybersecurity maturity assessments to help advise clients on elevating their cyber awareness, strategy, defense, and response in the face of ever-growing cyber threats leveraging the NIST CSF and ISO 27001 frameworks. Greg has served as the internal audit lead for more than 10 clients and delivered over 100 audits covering various IT, cyber, and business process areas. His career spans multiple industries, but has primarily been focused within the consumer, energy, and financial services sectors.

Melissa Pici serves as the Sr. IT Audit Manager at Syniverse and has been with the organization for the past 18 years. In her role with the multinational organization, she works with cross-functional teams including Finance, IT, GRC, and Operations aiding them in understanding the criticality of a risk and controls-based foundation and the interconnectedness in everyday operations. Melissa manages and drives the annual SOC/SOX audits and designs and executes risk-based operational audits providing further insight to executive management to use in making more informed decisions for the business. Melissa holds Bachelor’s and Master’s degrees in Information Security and Assurance with a focus on Project Management. She is currently working towards a Bachelor’s in Data Science and holds CISA and CDSP certifications as well.


The average cost of a data breach in the U.S. was over $9 million last year, according to IBM, and it’s only predicted to rise, making IT risk management an urgent issue for audit, risk, and compliance teams. The key to success in an effective IT risk management program is a strong IT control environment. This session will make setting up IT controls less daunting by exploring actionable best practices for conducting an IT risk assessment, including tactics to assess the right areas with greater precision. The expert speakers will also share proven ways to ensure control responsibilities are being performed appropriately to mitigate this critical risk area.

View Webinar Now