Dennis Grebe
Dennis Grebe has extensive experience in consulting and auditing in the financial services sector, gained from his work both at Big Four firms and mid-market audit firms. His primary focus is on IT audits and consulting projects for financial institutions, with an emphasis on the appropriate and effective implementation of regulatory and supervisory requirements in accordance with MaRisk, BAIT, and DORA. Additionally, Dennis assists finance companies in developing, implementing, and operating information security management systems in line with national and international standards.
Fields of expertise
- IT system and process audits under the current International Standard on Auditing [DE] 315 (revised 2019) at financial services institutions
- IT auditing and consulting on implementation of regulatory requirements
- Consulting on structure and operation of information risk and information security management under ISO/IEC 27001, BSI baseline protection, NIST CSF and NIST RMF
Memberships
- Member of the Information Systems Audit and Control Association (ISACA) and involved in the Cyber Security specialist group
- Member of the International Information System Security Certification Consortium (ISC²)
Qualifications
- Certified Information Systems Auditor (CISA)
- Certified Ethical Hacker (CEH)
- ISO/IEC 27001 Lead Auditor
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Cloud Security Professional (CCSP)
- Certified Penetration Testing Professional (CPENT)
- Certified in Risk and Information Systems Control (CRISC)
Meet our People