Skip Ribbon Commands
Skip to main content
The Institute of Internal Auditors North AmericaBreadcrumb SeparatorLearning and EventsBreadcrumb SeparatoreLearningBreadcrumb SeparatorMembers Webinar: Internal Audit’s Role in Privacy and Data Protection Compliance

Members Webinar: Internal Audit’s Role in Privacy and Data Protection Compliance

February 15, 2022
3:30‒4:30 p.m. ET

Presented and sponsored by:Crowe

Sponsored by:


NOTE: Your registration confirmation email will come from The IIA. All subsequent emails containing log-in access will come from the webinar presentation provider:
You may want to add this address to your system’s “safe” list. Otherwise, it may go to a spam folder. Three log-in/access emails are sent: 5 days prior, 1 day prior, and 2 hours prior to the start of the webinar. Thank you!

Register Now

How can internal audit play a larger role in privacy and data protection compliance related activities? In this webinar, you will receive insights into technology tools that could assist you in the assessment, consultation, and audit of privacy at your organization. A case study on how to scope and execute an example privacy audit will be discussed. You will also hear what internal audit leaders are saying and how it relates to your internal audit plan.

Learning Objectives

Attendees will be able to…

  • Communicate to internal audit leaders the results of a recent IIA survey related to privacy and data protection risk and what they mean for internal audit.
  • Understand the results and what they means for the profession and your internal audit group today.
  • Discuss key takeaways to help internal audit become better aligned with privacy experts within the organization.

Course Duration: 1 hour
CPEs Available: 1
Knowledge Level: Basic
Field of Study: Auditing
Prerequisites: None
Advance Preparation: None
Delivery Method: Group Internet Based


IIA Members: Complimentary
Nonmembers: $59


Adam PajakowskiAdam Pajakowski, CIA, CTPRP CFE, CIPM
Senior Manager, Risk Consulting Practice, Crowe LLP

Adam Pajakowski has 14+ years of experience with companies in the manufacturing, life science, healthcare, and construction industries, including projects in internal audit, Sarbanes-Oxley (SOX), enterprise risk management, compliance, and third-party vendor reviews. He focuses on services for pre-/post-IPO clients and leads projects around risk, governance, and compliance for these high-growth companies. He guides teams concentrated on projects such as SOX compliance, accounting advisory, system automation, and regulatory compliance. With his years of internal audit experience in organizations from Fortune 500 companies to top 3 academic health centers, Pajakowski has developed deep expertise in identifying risk and developing new audit programs for complex processes across numerous industries. As a leading member of Crowe’s Third Party Risk Management solution, he has deep experience in assessing risk in key third parties for organizations. His background is focused on contract compliance and risk assessments in this space, including third-party reviews around royalties, software licenses, supply chain, service level agreements, and contract reviews. As a member of the Privacy and Data Protection core team, Pajakowski is engaged in all aspects of Crowe’s data privacy solution. His experience in the area includes regulation-based audits, privacy audits, data transparency audits, and readiness and gap assessments. He also has built surveys for clients to utilize with their data users.

Amanda MarderosianAmanda Marderosian
Privacy, Data Protection, and Compliance Senior Consultant, Crowe LLP

Amanda Marderosian has more than three years of experience in data privacy and compliance services with companies in the life sciences, manufacturing and distribution, and high-tech industries. Within these industries, her work includes providing operational support for privacy programs, consulting on compliance-related matters, implementing privacy platforms, and assessing internal processes through gap or readiness assessments. Knowledgeable on the GDPR (General Data Protection Regulation), CCPA (California Consumer Privacy Act), and other newly passed regulations, Marderosian has performed data privacy gap assessments of client policies and procedures to assess the robustness of their internal privacy framework and compliance with applicable regulations. In doing so, she was able to identify high-risk areas in the client’s framework and proposed solutions to close existing gaps. Other privacy-related services include creating privacy questionnaires, interviewing business process owners, operationalizing consumer requests, and implementing privacy software. Marderosian’s background includes testing financial and operational controls for design and operating effectiveness of key controls and non-key controls, assisting with account reconciliations, updating walkthrough documentation, and reviewing risk matrices. She also has experience with clients who require compliance with both SOX and J-SOX. Throughout her time at Crowe, she has worked on different types of IT audits at a broad range of companies. Her expertise includes testing IT general controls (IT SOX testing) at small to mid-size companies and testing operating effectiveness of in-scope systems at large global entities.