Karyn DiMassa



Karyn is a Director in the IT Risk & Cybersecurity Practice at Centri Business Consulting. She has more than 13 years of combined experience in internal IT audit and external audit support (IT controls), third-party assurance (SOC 1 and SOC 2 reporting), internal controls consulting, project management, IT risk and cybersecurity, and system implementation support. Karyn joined Centri in March 2023 and has provided risk advisory and project management services to various clients throughout several industries, including utilities, manufacturing, pharmaceuticals, life sciences, insurance, financial services, and healthcare.

Prior to her time with Centri, Karyn was a Senior Manager at Fidato Partners (now the Eliassen Group) within their Corporate Performance Management (CPM) group, where she assisted in designing and building a framework for two critical functions for the OneStream Implementation team. Karyn was responsible for building the Project Management Office (PMO) framework and the OneStream Controls and Compliance service offerings. Prior to joining the CPM team, Karyn spent 6 years on the Risk and Transformation team, providing internal control support, SOC 1 and SOC 2 readiness assessments, IT and cybersecurity risk assessments, HIPAA risk assessments, and Sarbanes-Oxley (SOX) 404 support).

Prior to joining Fidato Partners (now the Eliassen Group), Karyn spent a few years at PwC providing clients with third-party assurance (SOC 1 and SOC 2 reports), as well as financial statement audit support for the technology controls and key reports. Karyn started her career at TD Bank, NA, as an internal IT audit staff and Senior IT Auditor. Karyn performed various IT audits throughout the company, helped set up their initial SOX 404 testing database, and performed a pre-implementation audit for the Basel II reporting database.

Karyn received a B.S. in Accounting with a Minor in Management Information Systems (MIS) and a M.S. in Information Systems from Widener University. Karyn is a Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Project Management Professional (PMP), and a Certified Fraud Examiner (CFE). Karyn is a member of the American Institute of Certified Public Accounting (AICPA), Pennsylvania Institute of Certified Public Accounting, Project Management Institute (PMI), Association of Certified Fraud Examiners (ACFE), and the Information Systems Audit and Control Association (ISACA).