Share with your friends

Max Graupner


KPMG in Bermuda

Max is a Manager in KPMG’s IT Advisory group with more than nine years of IT Risk Consulting experience focusing on Cyber Strategy and Governance. He started with the KPMG U.S. firm focusing on auditing security controls and helping client establish effective IT Risk Management processes and controls. Max joined the KPMG Bermuda firm in 2019.

Manager, IT Advisory

Max led numerous IT Risk Consulting projects, including Cyber Maturity Assessments (CMAs) and security controls validation, and has been helping clients assess their cyber security posture, especially in the financial services industry. He also has several years of experience working on Cyber/IT Risk Management projects, where he has helped clients with risk identification, mitigation, and risk reporting.

Cyber/IT Risk Consulting

  • Performed security assessments to identify clients’ current cyber security posture and provided recommendations to close gaps against a desired future state.
  •  Planned and oversaw security controls testing procedures to help clients address regulatory requirements, such as NYDFS, OCC, etc.
  • Designed and helped implement a control certification process for the IT organization (1st and 2nd Line of Defense) for clients in the banking and investment industries to standardize and remediate IT controls and processes.
  • Conducted gap analyses utilizing custom built Data & Analytic tools between existing control frameworks and leading frameworks such as COBIT5, NIST and ISO to assess, plan, and execute a large scale control remediation effort.
  • Reviewed IT policies, controls, and countermeasures and performed gap analyses between current state and management’s desired state to effectively manage the client’s controls and policy implementation process.

Developed cyber security reporting dashboards, including KRIs, KPIs and KGIs for clients’ management teams to increase efficiency and accuracy for Sr. Management reporting.

Max Graupner

Max Graupner

Education and qualifications

  • Bachelor of Accountancy

  • Master of Accountancy


  • Licensed CPA Minnesota

  • — Certified Information Security Manager (CISM)


  • English

  • German

Load more
Load more

Connect with me

  • Pembroke, BM