ליאור יפין

Results-driven professional with 7+ years of experience in ITGC, SOX (404), and cyber risk management across global and local organizations. Proven ability to design and implement compliance programs, strengthen IT governance, and align business operations with international standards (ISO 27001, NIST, GDPR, NIS-2). Known for bridging business, finance, and IT, driving process improvements, and enabling resilient growth in highly regulated tech environments.

Sr. ITGC Consultant at Deloitte Israel (2020-01 – Present)

• Led ITGC, SOX 404, and SOC 1/2 audits for local and global clients, ensuring compliance with international regulations and corporate governance.
• Delivered end-to-end audit projects including scoping, planning, execution, remediation guidance, and reporting to executive stakeholders.
• Conducted cyber compliance assessments (ISO 27001, NIST, GDPR, NIS-2), identifying risk gaps and providing actionable mitigation strategies.
• Partnered with IT, Finance, and Compliance teams to implement effective internal controls, improving resilience and reducing risk exposure.
• Impact: Reduced audit deficiencies by 25% year over year across multiple clients; improved control testing efficiency by 30% through automation initiatives.

Training & Development Manager at Ness (2015-01 – 2020-12)

• Designed and deployed company-wide training programs, including onboarding, leadership development, and technical skills enhancement.
• Managed curriculum design, resource allocation, and blended delivery (in person & digital), impacting 1,000+ employees annually.
• Partnered with department heads to align workforce development with organizational strategy and technological transformation.
• Impact: Reduced onboarding time by 40%, increased employee retention by 18% through continuous learning programs.

B.A. in Business Administration – Marketing & Information Systems Management – The College of Management Academic Studies (2006 – 2010)