Siv Irene Aasen

Siv Irene Aasen works at BDO Consulting and leads the IT risk services at BDO. She has been working with IT risk for the past 25 years and is passionate about creating robust and resilient businesses.

Siv's core competencies include IT governance and control, information security/cybersecurity, IT risk assessments, third-party attestations (ISAE 3402/SOC2), outsourcing and vendor management, and business continuity and recovery. Siv has extensive experience in security audits and risk assessments against recognized frameworks such as ISO/IEC 27001, NSM's basic principles for ICT security, and CIS Controls. She also has broad expertise in new regulatory requirements within digital security, such as DORA, NIS2, and the Digital Security Act.

Siv has experience with a wide range of IT environments and systems; on-premise, hybrid, and cloud, as well as custom-developed, ERP, and specialized industry systems across various sectors in both the public and private sectors. In recent years, she has primarily worked with companies in technology, banking & finance, energy, retail, and process industries.