Theresa "Terry" Grafenstine

Theresa "Terry" Grafenstine
Global Chief Auditor, Technology & Data, Citibank
Terry Grafenstine serves as Citi’s Chief Auditor for Technology & Data and leads global team of 450 auditors who provide assurance for data, infrastructure, cybersecurity, business continuity, crisis management, and technology across all Citi platforms. She has over 25 years of experience in the internal auditing and information technology profession. 

Before joining Citi, Terry was a Managing Director in Deloitte’s Risk and Financial Advisory practice where she provided strategic advisory services to Chief Audit Executives across all commercial industries and IT audit, risk, and governance advisory services to first line executives in the defense and national security space. Prior to joining Deloitte, Terry served for eight years as the appointed Inspector General of the U.S. House of Representatives, where she designed, managed, and delivered audit and investigative services, including the annual financial statement audit and a comprehensive cyber assurance program.  

Through her leadership roles as ISACA’s Global Chair and as a member of the AICPA board of directors, Terry has helped to advance the information technology, governance, internal auditing, and accounting professions and speaks globally on cyber security, internal auditing, accounting, leadership, and risk. In 2021, Security magazine named Terry in their “Top 10 Security Professionals” list. In 2019, the Institute of Internal Auditors (IIA) recognized Terry as one of the “Top Ten Audit Thought Leaders of the Decade” and also inducted Terry into their Hall of Distinguished Audit Practitioners, the highest honor given by the IIA’s North American board for the accomplishments and contributions made by individuals to advance the internal audit profession. She has received numerous awards and accolades, including FedScoop’s “Golden Gov Federal Executive of the Year,” the Greater Washington DC Society of CPAs “Government CPA Leader of the Year”, the NY Metropolitan ISACA Chapter’s “Joseph J Wasserman Cyber and Governance Leader of the Year,” and ISACAs “Common Body of Knowledge” and “Best International Conference Speaker of the Year” awards. 

Terry holds a bachelor’s degree in Accounting from Saint Joseph’s University and is a Certified Public Accountant (CPA), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified In Risk and Information Systems Control  (CRISC), and Certified in the Governance of Enterprise IT (CGEIT).