IT Audit & Cybersecurity

Panayiotis
Laskaridis

M.S.  ·  CISA

Lead Senior Technology Auditor at Comcast — helping organizations understand, manage, and reduce technology risk through rigorous audit, clear thinking, and a genuine commitment to security.

Get in touch View experience
Panayiotis Laskaridis

About me

The person behind the credentials

I'm an IT auditor who builds the tools I wish existed. After years of conducting technology audits across financial services and large-scale infrastructure at companies like Wells Fargo and Comcast, I got tired of watching skilled auditors lose hours to manual, repetitive work — so I started automating it.

Today I write the scripts, build the pipelines, and design the workflows that make my team faster and my findings sharper. I believe the best auditors don't just evaluate technology — they understand it deeply enough to improve it.

6+ yrs
Professional experience in IT audit & cybersecurity
CISA
Certified Information Systems Auditor · ISACA
Bilingual
English & Greek — written and spoken

Experience

Where I've done my best work

Nov 2021 – Present · 4 yrs 6 mos
Philadelphia, Pennsylvania
Lead Senior Technology Auditor
Apr 2025 – Present
Senior Technology Auditor
Apr 2023 – Apr 2025
Technology Auditor
Nov 2021 – Apr 2023
Conduct comprehensive technology audits across infrastructure, cybersecurity, and operational domains at one of America's largest media and technology companies. Lead end-to-end audit engagements — from scoping and planning through fieldwork and executive reporting — identifying areas for improvement and guiding the organization toward enhanced security and operational efficiency. Communicate complex technical findings to both technical and non-technical stakeholders at the executive level.
Jun 2020 – Nov 2021 · 1 yr 6 mos
Associate Technology Auditor
Wells Fargo · Philadelphia, Pennsylvania
Performed IT audit engagements within a large, highly regulated financial institution. Gained deep expertise in the compliance challenges and regulatory requirements of the financial sector, including risk management frameworks, IT general controls testing, and application controls reviews.
May 2019 – Nov 2019 · 7 mos
Information Technology Auditor
TD Bank · Mount Laurel, New Jersey · Internship
Supported IT audit activities at a major North American bank, gaining hands-on experience in audit methodology, controls testing, and financial services compliance within a fast-paced, regulated environment.
Jul 2018 – Oct 2018 · 4 mos
HR Data Specialist
Morgan, Lewis & Bockius LLP · Philadelphia, Pennsylvania · Internship
Supported HR data operations at a global Am Law 100 firm, developing foundational skills in data management, process documentation, and professional communication in a high-standards environment.

Expertise

What I bring to the table

Audit & Compliance
IT Audit SOX SOC 1/2 COBIT COSO Risk Management
Cybersecurity
NIST CSF IAM Vulnerability Mgmt Security Controls Threat Assessment
Financial Services
Banking Regulation IT General Controls Application Controls Regulatory Compliance
Leadership & Comms
Stakeholder Mgmt Executive Reporting Team Leadership Bilingual EN/GR

Education & Certifications

Academic & professional credentials

M.S. — IT Auditing & Cybersecurity
Temple University · Fox School of Business
B.B.A. — Management Information Systems
Temple University · Fox School of Business
CISA
Certified Information Systems Auditor · ISACA

Audit Scope

Domain Coverage

Data Management
  • Data Classification
  • Data Retention
  • Data Encryption
  • Data Loss Prevention
Cybersecurity Controls
  • Vulnerability Management
  • Security Incident Management
  • Baseline Hardening
  • Network Security
  • Antivirus & Malware Protection
Business Continuity
  • Technical Resiliency Analysis
  • Data Center Operations
Asset Management
  • Inventory Tracking
  • End of Life
Secure Development Lifecycle
  • API Management
  • Application Security
  • Change Management
SOC 2 Reviews
  • Third-party service organization control reviews
Cloud Environment Testing
AWS
  • S3 Buckets
  • RDS
  • Auto Scaling Groups
  • EC2
  • EKS
  • IAM
  • Security Groups
Azure
  • Blob Storage
  • Azure SQL Database
  • VM Scale Sets
  • Virtual Machines
  • AKS
  • Azure AD / Entra ID
  • Network Security Groups

Projects

What I've built

AI Audit Documentation Generator

Intelligent workflow tool for audit teams

Internal · Demo Available

A web application that guides auditors through a structured input flow, then uses AI to generate complete, publication-ready audit language in seconds. Built with JavaScript and Python, the logic is portable to any hosting model — making it easy to integrate into existing audit platforms. The application was adopted into a larger in-house auditor platform, where it continues to drive consistency and efficiency across the audit function.

Auditor Inputs
  • Scope area
  • Control
  • Asset type
  • Population / sample
  • Additional context
Generated Output
  • Inquiry procedures
  • Testing procedures
  • Process narrative
  • Sampling rationale
Build
Source GitHub
Language Python & JavaScript
Hosting AWS Lambda
Secrets AWS Secrets Manager (stored & rotated)
Logic Pre-coded · Custom logic loading supported
Platform OS Agnostic
JavaScript Python AI / LLM AWS Lambda AWS Secrets Manager Web Application
Slashes auditor preparation and review time by dozens of hours per engagement · Promotes output consistency across the team · Output can be used to further train and refine the underlying logic model

Automated Firewall Configuration & Policy Testing Tool

Drag-and-drop audit script for any firewall platform

Internal · Demo Available

A PowerShell and batch script that ingests a firewall configuration file via simple drag-and-drop and automatically tests 14 configuration attributes against NIST and CIS Benchmark standards. Compatible with any firewall make — including Palo Alto, Cisco, and Fortigate — and can be run across all firewalls on a network simultaneously. Output is delivered as both a text file and a structured Excel report with direct references to the exact lines in the configuration file.

Attributes Tested
  • Telnet settings
  • Admin interfaces
  • Admin session timeouts
  • ACLs
  • Central authentication
  • SNMP settings
  • NTP sync
  • Overly permissive firewall rules
  • IDS / IPS settings
  • Content filtering
  • IP & app block lists
  • Logging
  • Malware settings
Output
  • Pass / fail results per attribute
  • Text file summary
  • Excel report with config line references
  • Screenshots of exact findings in config
Frameworks
  • NIST CSF
  • CIS Benchmarks
PowerShell Batch Script Palo Alto Cisco Fortigate NIST CIS Benchmarks
Saves several hours per firewall configuration review · Fully automated across an entire network's firewall estate simultaneously · Eliminates manual config parsing and reduces human error

More projects coming soon.

Contact

Let's connect

Whether you want to discuss an opportunity, a collaboration, or just talk technology risk — I'd love to hear from you.

[email protected]
in
linkedin.com/in/panayiotislaskaridis
Download Resume