Skip to main content

Theresa Grafenstine

Chief Auditor, Technology & Data

Citi Bank

Terry Grafenstine has global audit responsibilities for infrastructure, cybersecurity, business continuity, operational resilience, crisis management, and technology platforms and applications.  Terry also serves as the Interim Chief Auditor with global audit responsibilities for end-to-end business services and Data. 

Before joining Citi, Terry was a Managing Director in Deloitte’s Risk and Financial Advisory practice where she provided strategic advisory services to Chief Audit Executives across all commercial industries and IT audit, risk, and governance advisory services to first line executives in the defense and national security space. Prior to joining Deloitte, Terry served for eight years as the appointed Inspector General of the U.S. House of Representatives, where she designed, managed, and delivered audit and investigative services, including the annual financial statement audit and a comprehensive cyber assurance program. 

Through her leadership roles as a member of the AICPA board of directors, a member of the IIA’s North American and Global boards of directors, and as ISACA’s Global Chair, Terry has helped to advance the information technology, governance, internal auditing, and accounting professions and speaks globally on cyber security, internal auditing, accounting, leadership, and risk. In 2021, Security magazine named Terry in their “Top 10 Security Professionals” list. In 2019, the Institute of Internal Auditors (IIA) recognized Terry as one of the “Top Ten Audit Thought Leaders of the Decade” and also inducted Terry into their Hall of Distinguished Audit Practitioners, the highest honor given by the IIA’s North American board for the accomplishments and contributions made by individuals to advance the internal audit profession. She has received numerous awards and accolades, including FedScoop’s “Golden Gov Federal Executive of the Year,” the Greater Washington DC Society of CPAs “Government CPA Leader of the Year”, the NY Metropolitan ISACA Chapter’s “Joseph J Wasserman Cyber and Governance Leader of the Year,” and ISACAs “Common Body of Knowledge” and “Best International Conference Speaker of the Year” awards.

Terry holds a bachelor’s degree in Accounting from Saint Joseph’s University and is a Certified Public Accountant (CPA), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified In Risk and Information Systems Control  (CRISC), and Certified in the Governance of Enterprise IT (CGEIT).