Optimizing Compliance
side|Look Consulting - About My Journey to Excellence
I'm Gary Berrigan and sideLook Consulting emerged due to a reduction in force while I was still working with clients. I began with them and grew from there.
My career has allowed me to work in many industries. My career started with the FBI as an analyst and I have been a fraud investigator with KPMG, New York Life Insurance Co. and Interpublic Group of Companies. Since the passage of the Sarbanes Oxley Act, I have had the privilege to work with many companies, large and small, that have provided me with global travel and growth experiences.
Expert Strategies for Your Success
I have successfully led the design, development, and oversight of Internal Audit functions, Sarbanes-Oxley (SOX) compliance programs, and ISO compliance frameworks, delivering enhanced risk management and operational efficiency for multinational corporations and emerging businesses alike.
Through close collaboration with organizational leadership, control owners, and independent auditors, I am able to evaluate and enhance internal controls, optimized compliance strategies, and drive process improvements that strengthen governance and operational integrity.
Optimize Your Business Potential
At sideLook Consulting, I enhance SOX control processes by refining control selection and testing strategies, identifying redundancies, and eliminating extraneous controls to improve efficiency, cost and compliance effectiveness.
Recognizing the operational challenges that compliance requirements impose on teams, I take a strategic and empathetic approach to streamlining workloads, reducing administrative burdens, and ensuring timely project delivery.
I have collaborated with C-level executives, as well as reporting to the audit committee. I work in partnership with organizational leaders and external auditors in identifying and analyzing the proper internal controls, recommendations, and process improvements.
&
Seasoned Internal Audit and Compliance leader with over 25 years of cross-industry experience in audit, SOX, IT controls, and forensic investigations. Demonstrated success in building and leading audit programs, optimizing risk frameworks, and collaborating with Finance, Legal, HR, and IT to drive enterprise-wide governance and compliance. Proven ability to reduce risk, enhance efficiency, and strengthen internal controls across public, private, and global organizations
Education and Certifications
ISC2 Certified in Cyber Security
Rutgers University - BS, Accounting (January 1996)
FBI Academy, Quantico, VA - White Collar Crime and Anti-Money Laundering Training
• Global SOX Program Leadership • Risk & Controls Optimizations • IT General Controls (ITGC/ITAC) • ERM Implementation • ISO/SOC Audit Coordination • Cross-Functional Stakeholder Collaboration • Policy Development and Governance • Fraud Investigation • Project Management and M&A Integration • GRC & Audit Technology (Auditboard, Workiva)
My Approach
The Method to Excellence
Being pragmatic in the approach, issues are addressed towards conditions that exist now rather than fixed theories or rules.
Matters are managed realistically.
01
Assessment & Analysis
02
Optimize
03
Inquiry
04
Implement
The first goal is to assess whether the number of controls identified are within the expected range within each process with the goal of identifying redundant and extraneous controls.
Secondly, in collaboration with team members, to assess and reduce the number of controls, taking advantage of control automation where possible.
Determine with team members to ensure that the controls in place are inherent in their process.
Enhancing narratives and risk matrices, the result will be a faster, better aligned control framework that works naturally with day to day operations.
Services
Sarbanes Oxley
Develop internal controls for section 404 that fit your company and team size.
Optimize SOX control processes by improving the control selection and testing strategies, reassessing and improving the number of SOX controls and take advantage of control automation
Enterprise Risk Management
Along with management, there will be improved oversight, start being proactive rather than reactive and align risk appetite to business goals.
Business continuity management (BCM) is related to ERM.
Information Technology
Strengthening IT controls over User Access, Change Management, Operations and Program Development.
Reviewing Cybersecurity controls, application controls and IPE testing.
Pre-IPO
Readiness from being audited as a private company to a public company. The change is more dramatic than imagined.
Recent News
