Jan Matto Partner
Personal quote / vision
Digitalization is everywhere and a vital part of our society and economy. For organizations, digitization is not just a tool, but is part of strategy, processes, products and services. It forms the connection with the market and other stakeholders and is partly determining the job satisfaction of employees. This makes IT audit and consulting multifaceted where multiple viewpoints and disciplines always play a role.
Specialist experience
- IT auditor (RE) and Registered Informatician (RI)
- Consulting on IT issues
- IT Governance and risk management
- Third Party Assurance reports including ISAE 3402, ISAE 3000, SOC 2, DigiD assessments and ENSIA audits
- Information security, cybersecurity assessments, penetration testing
Specific customer experience
- IT sector (Technology, Media, Telecom), including: cloud service providers, indentity and authentication services
- Financial sector: fintech companies, pension funds, payment providers, banks
- Diversity of enterprises including, port companies, (online) retail, transportation and logistics
- Government agencies and various not-for-profit organizations
- International experiences.
Education and work experience
- 1990 - 1992 | Erasmus University Rotterdam | IT auditing
- 1993 - 2001 | Erasmus University Rotterdam | Lecturer
- 1998 - present | Mazars | Partner IT Audit & Advisory | Global Leader Cyber Security & Data Protection
- 2021 - present | Vrije University | Lecturer Enterprise Security IT Architecture
Additional positions
- NOREA Commission of Admission and Accreditation IT Audit courses Universities
- NOREA Committee on professional regulations
- Lecturer in IT auditing and computerization at VU University Amsterdam
- Sounding board group Online Trust Coalition, Ministry of Economic Affairs and Climate
Want to know more?
Pages associated to Jan Matto
Your business
Services
- IT Audit & Assurance
- Digital trust & digital assurance
- Cybersecurity services
- System Audit
- Compliance based on digital laws and regulations
- Digital compliance
- Data Protection Impact Assessment
- Privacy Compliance
- Identifying and solving of digital issues
- Mazars Certification Hub
- Cybersecurity health check
- De NIS2-richtlijn: hoe bereidt u zich voor?
Industries
Insights
About us
- Whitepaper: De AVG en de gevolgen voor organisaties
- ESET en Mazars introduceren GDPR Compliance Checker
- Debatteer mee en krijg inzicht in uw cyberrisico’s
- Mazars University
- GDPR is nabij - Is de ICT-dienstverlener klaar? Nee!
- ‘Onbekende digitale zichtbaarheid’ op het internet vaak beginpunt voor hackers
- Kennissessie: Cybersecurity en compliancy
- Kennissessie Malware onder controle: preventie, detectie herstel en audit
- Staying connected despite the corona crisis: IT is the vital link
- Terugkijken webinars 'Dreigingsbeeld digitale footprint'
- OSINT benchmark: be aware of your digital footprint
- Terugkijken: webinar 'Dreigingsbeeld digitale footprint: een onderbelicht terrein'
- Terugkijken: webinar 'Digitale footprint'
- Terugkijken: webinar | Privacy voor onderwijsinstellingen
- Privacy benchmark for educational institutions: aware of your privacy risks
- The risks of data breaches at educational institutions: what measures should they take?
- Terugkijken: webinar ‘Bewust van uw privacyrisico’s’
- New mandatory model contract for transfer of personal data to countries outside the European Economic Area (EEA)
- Privacy benchmark for organizations: aware of the dangers and measures against privacy risks
- European Commission adopts adequacy decisions for personal data transfers to the United Kingdom
- Voorlichtingsmiddag | Cybersecurity & data protection
- DNB Good Practice Information Security: in control in four steps
- Is uw goededoelenorganisatie weerbaar genoeg?
- Voorlichtingssessie | Invoering Digital Operational Resilience Act (DORA)
- Introduction of the Digital Operational Resilience Act (DORA)
- De Nederlandse Cybersecuritystrategie 2022-2028
- Rondetafel | Artificial Intelligence (AI)
- Voorlichtingsmiddag | Intern rapporteren over de beheersing van digitale risico’s