Michael Morris, Cisa
About Michael Morris, Cisa
Michael Morris, CISA, is the Director of Global Internal Audit & Assurance at Bristol-Myers Squibb, with over 15 years of experience in internal and IT audit services.
Current Role at Bristol-Myers Squibb
Michael Morris serves as the Director of Global Internal Audit & Assurance at Bristol-Myers Squibb. In this role, he leads the internal audit function, focusing on regulatory compliance, corporate governance, and risk management. His responsibilities include guiding audit teams and managing complex audit projects to ensure the effectiveness and efficiency of internal controls.
Previous Roles at Bristol-Myers Squibb
Michael Morris has held multiple positions at Bristol-Myers Squibb over the years. Before becoming Director, he worked as Associate Director, Global Internal Audit & Assurance from 2016 to 2019. Earlier, he served as Manager, IT Audit Services in 2014–2015 and Supervisor, IT Audit Services on two separate occasions, from 2010 to 2013 and for eight months in 2014. Through these roles, he contributed significantly to the development and enhancement of audit methodologies and frameworks.
Experience at Deloitte & Touche
Prior to his tenure at Bristol-Myers Squibb, Michael Morris worked as a Senior Consultant at Deloitte & Touche from 2006 to 2010. During his four years in this role, he gained significant experience in IT audit services and public accounting. This role laid the foundation for his comprehensive understanding of audit processes and risk management strategies.
Educational Background
Michael Morris obtained a Bachelor of Science in Information Sciences and Technology from Penn State University, where he studied from 2000 to 2004. His academic background provided strong foundational knowledge in information technology, which has been essential for his career in audit and risk management.
Professional Certifications
Michael Morris holds the Certified Information Systems Auditor (CISA) certification. This credential underscores his expertise and commitment to upholding high standards in information systems auditing and control.