Jennifer A. Johnson, CISA

View this page in: Français


Internal controls


Risk management
Third party assurance
IT controls
IT risk management
Data governance
Project management


Central Connecticut State University

Jennifer Johnson is a partner with the Risk Assurance Services practice of PwC, working in the Toronto office. She has more than 16 years of experience leading business process and information technology internal controls reviews in the US and Canada.

Jennifer has worked extensively with clients to help them address business process and information technology risk management matters, as well as compliance and regulatory issues. She has significant experience managing CICA CSAE 3416, AICPA SSAE 16, Trust Services reviews, and Agreed-Upon Procedures within several industries and across multiple global client environments. Jennifer has also worked extensively with clients on business process controls redesign initiatives, NI52-109/Sarbanes-Oxley readiness and attestations, internal audit co-sourcing engagements, and IT governance reviews.

Jennifer specializes in providing risk management and internal controls assurance and advisory services to the insurance industry, particularly around Sarbanes-Oxley and NI 52-109 readiness and optimization. She also has extensive experience as an auditor evaluating internal controls of insurance companies in Canada and the US. Other services Jennifer has provided to insurance companies include project management, IT risk reviews, data governance, and business process improvement reviews.

Jennifer helps lead the Performance Assurance team within PwC’s Risk Assurance Services practice for the Greater Toronto Area and is a Canadian representative for PwC's global third-party controls reporting network. She has also led the coordination and delivery of multiple team volunteering events within PwC and is actively involved in the firm’s diversity and inclusion initiatives.

Jennifer earned a Bachelor of Science in Finance (Magna Cum Laude) from Central Connecticut State University in 1998. She is also a Certified Information Systems Auditor and Certified in Risk and Information Systems Control. Jennifer was an active board member at a non-profit organization focused on supporting youth in Boston, MA and surrounding areas.

View Jennifer Johnson's profile on LinkedIn