Ndeye Astou Ndao

Ndeye Astou Ndao, Eng. has a comprehensive work experience in the field of cyber and technology risk management. Their most recent position was as Vice President of Cyber and Technology Risks Management at the National Bank of Canada, a role they have held since February 2023. Prior to that, they served as Director of Cyber Enablement & Technology Risk at BDC from July 2020 to January 2023. In this role, they were responsible for developing and implementing cyber and technology risk strategies, as well as overseeing a team of experts.

Before joining BDC, Ndeye Astou Ndao worked at Desjardins as a Director of Cyber, Technology, and Fraud Risk from September 2019 to May 2020. Ndeye Astou also served as a Senior Manager of IT Risk Advisory at Deloitte from August 2005 to September 2019, where they gained extensive experience in IT risk management.

Earlier in their career, Ndeye Astou Ndao held various positions related to information system analysis and development at companies such as Saint-Gobain, Société Générale, Acxiom, and Pechiney Plastics Packaging. Ndeye Astou has a strong background in data management, system compliance, and customer relationship management.

Overall, Ndeye Astou Ndao has a proven track record in managing cyber and technology risks, developing strategies, and leading teams, making their a valuable asset in the field.

Ndeye Astou Ndao, Eng. holds several degrees and certifications in the field of engineering and IT. Ndeye Astou obtained an Engineer's degree in IT and Telecommunications from Télécom SudParis, where they studied from 2001 to 2003. Prior to that, they completed a Master Engineer degree in Engineering of industrial systems at Université d'Évry from 1999 to 2001. Ndeye Astou also holds a University degree in technology (DUT) in Mechanical engineering from Université de Reims Champagne-Ardenne, which they earned from 1997 to 1999. In addition to their educational background, Ndeye Astou Ndao has obtained certifications such as Participante certifiée du Défis 100 jours de L’Effet A, Certificate of Cloud Security Knowledge (CCSK), Certified ISO 27001 lead auditor and lead implementer, and Certified Information Systems Auditor (CISA).