I am an internationally recognized thought leader, lecturer, commentator and blogger on business, cyber and privacy risk with more than 25 years’ experience in cyber, privacy, enterprise risk governance and compliance, audit, and consulting. I have had published thought leadership pieces and have been solicited for comment in various business and security journals including Forbes.com, Bloomberg, The Washington Examiner, Yahoo Finance, SC Magazine, Computer Weekly, CIO Magazine, The Huffington Post, Corporate Compliance Insights, Future of Outsourcing Magazine, Government Health IT, ISACA, Risk.net, and numerous other trade publications. I was the author for the chapter on “Third Party Risk Management” for the Risk.net book “Cyber Risk”, and have been a featured guest on numerous business and security podcasts, and I host the weekly LinkedIn thought leadership video series “TPRM Tidbits”.
CISA (Certified Information Systems Auditor), 2001
CRISC (Certified in Risk and Information Systems Control), 2011
CIPT (Certified Information Privacy Technologist), 2011
CTPRP (Certified Third-Party Risk Professional), 2015
CTPRA (Certified Third-Party Risk Assessor), 2020
· Information Systems Audit and Control Association (ISACA) – Member; 1996
o CISA (Certified Information Systems Auditor), 2001
o CRISC (Certified in Risk and Information Systems Control), 2011
· International Association of Privacy Professionals (IAPP) – Member; 2011
o CIPT (Certified Information Privacy Technologist), 2011
· The Shared Assessments Program – Member; 2011
o CTPRP (Certified Third-Party Risk Professional), 2015
o CTPRA (Certified Third-Party Risk Assessor), 2020
· Civil Air Patrol – US Air Force Auxiliary – Member; 2018
o 1LT; Finance Officer of Squadron 603 (Pittsburgh)
· InfraGard (Public/Private Partnership with the FBI) – Member; 2016
· Financial Services Sector Coordinating Council (FSSCC) – Member; 2015
· Forbes Technology Council – Member; 2020
· The Open Compliance and Ethics Group (OCEG) – Member; 2021