David is an experienced technology risk and assurance professional with over 20 years of experience (former EY & KPMG) providing GRC, IT audit, and data protection services for organizations varying from Fortune 1000 companies to start-ups within technology, finance, healthcare, education, government, hospitality, construction, manufacturing and professional services industries.

David is a Certified Information Systems Auditor (CISA), a Certified Public Accountant (CPA), Certified Internal Auditor (CIA), and a former PCI QSA (Qualified Security Assessor), earning a BS degree in Accounting and an MBA concentrating on Information Systems.

He has performed engagements resulting in clients achieving PCI DSS, SOC II, HIPAA, HITRUST, Meaningful Use, FTC Red Flag, NACHA, EI3PA and SOX compliance under multiple frameworks, including COBIT, ISO, NIST, CIS, and ITIL.

Send this to a friend