Steve is an experienced technology risk and assurance professional with more than 20 years of experience auditing organizations in multiple industries including technology, retail, government, defense contractors, manufacturing, healthcare, and financial services.
He has been involved in audits and implementations related to ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 17021, GDPR Data Protection, NIST 800.53, 800.171, CMMC, and Microsoft SSPA.
Steve holds the ISO 27001 Lead Auditor (CIS LA), ISO 27001 Lead Implementer, and Certified Data Protection Officer certifications.