David is an experienced leader in the industry, having spent twelve years with PwC within their Cybersecurity Risk & Regulatory Advisory Practice in Atlanta, GA and previously in our own Tampa, FL. David is a Certified Information Systems Security Professional (CISSP) as well as a Certified Information Systems Auditor (CISA). As an Associate Practice Director, David both leads and oversees many of our 360CyberCompli managed compliance engagements. Over the past several years David’s focus has been on providing both advisory and attestation services specific to Governance Risk and Compliance (GRC), third party risk management, SOC 1/2 reporting, and cybersecurity risk and regulatory control assessments aligned to common control frameworks, such as ISO 27001/2, NIST 800-53 and NIST CSF.