Bio
Timothy has over 20 years of experience in information security consulting and risk management. During this time, he has performed over 200 HITRUST and over 500 SOC reports and readiness reviews for companies in many industries including financial services, healthcare, telecommunications, data centers and SaaS providers. In addition to HITRUST and SOC engagements, he has conducted both assurance and consulting projects in coordination with compliance frameworks such as ISO 27001, NIST, HIPAA Sarbanes Oxley Act (SOX) and PCI.
Prior to a career in public accounting, he spent 10 years in industry as an information security consultant and project manager developing an in-depth knowledge of ITIL and SDLC best practices. He has performed, designed and managed vulnerability and penetration testing for clients in multiple industries and compliance environments. Since he has worked in both industry and public accounting, he brings a unique perspective on information security and is a frequent writer, speaker and trainer on the subject.
Timothy holds multiple qualifications, including Certified Information Systems Auditor (CISA), Certified Data Privacy Solutions Engineer (CDPSE), Certified Healthcare Quality Professional (CHQP), and Certified Cybersecurity Specialist for Financial Professionals (CCSFP). He received his M.B.A from Georgia State University.
Experience