Overview
Dan has spent 20+ years helping CISOs and CROs of leading technology service providers meet their cyber risk and assurance reporting objectives. As the founding Partner and Leader of Aprio’s Information Assurance Services* group, Dan steers the firm’s cyber risk advisory functions, delivering cyber risk quantification using FAIR and other standards such as NIST 800-30 and ISO 27005 to enable and improve cyber risk management decision making processes.
Experience
Dan has over 25 years of experience in IT and operational and risk management functions in both private industry and leading CPA firms. His 12-year tenure with NCR Corporation included management roles in several operations and corporate positions, including supply chain performance evaluation and benchmarking and supply/demand alignment. For six years, Dan held leadership roles in a leading provider of mid-market ERP solutions, RF data collection applications, and EAI (i.e., intelligent middleware), where he assisted dozens of mid- and large-sized companies in their implementation of key enabling technologies.
Dan is a frequent speaker and author on IT risk management subjects including cybersecurity, audit and compliance reporting, privacy, and cloud computing.
Education & Affiliations
Dan received his MBA with honors from the University of Dayton and a BA in Accounting from Morehead State University. Dan is a member of the American Institute of Certified Public Accountants (AICPA) and previously served as Chair of the AICPA Information Management Technology Assurance Committee.
Dan is also a member of the Georgia Society of CPAs, the Information Systems Audit and Control Association (ISACA), the International Association of Privacy Professionals (IAPP), the FAIR Institute, and the Society of Information Risk Analysts (SIRA).
* Aprio assurance, attest, and audit services provided by Aprio, LLP.
Insights
