Timothy Davis, MBA, CISA, CDPSE, CHQP, CCSFP

Timothy has over 20 years of experience in information security consulting and risk management. During this time, he has performed over 200 HITRUST and over 500 SOC reports and readiness reviews for companies in many industries including financial services, healthcare, telecommunications, data centers and SaaS providers. In addition to HITRUST and SOC engagements, he has conducted both assurance and consulting projects in coordination with compliance frameworks such as ISO 27001, NIST, HIPAA Sarbanes Oxley Act (SOX) and PCI.

Prior to a career in public accounting, he spent 10 years in industry as an information security consultant and project manager developing an in-depth knowledge of ITIL and SDLC best practices. He has performed, designed and managed vulnerability and penetration testing for clients in multiple industries and compliance environments. Since he has worked in both industry and public accounting, he brings a unique perspective on information security and is a frequent writer, speaker and trainer on the subject.