Information Assurance

Mark is a Principal in our firm’s Management and Information Technology Consulting Group and directs all aspects of all of our Information Assurance Service engagements. His experience includes leading HIPAA security assessments, completing security program reviews and security architecture assessments, completing information systems audits and operational reviews, assisting clients in addressing management and regulatory requirements, and assisting internal auditors to complete information system reviews for their organizations. Mark leads our technical security reviews for financial institutions, healthcare organizations, and public entities. He has also lead over 150 SAS 70 examination projects for state lotteries, service bureaus, and third party administrators, and has completed controls reviews, SOX 404 audits, and IT audits for clients in the public and private sector, including financial institutions.

• Bachelor of Science in Accounting and Finance from the University of Maine
• Certified Information Systems Auditor (CISA)
• Certified Information Security Manager (CISM)
• Active member of the Information Systems Audit and Control Association (ISACA)
• Board member of the American Red Cross – Portland, Maine chapter
• Mark has written numerous articles on information system control and information security standards, and speaks regularly to professional organizations on these important topics.