As a software developer, security engineer, and security consultant/advisor, Rick uses his experience on both sides of the audit process to deliver the best experience possible to clients. Rick is a Certified Information Systems Auditor (CISA) and holds multiple certifications from CompTIA, including the Cybersecurity Analyst+ (CySA+).
Rick is heavily experienced is in SOC 2 and enjoys the ISO 27001 family of standards, as well as the NIST frameworks. His primary passion, regardless of the framework, is discovering how companies implement security, and leveraging companies’ existing operations to help fulfill the requirements of a given standard. Rick’s philosophy can be summed up as: “There is no one-size-fits-all or ‘best’ approach to security – it must be uniquely navigated and designed for each company.”