Mike is a Director in FGMK’s Advisory Services Practice, providing clients with information security and privacy, cybersecurity, internal control, and internal audit services. His expertise includes System and Organization Controls (“SOC”) Reporting: (SOC 1/2/3, SOC for Cyber security, SOC for Supply Chain), information security and cybersecurity process and controls consulting, IT risk assessments, Sarbanes-Oxley (SOX) readiness and internal audits, and PCI/HIPAA compliance.
Mike has more than 30 years of experience in auditing and IT consulting for public and private companies. His industry expertise includes healthcare, manufacturing and distribution, not-for-profit, real estate, state and federal government agencies, and technology.
Mike joined FGMK in 2013. His background includes 12 years at PwC, where he managed and delivered services that include IT audits for SOX compliance for over 35 publicly traded companies, SAS 70 (now called SOC 1®) reviews, IT and enterprise risk assessments, internal controls improvement, IT internal audit, and design and implementation of technology solutions to automate business processes.
Frequently Asked Questions about AICPA System and Organization Controls ("SOC") Reports