David is a Director in the Firm’s Risk Advisory Services Practice. He has a broad background, specializing in both financial and technical assessments, compliance and risk engagements, and other audit and consulting projects. His primary focus includes third-party risk advisory and assurance, compliance with laws and regulations regarding internal controls over financial reporting and compliance requirements, and cybersecurity. He has been with the Firm since 2007, helping to grow our risk and compliance consulting services.
David is currently responsible for planning, executing and completing various IT and financial engagements for clients operating in a variety of industries, including government, manufacturing, healthcare and financial services. He is responsible for leading our Firm’s System and Organization Control Reporting Practice, which includes having oversight for quality assurance in accordance with AICPA and Firm quality standards, and issuance of all reports. David also leads Freed Maxick’s Payment Card Industry (PCI) Practice, directing all RAS practice resources to execute reports on compliance and other assessments in accordance with the Data Security Standards. He has led more than one hundred SOC engagements, Sarbanes-Oxley consulting projects, PCI compliance assessments and other internal control audits and risk advisory projects for these clients.
Education
Professional Affiliations
- American Institute of Certified Public Accountants
- Certified Information Systems Auditor
- Qualified Security Assessor
- Board of Governors, Rochester Chapter of the Institute of Internal Auditors