David Phillips brings more than 25 years of information technology experience and has advised U.S. military, Fortune 100 clients, and foreign governments on information security risk programs, IT network security architecture, and regulatory compliance.
Mr. Phillips developed a growing professional service business inside a multinational networking corporation focused on cybersecurity, protecting clients’ intellectual property and customer data, and securing networks to allow for resilient IT infrastructure in the face of cyber-attacks. His clients have included multibillion-dollar businesses in the retail, finance, manufacturing, oil and gas, and healthcare verticals. He has worked with global enterprises to measure and mature their security capabilities across people, process, and technology across levels from technology management to security awareness and security cultural transformation.
Mr. Phillips has extensive experience in IT governance, risk, and compliance (IT-GRC); IT security program development; IT security metrics; international standards such as ISO 27001, ISO 27005, and ISO 31000; and industry frameworks including HIPAA, PCI, NERC, and NIST guidelines.