David’s goal at Grant Thornton is to help their clients understand and manage risk. He’s a business risk services partner with more than 20 years of experience in public accounting and professional services. Prior to joining Grant Thornton, David led a North American practice focused on IT security policy and governance. David adds value for clients by evaluating risk and solutions through an IT lens as well as a business lens. David is a member of CPA Canada’s Audit and Assurance Technology Committee and was involved in the Toronto chapter of the Institute of Internal Auditor for many years, serving on the Executive Committee and Board of Governors, as well as chairing the Audit Committee and participating on the Governance Committee. Outside of work, David loves to expand my horizons through international travel. He also enjoys playing music, when he’s not cheering on his kids at their extra-curricular activities – dance, music, martial arts and rugby.
The realities of Cybersecurity risk, beyond the myths and misconceptions Our cybersecurity work with clients over the past few years has shown us that many still do not properly understand the threats their businesses face, or the real impact a cyber-attack would have. This presentation, based on findings from real breach investigations conducted over the past two years will provide practical insights into cybersecurity risk today, and the steps that many organizations are still not taking to protect themselves. Our plain language approach is resonating with business leaders who have been left behind by over technical presentations and are wondering where and how to start. The session will outline how to get started on the journey to improve your cybersecurity. Beyond the high-profile cases that have brought data security to the forefront, you will learn about the top cyber security risks facing Canadian businesses; steps you can take to prepare your people, protect your critical information and infrastructure, and improve your cyber security maturity, as well as common mistakes, and tips on how to make immediate changes that can significantly improve the security of your organization.