Shane is a managing director with Baker Tilly’s risk advisory practice. He has more than 15 years of experience in serving healthcare and financial services clients, including insurance, banking and capital markets, asset management and investment advisors, specializing in information technology (IT) risk and cybersecurity. He has led a broad array of projects, including SOC 1 and 2 reporting, internal controls advisory, internal audit, cybersecurity and regulatory compliance consulting, information technology audit and risk assessment, vendor risk management and enterprise risk management (ERM).
- Leads SOC 1 and SOC 2 readiness and attestation engagements across various industries, including financial services
- Oversees planning, execution and client management for a wide variety of complex IT risk engagements, including public company audits
- Executes internal compliance and Sarbanes-Oxley (SOX) audit plans in a fully outsourced and co-sourced capacity for internal audit clients
- Leads enterprise risk management advisory engagements, reviewing, assessing and training on enterprise risk, risk assessment, risk treatment, as well as the integration of ERM to internal audit, compliance and strategic planning
- Collaborates with clients to prepare for IPO readiness, design and implement ERM programs, conduct SOX control gap assessments, and executes SOX programs
- Assists clients in mapping business processes to regulatory and industry guidance including Securities Exchange Commission (SEC), National Institute of Standards and Technology (NIST), Financial Industry Regulatory Authority (FINRA), Commodity Futures Trading Commission (CFTC), International Organization of Securities and Commission (IOSCO), New York State Development of Financial Services (NY DFS) Part 500, International Organization of Standardization (ISO)
- American Institute of Certified Public Accountants (AICPA)
- New Jersey Society of Certified Public Accountants (NJCPA)