Paolo Marquez, CISA

Business Advisory Services Director

Paolo understands that technology is an ever-shifting landscape, and stays current on the latest trends and risks, so you don’t have to. With his global experience in IT risk management, he empowers you to avoid cyber security pitfalls that impact financial, regulatory, and compliance risks.

Schedule A Consultation

I have worked in IT compliance since 2011, providing IT and federal attestation services. I deliver compliance reporting services for a wide variety of organizations by assessing the suitability of the design and operating effectiveness of controls to achieve defined standards. I possess a subject matter resource in various compliance frameworks such as SOX 404, SOC 1/2/3, FedRAMP, NIST, and CSA STAR to mention a few.

I also perform cybersecurity assessments for clients aiming to get certifications or simply to enhance their security posture. Additionally, I assess business process controls, application configurations, logical and access controls in a variety of environments to formulate recommendations that strengthen controls and improve efficiency.

San Francisco State University, B.S. Business Administration, Concentration on Accounting

Certified Information Systems Auditor®