Tom Gancarski specializes in performing SOC 2 examinations, cybersecurity controls engagements, penetration testing, and GDPR/state privacy engagements at his firm, Thomas J. Gancarski CPA PC. Prior roles include audit, regulatory compliance, and risk positions at Deutsche Bank, HSBC, BNY Mellon, and at a regional public accounting firm.
Tom has spoken at cybersecurity events and seminars for CPA and CISO audiences on multiple topics including cybersecurity, privacy, governance, and vendor risk management. He holds CPA licenses in Indiana and Alaska, and is licensed to practice law in Massachusetts. Tom is also a Certified Information Privacy Professional/ Europe (CIPP/E), and a Certified Information Systems Auditor (CISA).