Matt is a principal in Baker Tilly’s risk advisory practice. Matt joined Baker Tilly in 2020 and previously worked in an international firm’s risk assurance practice for 18 years. Matt leads our Cybersecurity Maturity Model Certification (CMMC) and Government Contractor IT Risk suite of services. He has led IT audits and cybersecurity assessments for large primes down to smaller 8A contractors. Matt’s expertise includes internal auditing, SOX compliance, information technology controls, business process controls, and ERP risk and controls. Examples of these engagements include CMMC Readiness assessments, 800-171 implementation projects, 800-53 based ATO readiness reviews, IT Risk assessments, Sarbanes-Oxley compliance, internal audit, pre- and post-implementation assessments, and privacy assessments for clients.
Matt is actively engaged in supporting government contractors, grant recipients, state and local governments and federal agencies navigate the CMMC requirements but has extensive experience supporting NIST 800-171 and 800-53 related assessments. Matt has also run fully co-sourced internal audit engagements for large clients (multi-billion dollars in revenues) in the government contracting industry.