Terry Kurzynski

CISSP, CISA, PCI QSA, ISO 27001 AUDITOR
Senior Partner
847.221.0212

With a background in cyber security, networking, application development, audit, project management, and consulting, Terry has a unique skill set in providing strategic advice to clients. Terry is a Board Member of The DoCRA Council and a contributing author of the CIS Risk Assessment Method (RAM). Terry is a CISSP, CISA, PCI QSA, and ISO 27001 Auditor with over 25 years of experience in IT and Security Consulting. He Graduated from the University of Wisconsin with a B.S. in Computer Science.

SPEAKING ENGAGEMENTS

(ISC)2 Silicon Valley: 5 Things You Can Do Now to Survive a Breach| March 12, 2024

Midwest Cyber Security Alliance (MCSA): Managing Cloud Security in a Complex Environment | February 20, 2024

ISSA Milwaukee: 5 Things You Can Do Now to Survive a Breach| February 13, 2024

ISACA North Texas: Things You Can Do Now To Survive A Breach.| December 15, 2023

ISACA Chicago Convergence 2023: Complying with the new SEC Cybersecurity Rule – Five Deliverables Every Cybersecurity Team Needs to Survive, Thrive.| Septmber 27-28, 2023

Midwest Cyber Security Alliance (MCSA): Cyber Insurance Readiness: Preparing For Your Next Renewal | June 14, 2022

ISSA – Milwaukee: Cyber Attacks, Data Breaches, Russia – Ukraine Conflict, Ransomware Prevention, Cyber Insurance Readiness, Updates on Privacy and Security Regulations, Proposed legislation (SEC proposed Rules for CyberSecurity Risk Management), Updates on Security Standards (PCI DSS v4, CIS RAM v2.1), Industry Trends (threats that have led to notifiable breaches) | May 10, 2022

Wisconsin Health Information Management Association (WHIMA): Take Cybercare:  Practicing Duty of Care to Protect Patient Data and Manage Risk | May 12, 2022

Midwest Cyber Security Alliance (MCSA): You’re Expected to Know and Disclose the Foreseeable Cybersecurity Threats that Face Your Organization and Reasonably Defend Against Them: How Do You Do This? | Nov 16, 2021

(ISC)² Silicon Valley Chapter: The 8 Questions a Judge Will Ask You After a Data Breach  | Nov 9, 2021

SecureWorld Remote Sessions  Data Privacy Hardship? Data Privacy Experts Field the Tough Questions

Midwest Cyber Security Alliance (MCSA) They Know You Can’t Get to 100% Compliance … and That’s Okay (HIPAA, CCPA/CPRA, GDPR, 23 NYCRR Part 500, CMMC, PCI, FISMA, FERPA)

BDO Alliance USA BRN “Managing Cyber Risk with the Remote Workforce”

Infragard SuperCon
Getting to Reasonable – What regulators and judges want to see from every organization

Infragard
Duty of Care Risk Analysis, defining “Reasonable Security”

(ISC)² Security Congress
The Questions a Judge Will Ask You After a Data Breach – What is Reasonable?

American Health Lawyers Association (AHLA)
Webinar: Duty of Care Risk Analysis (DoCRA) “Adopting Duty of Care Risk Analysis to Drive GRC”

CAMP IT Conference
Duty of Care Risk Analysis: “Getting consensus from legal, information security, and executive management.”

ISSA (Information Systems Security Association)
Duty of Care Risk Analysis: “Getting consensus from legal, information security, and executive management.”

The University of Wisconsin E-Business Consortium
Duty of Care Risk Analysis (DoCRA)

Health Management Academy
Risk Analysis 2.0, Health Care Data Security in the Age of Risk

Midwest Cyber Security Alliance (MCSA)
Duty of Care Risk Analysis: Leveraging the New Risk Assessment Method to Reduce Liability
The California Consumer Privacy Act (CCPA): Applicability, Requirements, and Practical Tips on Compliance