Brian Nichols

Brian Nichols

CISSP, CIPP/US

Principal

+1 (972) 748 0496

Leave a messagearrowCreated with Sketch.

Brian Nichols is a principal in Baker Tilly’s risk advisory practice. Brian has more than 10 years of experience in developing cybersecurity strategies and enhancing cybersecurity programs for clients across retail, consumer, airline, railroad, healthcare and financial services industries. He is a proven leader in helping clients align their cybersecurity programs to their business objectives and effectively manage their cybersecurity risk.

Brian leads teams in conducting cybersecurity capability assessments using various industry frameworks (e.g., NIST CSF, ISO 27001/2, CIS CSC, etc.). He has helped many organizations establish their cybersecurity program through developing strategies, policies and procedures, risk management methodologies, governance, controls libraries, and metrics and reporting.

  • Develops cybersecurity strategy and service catalogs aligned to business objectives and risk tolerance levels
  • Builds cybersecurity risk management programs to assess and respond to emerging cybersecurity threats
  • Assesses cybersecurity capabilities against industry frameworks and develops recommendations and roadmaps to enhance capabilities and manage risk
  • Enhanced data protection capabilities through risk-driven data classification and control requirements
  • Develops effective and implementable security policies and standards based on industry best practices
  • Performed incident response and remediation activities for a PCI data breach
  • Performed ISO 27001 ISMS readiness assessment for a global financial services client
  • Developed cybersecurity thought leadership for mobile device security and unified security control frameworks
  • Designed, implemented and operated a Data Loss Prevention (DLP) solution for a retail and pharmaceutical client
  • Assessed security awareness capabilities and developed recommendations for enhancements and computer-based trainings
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Privacy Professional/United States (CIPP/US)
  • Certified ISO Lead Implementer
  • AWS Cloud Practitioner

Location

Frisco, TX

Education

Bachelor’s in accounting and information systems
Master’s in accounting and information systems

Virginia Tech

Brian's latest insights