Leaders from PwC's Cybersecurity and Privacy practice discussed the evolution of the Cybersecurity discussion in the Boardroom including critical lessons learned and emerging trends for the future. Additionally, we discussed the Board's role in Crisis Management and learnings from the most recent crisis response activity.
West Coast and Technology Sector Cybersecurity & Privacy Leader and Partner
Mike is a Partner and has more than twenty-five years of experience in Cybersecurity, Privacy, and IT Governance Risk and Compliance. Mike is responsible for PwC's West Coast Cybersecurity & Privacy practice and for the Technology Sector in the US. Previously, Mike led PwC’s Information Technology Internal Audit practice in the US.
Mike has provided governance, management, organization design & effectiveness and strategy & planning Cybersecurity & Privacy services to a wide array of industries and firms. He has a reputation for helping clients anticipate future risks and building productive relationships. Mike’s primary area of focus today is the strategic program development for cybersecurity risk management, privacy, IT Risk and internal technology internal audit. This experience gives him a unique perspective in discussing relevant board considerations, including mitigating related cybersecurity risks. He’s worked and presented to numerous board and audit committee members on the topic of cybersecurity, privacy and IT Risk.
For the past two years, Mike has hosted a Cybersecurity Special Interest Group for the NACD Bay Area Chapter where over 50 Corporate Directors have participated in quarterly meetings to discuss cybersecurity and the Board’s role.
Education and certifications
Mike has a Bachelor of Science in Accounting from Indiana University. He is a Certified Public Accountant and a member of the National Association of Corporate Directors (Board member for the American Heart Association of the Bay Area)
Emily Stapf is a Principal in PwC’s Cybersecurity & Privacy practice
focused on incident response, threat management and cybersecurity
strategy. She is a leader of PwC’s national Incident and Threat
Management team, and leads the Denver market for PwC’s Cybersecurity
& Privacy services.
With 20 years of consulting experience, Ms. Stapf has helped hundreds of
commercial clients prepare for, respond to, and mitigate the impact of
unplanned events involving sensitive information. For 15 years she has
lead investigations, assessments and strategy projects related to data
breaches, cybercrime events, privacy matters, information security
strategy, and insider threat using computer forensics, data analytics and
cybersecurity techniques. She helps clients navigate public and B2B
notification, regulatory inquiry and litigation, and regularly briefs senior
leaders about cybersecurity risk.
Ms. Stapf has advised hundreds of corporate, private and law firm clients
across healthcare, retail, financial services, insurance, aerospace,
technology, manufacturing, data analytics and energy industries on a
global scale, and is well connected across PwC's global network.
Ms. Stapf is a frequent speaker on the topics of cybercrime, data breach
investigations and information risk management at ABA, IAPP, PLI, CSO
and other forums.
Ms. Stapf is a Certified Information Security Manager and a Certified
Fraud Examiner, and is an IAPP and ISACA member, and held a Federal
Top Secret Clearance.