Subscribe

Social Media Links

Experts & Advisors

Matt Flora

Managing Director

Photograph of Matt Flora

Matt Flora is a Managing Director at Ankura based in Baltimore, focusing on policy development, employee training, compliance audits, and managing client engagements. Realizing that technology alone cannot protect organizations from hackers, Matt works with executives to identify operational security weaknesses and develops the required procedures and supporting documentation to mitigate security risks and meet relevant compliance standards.

Experience

Matt has eight years of experience within the cybersecurity industry, with a focus in operational security. He has a deep understanding of complex security standards such as the National Institute for Standards in Technology’s Cybersecurity Framework (NIST CSF), The Center for Internet Security Critical Security Controls for Effective Cyber Defense (CIS CSC), HIPAA Security Rule, New York State Department of Financial Services Cybersecurity Requirements for Financial Service Companies (23 NYCRR 500), and NIST 800-171.

Using this knowledge, along with general knowledge of security fundamentals, Matt works with clients to build cyber security programs and procedures that reduce risk and meet appropriate compliance requirements. With a special focus on the healthcare industry, Matt works with covered entities and business associates ranging from three to 300,000 employees to assess risk and implement technical and operational changes to secure the confidentiality, integrity, and availability of Protected Health Information (PHI).

Matt’s Certified in Risk and Information Systems Control (CRISC) certification, along with these real-world experiences with different types of entities, allows him to provide his clients with a unique approach to HIPAA Risk Assessments and mitigation activities that takes into account all areas of the entity (both clinical and administrative). Using this approach enables organizations to get a comprehensive view of their risk landscape and identify action plans to further protect their PHI environments.

In addition to developing new programs and processes, Matt has extensive experience working with end-users within organizations to communicate new processes and security best practices. Through a combination of webinars, seminars, and mock-phishing exercises, Matt provides effective employee training to reduce negligent insider risk and implement new security procedures. Prior to joining Ankura, Matt worked at a business management consulting firm where he was responsible for managing client engagements, performing policy and compliance assessments specific to industry recognized standards, working with clients in developing training programs, and generating new business.

Education
  • Bachelor of Science, Marketing and Psychology, University of Delaware
Certifications
  • ISACA Cybersecurity Nexus Fundamentals Certification (CSXF)
  • Certified in Risk and Information Systems Control (CRISC)

Let’s Connect

We solve problems by operating as one firm to deliver for our clients. Where others advise, we solve. Where others consult, we partner.

I’m interested in
I need help with