Mike Mainardi
Director
Mike Mainardi is a Director at CNM’s Los Angeles office with over 10 years of experience in information technology audit. His primary expertise is IT internal audit with focuses on infrastructure, networking, databases, system integrations, business applications, and governance. Mike also has experience with various other types of projects and assessments, including topics such as data analytics, Sarbanes-Oxley (SOX), Gramm-Leach-Bliley Act (GLBA), California Consumer Privacy Act (CCPA), and the Bank Secrecy Act / Anti-Money Laundering (BSA/AML). Mike has worked in several industries, including finance, technology, healthcare, retail and manufacturing.
Prior to joining CNM, Mike worked at Crowe, LLP as a senior technology risk consultant. Mike planned, coordinated, and conducted various services, including internal and external information technology audits, IT SOX compliance, SSAE-16 and SSAE-18 assessments, and outsourced third-party cybersecurity risk assessments. His clients included financial institutions, broker-dealers, technology companies and start-ups, healthcare organizations, and manufacturers, with revenues ranging up to $700 million. He has developed information technology narratives, flowcharts, audit reports, evaluations of controls gaps and deficiencies, and risk-based recommendations.
Further, Mike’s experience in third-party risk management includes assisting in the design and execution of clients’ service provider assessment process, with a focus on information security. He has performed assessments of a wide variety of third-party service providers, including cloud and non-cloud-based software-as-a-service providers, platform-as-a-service providers, data centers and colocation providers, and non-technology providers such as payroll processors and printing services.
Education, Certifications and Associations
- University of Delaware, B.S., Accounting
- Licensed CISA –California
Industry Specialty
- Finance
- Technology
- Healthcare
- Retail