Chad is ECI’s SME for Governance, Risk, and Compliance, helping regulated firms navigate complex, multi-jurisdictional security and regulatory frameworks with clarity and discipline. Chad focuses on translating regulatory obligation into operational reality, thereby ensuring firms remain secure, audit-ready and strategically aligned.
Chad’s path into cybersecurity began in the U.S. Navy Submarine Service where operating in a tightly controlled, highly regulated environment shaped his approach to risk and accountability. From there he moved into managed services, progressing through security leadership roles and ultimately supporting organisations subject to stringent frameworks, including CMMC and other defence aligned standards. This experience informs his work across regulated markets, where clients face overlapping global regulatory requirements across diverse technology estates.
Chad role helps firms manage compliance across multiple frameworks with the aim of keeping execution simple. He is known for cutting through the misconception that GRC tools alone solve regulatory challenges. In practice, effective governance requires ownership, expertise and disciplined implementation and can’t be ‘fixed’ with software alone.
Skills can be taught; accountability cannot. Chad applies this principle to every engagement to balance innovation with data-driven decision-making that focusses on specific client pain points.
Outside of work, he is committed to continuous learning. He is an avid reader with a keen interest in both formal and informal opportunities for growth.
