placeholder image coming soon

Matt Flora
Senior Director

Operational Security SME; Risk Management, Compliance, & Policy Development

As a Senior Director at Ankura, Matt Flora concentrates on policy development, employee training, compliance audits, and managing client engagements. Realizing that technology alone cannot protect organizations from hackers, Matt works with executives to identify operational security weaknesses and develop the required procedures and supporting documentation to mitigate security risks and meet relevant compliance standards. He is based primarily out of the Baltimore office. Matt Flora has nearly five years of experience within the cybersecurity industry, with a focus in operational security. He has a deep understanding of complex security standards such as the National Institute for Standards in Technology’s Cybersecurity Framework (NIST CSF), The Center for Internet Security Critical Security Controls for Effective Cyber Defense (CIS CSC), HIPAA Security Rule, New York State Department of Financial Services Cybersecurity Requirements for Financial Service Companies (23 NYCRR 500), and NIST 800-171. Using this knowledge, along with general knowledge of security fundamentals, Matt works with clients to build cybersecurity programs and procedures that reduce risk and meet appropriate compliance requirements.

  • Experience

    In addition to developing new programs and processes, Matt has extensive experience working with end-users within organizations to communicate new processes and security best practices. Through a combination of webinars, seminars, and mock-phishing exercises, he provides effective employee training to reduce negligent insider risk and implement new security procedures.
    Matt joined Ankura in 2018 with the firm’s acquisition of the disputes, forensics & legal technology segment of Navigant. Before that, he was responsible for managing client engagements, performing policy and compliance assessments specific to industry recognized standards, working with clients in developing training programs, and generating new business at COMPASS Cyber Security.