Derek Boczenowski

Derek Boczenowski

Derek Boczenowski is SVP of Compliance & Risk with Compass IT Compliance. Derek has over 20 years of IT experience in a variety of vertical markets, including financial services, higher education, and state/local government. Prior to joining Compass IT Compliance, Derek was the VP of Technology for a credit union in Massachusetts with approximately $700M in assets under management. With an MBA in Technology Management as well as industry leading certifications, such as being a Certified Information Systems Auditor (CISA), Qualified Security Assessor (QSA), Certified Information Security Manager (CISM), and Certified Data Privacy Solutions Engineer (CDPSE), Derek works with clients of all sizes and in all vertical markets to help them identify gaps in their IT security strategies and provide relevant, attainable solutions to ultimately mitigate their overall risk. Derek has spoken at numerous conferences throughout his career, including the Fiserv national conference and New York Banker’s Association Annual Meeting, and is recognized as a thought leader in the field of information technology and information security.

Posts by Derek Boczenowski

Updates to MA 201 CMR 17 Data Breach Law

by Derek Boczenowski on February 1, 2019 at 1:00 PM

boston-1099418_1920

The Laws, they are a’ changin’… …to paraphrase Bob Dylan. And I’m speaking about privacy and breach laws. It would seem that every other day we hear of another set of customer data being compromised at another company. It could be just name and address, but it could be phone number, S …

Read Story

Topics: Compliance Government

Why a Risk Assessment is the Beginning of Security, Not the End!

by Derek Boczenowski on April 10, 2018 at 9:30 AM

info_protect_740

In the past several weeks, the news has been filled with multiple compromises and hacks. Panera Bread, Delta, and Under Armor just to name a few. One of the ones that has had the most impact is the ransomware attack on the City of Atlanta.

Read Story

Topics: Risk Management Risk Assessment

Online Banking for Businesses – How to protect yourself

by Derek Boczenowski on March 27, 2018 at 9:15 AM

Credit-Card-Computer-Purchase.jpg

One of the biggest areas that we see attacks on is the business online banking customer. There has been a marked increase in trying to compromise these accounts, primarily to abscond with the funds within the accounts, but also to execute identity theft as well. Many of these attacks …

Read Story

Topics: Cybersecurity Finance

Why Every Company Needs an Information Security Officer

by Derek Boczenowski on February 7, 2018 at 10:00 AM

Skyscrapers

In today's world, businesses of all sizes depend heavily on digital systems and data. While this digital transformation brings many benefits, it also exposes companies to a growing number of cyber threats. Data breaches, ransomware attacks, and other types of cybercrime have become al …

Read Story

Topics: Information Security

Ransomware Alert: New Strain in the Wild

by Derek Boczenowski on May 12, 2017 at 4:23 PM

Ransomware Screenshot.jpg

Friends of Compass, There is a rash of ransomware attacks being reported that has affected as many as 74 countries. One of the largest reported sectors is hospitals within the United Kingdom, with at least 16 hospitals affected. Many hospitals report being disabled and unable to perfo …

Read Story

Topics: Ransomware

HIPAA Compliance: 5 HIPAA Mistakes to Avoid!

by Derek Boczenowski on March 28, 2017 at 9:30 AM

5 HIPAA Mistakes to Avoid Blog Graphic.png

Here at Compass, we have seen a huge upswing in the number of HIPAA / HITECH risk assessments we have been conducting over the last year. Covered entities (Doctors, Hospitals, Pharmacies) and health plans are obviously storing PHI (protected health information) and ePHI (electronic pr …

Read Story

Topics: Healthcare Security HIPAA
1 2 3 4 5

See all

See all

Subscribe by email