Gordy has been in IT risk management since 1998 and has worked with several large companies across a range of enterprise and IT risk management functions. He serves as the outsourced internal audit director for several medium to large sized clients.
From a technical perspective, Gordy has managed various information security reviews and SOX compliance and SOC reporting projects. He also has experience working with several different IT risk management frameworks, including ISO 27000, COBIT, COSO, PCI, NIST, and others.
Prior to joining Moss Adams, Gordy was a cofounder of The Cadence Group, a risk management, compliance, process improvement, and internal audit consulting firm. He also worked at a Big Four firm for nearly seven years, primarily in their system and process assurance practice.