Chris Cronin is a Partner at HALOCK Security Labs, a US-based, risk management and cybersecurity consulting firm. Chris and his team help organizations manage their information security risks, and they work with U.S. regulators and attorneys as expert witnesses in data breach cases. Fluent in technology, regulations, management, audit, and the law, Chris’ expertise is wide-ranging and helps organizations understand how well-designed information and cyber security programs align to business interests and legal expectations.

Chris developed Duty of Care Risk Analysis (DoCRA) and CIS RAM to help management, cybersecurity experts, and attorneys work toward a common goal of “reasonable” security. U.S.-based regulators have been using DoCRA as a test for reasonable security when it is applied to ISO 27001, the NIST Risk Management Framework, CIS Controls, PCI DSS, or other frameworks to secure important information assets.