Michael E. Kanarellis
Principal & Director of Business DevelopmentHITRUST CCSFP
Michael is a Principal in Wolf’s Information Technology (IT) Assurance Services group, and oversees the Firm’s HITRUST, PCI-DSS, and penetration testing service lines. He leads Wolf’s Healthcare IT Audit and Security Practice, where he manages a dedicated team of healthcare security professionals that help providers, health insurers, and large physician practices—as well as health tech, bio-pharma, medical device, and life sciences organizations—meet their HIPAA security and privacy requirements, and improve their overall security posture.
Areas of Expertise
Michael has been involved in the managing of projects which include HIPAA Security and Privacy risk analysis, risk assessments, HITRUST certified audits, PCI DSS audits, Office of Civil Rights (OCR) corrective action plan audits, application security, NIST CSF, CIS Critical Security Controls, ISO 27001, SOC 1 and 2 audits, IT general controls, IT governance, business continuity planning, incident response, penetration testing, and various custom security reviews.
Education & Certifications
- Graduate of Babson College
- Health Information Trust Alliance Certified CSF Practitioner (HITRUST CCSFP)
- Executive Board Member and Treasurer, New England Chapter, HIMSS
- Information Systems Audit and Control Association (ISACA)
- Information Systems Security Association (ISSA)