Patrick Hynes

Headshot

PwC

Principal in Cyber Crime and Breach Response

Patrick is a Principal in PwC’s Cyber Crime and Breach Response practice. He and his team help clients investigate breaches and system compromise by either external parties (state sponsored; organized crime, etc.) or through insider threat. He also helps clients prepare for breaches by increasing board and executive awareness; evaluating and enhancing detect and respond capabilities, and helping clients assess the current vulnerabilities in their environment that puts them at risk for a successful attack.



Patrick has had significant involvement in the breach response and investigations of many of the highest profile retail, health insurer, entertainment industry and casino breaches of the last 36 months.  Patrick has more than 20 years of information security and forensic investigation experience, and is a frequent speaker at industry and professional conferences and events. He developed a proactive APT assessment methodology which has been successful at multiple clients, including identifying command and control malware not previously detected by client's existing controls tools.

Patrick also advises leading boards and has conducted education and training for current and future   board members on cybersecurity risks, and the specific obligations and responsibilities of boards around cybersecurity.



He is a contributing author of the book Responding to Targeted Cyberattacks. He also serves on the advisory board for the USC Viterbi School of Engineering digital forensics and cybersecurity programs as well as serves as a mentor and advisor for up and coming forensic and cybersecurity students.



Patrick has a  BBA in Computer Information Systems and Accounting from the University of Michigan,  and is a Certified Information Systems Security Professional (CISSP), Certified Information Security  Manager (CISM), Certified Information Systems Auditor (CISA).  Patrick is active in the Los Angeles Electronic Crimes Task Force (ECTF), Information Systems Audit and Control Association (ISACA) and   Information Systems Security Association (ISSA).