Get to Know CRS Partner Tony Wang

As Partner of Williams Adley’s newly renamed Cybersecurity Risk Services (CRS) Practice, Tony Wang has crafted an innovative approach to cybersecurity that offers clients the insights they need to protect their data and optimize their protection against cyber threats. This approach is informed by his extensive background in IT audits and his proven record as a thought leader in the cybersecurity field, and is supported by his notable credentials that include Cybersecurity Maturity Model Registered Practitioner (CMMC RP), Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), and Project Management Professional (PMP).

After earning a master’s degree in systems engineering from University of Maryland at College Park, Tony began his career at Lockheed Martin as a software engineer and participated in a Corporate Internal Audit engagement as part of their Business Leadership Development Program. Very quickly, Tony discovered his passion and talent for the auditing profession, and he went on to gain nearly a decade of experience leading engagements such as cybersecurity assessments, IT General Control and application control assessments, information system implementation assessments, and vulnerability assessments as a Senior Manager at both Ernst & Young and BDO before joining Williams Adley as Director of CRS (then ITRM) in 2014.

Since joining Williams Adley, Tony has spearheaded the growth of our CRS Practice, developing its service line and training up our team of high-performing and distinguished cyber professionals, establishing CRS as a leader in the industry and supporting Williams Adley’s excellence as a boutique provider of Federal audit and management consulting services. Under Tony’s leadership, CRS has cultivated a reputation for offering comprehensive and value-added services to an ever-growing list of clients that includes Consumer Product Safety Commission (CPSC), Department of Education, Defense Finance and Accounting Service (DFAS), Federal Retirement Thrift Investment Board (FRTIB), Peace Corps, United States Agency for International Development (USAID), and many others.

CRS has specialized in FISMA audits, FISCAM audits, SSAE 18 examinations, and other such services for 30 years, and is now gearing up to include new services among our core offerings. Strategically, Tony will be prioritizing the adoption of Cybersecurity Maturity Model Certification (CMMC) advisory services, leveraging his CMMC RP credential. Developed by the U.S. Department of Defense and introduced in 2020, the CMMC framework addresses the rapidly evolving cybersecurity challenges facing the Defense Industrial Base (DIB) by providing standardized best practices for protecting agencies’ sensitive information from malicious actors. The CMMC framework requires all relevant organizations to maintain compliance with the applicable maturity model as set forth in the CMMC guidance, and this requirement extends to both prime and subcontractors that hold contracts with Defense agencies.

In light of the high-stakes, frequent, and sophisticated cyber attacks faced by the DIB, it is critical that organizations take all possible measures to protect our nation’s data from those that would do it harm. The CMMC is a key component of these efforts and has been incrementally reflected in contractual requirements over the last few years. Furthermore, with the CMMC 2.0 recently proposed in December 2023, updated requirements are expected to appear in contracts by early 2025. For this reason, it is crucial that Defense organizations keep abreast of the latest CMMC changes, and Williams Adley’s cyber insights will be an invaluable asset to all organizations committed to protecting national security.

The CRS Practice developed by Tony Wang continues to be a core pillar of Williams Adley’s success. Tony’s expertise and leadership, and the unique, risk-focused approach to cybersecurity that our CRS team is known for, has positioned Williams Adley as a firm of choice for any agency seeking to enhance its cybersecurity programs.

If you would like to learn more about Tony, CRS, and Williams Adley, please follow us on LinkedIn, Twitter, and Facebook to get all our latest updates. We will be regularly posting exciting new content such as white papers, interviews, podcasts, and thought leadership articles as part of our CRS rebrand, so be sure to keep an eye on our website and social media to learn more about our approach to cybersecurity.