Michael J. Corcione

Principal, PKF O’Connor Davies Advisory LLC

“Regardless of the business and IT infrastructure, companies must understand their business risk tolerance and manage it to achieve their objectives. My years of experience allow me to understand my clients’ unique needs.”

Michael Corcione has more than 30 years of experience in technology and the financial services industry. He specializes in asset management including private equity, hedge funds, venture capital, real estate, broker dealers, and insurance.

Michael most recently served as Partner and Global Cybersecurity & Privacy Leader of an international consulting, risk mitigation and dispute resolution firm. In that role, Michael led client engagements performing cybersecurity business and IT risk assessments, evaluating cyber threats, incident response readiness and testing. He also evaluated IT infrastructure and security implementations, regulatory compliance, vendor and third-party due diligence and strategy.

He routinely engages with the senior leadership of organizations, including board and C-suite executives, on M&A strategies as well as to identify cybersecurity business risks, threats and potential impacts on their client, regulatory, legal and corporate responsibilities.

Michael has led global efforts helping organizations comply with emerging cyber and information security regulations including: New York State Department of Financial Services (NYDFS) Cybersecurity Regulation, U.K. Financial Conduct Authority (FCA), Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (SEC OCIE), Office of the Comptroller of Currency (OCC), Federal Reserve Board (FRB), National Credit Union Association (NCUA) and Consumer Financial Protection Bureau (CFPB).

In addition, Michael served as a key contributor to articles addressing recent SEC rulemaking, which will have a significant impact on cybersecurity risk management.

Professional Affiliations & Civic Involvement

  • American Management Association (AMA)
  • Pace University – Seidenberg School of Computer Science and Information Systems
    • Cybersecurity Advisory Board Member


  • Cybersecurity Maturity Model Certification Accreditation Body (CMMC-AB) Registered Practitioner (RP)


  • Pace University, Bachelor of Business Administration degree in Information Systems