Thomas J. Loring, CISA
Senior Manager
As a senior manager in Wipfli’s risk advisory services practice, Tom Loring performs a variety of functions in internal controls, information technology (IT), and information security. He performs technology auditing in all areas of IT-related controls, including IT department organization and administration, daily operations, software change management, logical security, and physical security. Tom regularly performs System and Organization Controls (SOC) 1 and SOC 2 examinations, IT general control reviews, information risk assessments, and consulting for clients in a wide variety of industries including financial institutions, third-party data processors, statement printers, data centers, and more.
Certifications
- Certified Information Systems Auditor
- HITRUST Certified CSF Practitioner
Professional memberships and activities
- Information Systems Audit and Control Association (ISACA) - Member
Services
ConsultingAreas of Focus
- SOC 1 and SOC 2 examinations
- Internal controls
- Information security
- Risk assessment
Education
University of Southern Maine - Portland, Maine- Master of business administration degree
- Bachelor of science degree in business administration with a concentration in accounting
Recent Insights
Articles
FFIEC outlines best practices on the use of cloud computing
Jun 24, 2020
Can a SOC exam help me grow my business?
Jun 11, 2020
Understanding SOC exam exceptions and management letter comments
Feb 25, 2020