Gordon has over 12 years of information systems auditing experience. He has led several IT internal audits and reviews, including assessing controls over operations and management, application change control, computer operations, security administration, physical and logical security, and disaster recovery planning. He also led several IT governance improvement assignments across large organisations in Malta.
Gordon is a Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified in the Governance of Enterprise of IT (CGEIT), and Certified in Risk and Information Systems Control (CRISC).
He has lectured, presented and published articles on many areas of Information Security Governance, e.g: Backups and Recovery Plans – Ensuring Availability of Business Information, Certifications in Information Systems Auditing and Security Management, Business Model for Information Protection, Getting Assurance from IT controls, the Business of Social Media, and The Internal Auditor and IT risks.