About Us

BD Emerson stands at the forefront of cybersecurity and information security services, dedicated to empowering businesses of all sizes and across various industries. Our expert team is committed to delivering robust solutions that ensure the safety of your digital assets and the smooth operation of your technology-driven business. We understand the nuances of cybersecurity in different sectors, making us the go-to provider for all-encompassing digital security solutions.

Our Mission

Our mission at BD Emerson is centered around fortifying the digital integrity of businesses and enhancing their resilience against cyber threats. We endeavor to provide cutting-edge cybersecurity solutions that evolve with the ever-changing digital landscape, ensuring our clients stay ahead in the realm of digital security and data protection.

Our Advantages


Unmatched Cybersecurity Expertise

Implementing state-of-the-art controls to safeguard sensitive data from emerging threats.


Business-Centric Approach

Aligning our extensive technical capabilities with your business goals for seamless integration and enhanced productivity.


Trusted Partnerships

Fostering enduring relationships based on reliability, delivering consistent support, and insightful guidance.


Comprehensive Legal Compliance

Ensuring your tech-driven business adheres to all legal aspects of cybersecurity and data protection through our partnership with Harris Beach.


Sophisticated Custom Solutions

Developing and implementing innovative solutions tailored to combat specific cybersecurity challenges faced by your organization.

Our accreditations

At BD Emerson, we believe that our team's extensive certifications not only set us apart but also ensure that we provide the highest level of service to our clients

This certification provides preferential access to government contracts for a company as a Service-Disabled Veteran-Owned Small Business

This certification validates the ability to design and deploy well-architected systems on AWS that are scalable, resilient, and efficient

This certification demonstrates an individual's ability to design and implement security solutions to secure applications and data on AWS

This certification demonstrates an individual's ability to create a company vision, structure a privacy team, develop and implement a privacy program, and much more

These certifications demonstrate a strong understanding of U.S. and European privacy laws and regulations and how they apply to companies

This globally recognized certification validates an individual's expertise in designing, implementing, and managing a best-in-class cybersecurity services program

This designation is given to those who hold both CIPM and CIPP certifications and have significant experience in the field of privacy

This certification validates the baseline skills needed to perform core computer security functions and pursue an IT and cyber security career

This certification validates the ability to implement, monitor, and maintain Microsoft technologies

This certification demonstrates excellence in leading and directing project teams

Meet the team

Managing Director

Drew Danner

Drew spearheads BD Emerson's Governance, Risk, Compliance, and Security (GRC+Sec) division, where he channels his expertise into guiding clients through the labyrinth of Information Security, Risk Management, Regulatory Compliance, Data Governance, and Privacy. His stewardship is key in developing tailored programs that not only address the unique challenges faced by businesses but also foster a culture of security and compliance.

Under Drew's leadership, the consulting teams at BD Emerson flourish in conducting meticulous audits, a cornerstone in the firm’s risk analysis endeavors. His adeptness shines through in navigating a myriad of regulations and frameworks including NIST, ISO, HIPAA, GLBA, GDPR, CCPA, CPRA, VCDPA among others​.

Beyond audits, Drew is instrumental in fortifying clients' infrastructural integrity, ensuring the security of applications, and safeguarding critical data. His seasoned perspective as a virtual Chief Information Security Officer (vCISO) has proven invaluable across a spectrum of industries, marking him as a trusted advisor in the realms of security and risk management.

EXPERIENCE: Leading Transformation, Compliance Risk Advisory, vCISO Consulting, Strategy / Management Consulting

INDUSTRIES: Technology, Retail, Finance/Banking, Audit / GRC

FOCUS AREAS: Security, Risk, Change Management

CERTIFICATIONS: CISSP, PMP, ITIL, Net+, Sec+, CSM, PMI Organizational Transformation: Foundation, Six Sigma Black Belt

CONTACT: Drew.Danner@bdemerson.com

Drew Danner
Managing Director - BD Emerson CPA

Traviss Cherry

Traviss leads the CPA Audit Firm division at BD Emerson, bringing expertise in audit, finance, and organizational transformation. His broad expertise spans both government and private sectors, where he is driven to support clients with building appropriate, cost-effective controls to meet compliance requirements. Traviss' leadership is pivotal in providing top-tier support to diverse organizations in every business vertical. His technical abilities in auditing, compliance, and financial accounting leads the way to meet the unique needs of each client.

A native of Northern Virginia, Traviss' local insight and unwavering commitment to client satisfaction underscore his role as an indispensable leader at BD Emerson. His passion for meeting client needs at every level reinforces his reputation as a trusted advisor and industry leader.

Experience: Audit, Financial Management, Taxation

Focus Areas: Compliance, Audits, Financial Management

Education and Certifications: Certified Public Accountant (CPA), Virginia Society of CPAs, AICPA

Contact: Traviss.Cherry@bdemerson.com

Traviss Cherry
Principal - Compliance

Jose Gonzalez Jr.

Jose Gonzalez serves as the Principal of Compliance at BD Emerson, where he spearheads large-scale projects to establish robust technical controls, governance structures, and processes. His expertise is pivotal in helping organizations comply with global privacy regulations, ensuring adherence to stringent standards such as SOC 2, GDPR, and HIPAA.

With a deep understanding of both the technical and audit aspects of compliance, Jose effectively guides enterprise clients through complex regulatory landscapes. He excels in the design and implementation of comprehensive compliance frameworks that not only meet current requirements but also anticipate future regulatory changes.

EXPERIENCE: Organizational and Project Management, Regulatory Compliance, Implementing Privacy by Design

FOCUS AREAS: Compliance, Privacy, SOC 2 Audits, Operations and Risk Management

CERTIFICATIONS: Certified Information Privacy Professional US (CIPP-US) Certified Scrum Master (CSM), Information Technology Infrastructure Library (ITIL)

CONTACT: Jose.Gonzalez@bdemerson.com

Jose Gonzalez Jr.
Senior Advisory Consultant

Andrew Wilcox

Andrew is a Senior Advisory Consultant assisting clients across many Governance, Risk, and Compliance initiatives to establish and mature their security programs. He has been involved with many regulatory frameworks and audit and assessment requirements, including NIST 800-53, 800-171 (CMMC), NIST CSF, SOC2, and ISO 27001.

Andrew focuses on understanding the clients' environment, identifying gaps and concerns, and ultimately deriving strategic prioritization initiatives to fulfill clients' needs and mature their organizational security posture.

Andrew is a retired Naval Special Operations veteran. He mentors and volunteers across multiple cybersecurity communities and organizations to help young professionals, veterans, and career-transitioning professionals break into the cybersecurity industry.

EXPERIENCE Security Program Management, Security Audits and Assessments, Risk Management

FOCUS AREAS: Governance, Risk, Compliance, SOC 2 Compliance, NIST (800-53, CSF, 800-171) Compliance, Breach Remediation, Data Security.

CERTIFICATIONS: CISSP, CISM, CRISC, CASP+, CCNA, Cloud+, Sec+, A+, Cyber Threat Management (IBM), Lean Six Sigma White Belt


Andrew Wilcox
Senior Legal Advisor

Nicole Lapierre

Nicole Lapierre is a distinguished attorney specializing in Data Privacy and Cybersecurity, boasting over two decades of dedicated service. Her profound expertise is validated by her Certified Information Privacy Professional (CIPP) credentials for both the EU and US, accredited by the International Association of Privacy Professionals (IAPP), where she has been an instrumental figure since its early days.

With a rich foundation in privacy law, Nicole excels in delivering insightful and informed counsel across a broad spectrum of privacy and data breach notification statutes, including HIPAA HITECH, GLBA, FACT Act red flags rule, FERPA, and CCPA, alongside adept management of data breach responses. Operating as a virtual Data Privacy Officer (vDPO), Nicole provides practical guidance on intricate matters, with a keen focus on fostering strategies that champion transparency, reporting, and vigilant oversight.

EXPERIENCE: Privacy Law Expertise, Data Breach Notification and Response Management

FOCUS AREAS: Data Privacy, Cybersecurity, Legal Compliance, Strategic Business Operations

CERTIFICATIONS: Certified Information Privacy Professional Europe (CIPP/E), Certified Information Privacy Professional United States (CIPP/US)

CONTACT: Nicole.Lapierre@bdemerson.com

Nicole Lapierre
Senior Advisory Consultant

Saskia Hoffmann

Saskia Hoffmann stands at the forefront of cybersecurity at BD Emerson, where she leverages her deep expertise in implementing technical security controls, security program management, and strategic consulting. Her career is distinguished by her specialization in building security programs to meet and exceed compliance standards such as SOC 2, ISO 27001, HIPAA, and NIST frameworks.

Beyond her technical acumen, Saskia is deeply committed to the broader cybersecurity community. She is a recognized advocate for diversity and inclusion, frequently addressing these important issues as a speaker at women-focused cybersecurity conferences. Additionally, Saskia extends her expertise to the nonprofit sector, advising on and bolstering cybersecurity measures to protect sensitive information and resources.

Experience: Security Program Management, Strategy Consulting, Risk Advisory, Compliance Audits and Assessments, Security Operations, Incident Response

Industries: Startup, SaaS, Healthcare, Automotive, Retail

Focus Areas: Governance, Risk, Compliance, Security Operations, SOC 2, ISO 27001, NIST CSF

Certifications: Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH)

Contact: Saskia.Hoffmann@bdemerson.com

Saskia Hoffmann
Security Analyst

Liam O'Brien

Liam assists BD Emerson’s clients in implementing appropriate cybersecurity practices and maintaining regulatory compliance. He utilizes his knowledge to protect the client’s data, business, and finances. He has assisted in various topics of security and compliance from breach recovery to regulatory assessments.

Liam supports clients in completing security and privacy projects. His ever-growing skillset is utilized to address critical requirements or plan for a secure future.

EXPERIENCE AND CERTIFICATIONS: Sec+, AWS Cloud Practitioner, APISec University, OneTrust Privacy Professional, DSAR Process Refactoring, Regulatory assessment consulting (Regulatory Compliance), Implementing Privacy by Design, Cookie Management

FOCUS AREAS: Privacy, Compliance, Cybersecurity

Liam O'Brien
Security Analyst

Theodore Kalfas

Theo provides guidance and support to BD Emerson's clients in the establishment of robust cybersecurity measures and ensures adherence to regulatory standards. Drawing upon his expertise, he safeguards the clients' data, business operations, and financial assets. His contributions span a wide range of security and compliance matters, from breach remediation to regulatory evaluations.

Theo offers assistance to clients in executing security and privacy initiatives. Leveraging his continuously expanding expertise, he addresses pivotal needs and strategizes for a fortified future.

EXPERIENCE AND CERTIFICATIONS: AWS Solutions Architect,  AWS Cloud Practitioner, Sec+, OneTrust Privacy Professional, Cloud Security, Regulatory assessment consulting (Regulatory Compliance), Implementing Privacy by Design, Vulnerability Assessments, BurpSuite Expert.

FOCUS AREAS: Cybersecurity, Privacy, Compliance

Theodore Kalfas
Senior Advisory Consultant

Pam Fulmer

Pam Fulmer has substantial experience litigating all types of intellectual property and commercial disputes, with a special emphasis on licensing disputes. Pam also advises companies on privacy and related data security issues, and how they may impact software licensing.

In addition to her litigation practice, Pam devotes a significant portion of her time to defending companies of all sizes in software audits brought by software publishers known for their aggressive audit tactics such as Oracle, Quest, Micro Focus and others.

EXPERIENCE: 30+ Years in Private Practice, Intellectual Property, Commercial and Privacy Litigator, Licensing Compliance Attorney

INDUSTRIES: Technology, Software, Financial Services, Consumer Products

FOCUS AREAS: Compliance, Risk Management, Advisory Consulting

Pam Fulmer
Senior Advisory Consultant

John Kincaide

John Kincaide advises clients in Data Privacy and Cybersecurity.

John has an extensive business background including marketing and e-Commerce at Intel Corporation.

He is also a licensed attorney with over ten years of experience providing data privacy and cybersecurity solutions as inside corporate counsel and in his private practice.

EXPERIENCE: Licensed attorney focused on data privacy and cybersecurity, Strategy development and implementation, Risk analysis

FOCUS AREAS: Compliance, Security, Strategy

John Kincaide

Join forces with BD Emerson to transform your business's digital defense strategy. Trust in our expertise to elevate your security measures and drive your business towards a safer, more secure digital future.