Susan Ulrey is responsible for supporting the firm’s risk advisory services, specifically focusing on serving the financial services and healthcare markets. She also oversees client service delivery and business and people development efforts, drawing on her more than 20 years of experience in internal audit, ERM, and external quality assurance reviews, and contract and regulatory compliance, HIPAA, HITRUST, and SOX compliance. Sue is currently the Chair of the IIA’s Exam Development Committee and serves as a member of the Global Nominating Committee and North American Nominating Committee. Sue is a licensed Chartered Accountant, CFE, CIA, and holds the following credentials – CRMA, CRISC, and QIAL.
Eric Chan is a GRC and Risk Advisory Services practice leader with over 15 years of experience helping companies navigate complex regulatory environments while providing comprehensive operational, information technology, and information security risk management solutions. Eric offers extensive experience operating in all three lines of defense, including at several of the country’s largest financial institutions with significant subject matter expertise in IT governance, HIPAA and regulatory compliance, data Privacy and protection, information security/cybersecurity, enterprise risk management, third-party risk management, finance and accounting, and capital planning. Prior to joining MorganFranklin, Eric spent over 13 years in leadership positions at global Fortune 500 financial institutions.