David A. Cruz is an information security and assurance expert with 10 years of experience helping organizations enhance their security programs. David has implemented enterprise-wide security awareness and education programs and has launched several user-awareness initiatives. He successfully conducted hundreds of assessments associated with various industry standards for some of the largest financial institutions.

David has a bachelor’s degree in information security and a master’s degree in information assurance. He is a certified information security professional (CISSP), and he holds the Global Information Assurance Certification: Security Essentials (GSEC). He serves as a board member for the Florida Chapter of International Systems Security Association (ISSA) and is a member of the steering committee council for ISSA International. David is also a member of the executive forum of ISSA. He is an International Consortium (ISC)2 Safe and Secure online instructor, teaching primarily elementary school children how to protect themselves online and become responsible cyber citizens. He is currently a professor at ITT Technical institute, where he teaches future security professionals how to implement practical measures to protect their organizations.

Throughout his career, David has developed a comprehensive understanding of the pain executives face today. His passion, optimism, and commitment for helping organizations enhance their information security programs led to the idea of writing this book. David’s dream of being a security evangelist starts with his forthcoming book, EXPOSED! What You Ought to Know about Securing Your Business Information: The New Age Cybersecurity Handbook.


Aquiles Tan

Author of My Second Chance
“Cyber resilience is the buzzword in business these days and David throws light on how to approach it effectively and make the most out of it..”

Susie Nelsen

Author of Finishing Well
“What a fantastic, straightforward and honest book. Congratulations David!”

Dan Mercer

Author of The Platinum Touch
“Powerful, practical and solid advice on protecting your intellectual property with confidence. Apply David's knowledge and you’ll feel much more resilient.”

Alexander Figueroa

Author of Assess This!
“Here is a powerhouse book of tips, tactics and approaches for managing information risks that simply work. A fantastic book.”

Jarod Anderson and T.L. Anderson

Authors of Five Star Mentality
“A collection of ideas from the most brilliant minds in the industry, a must have.”

Jeffrey Alan Grinel

Author of Don’t Rack Your Brain, RockUrBrain
“If you fail to apply these principles now, you’ll hate yourself later."

Pre-order "Exposed!" now. FREE shipping (USA) and author's signature for the first 100 copies.

Cybersecurity is a promise statement for every business, regardless of the industry or fortune status. Just as biological cells collectively protect the human body, so must everyone within an organization work together to collaboratively protect its security. This can be a challenging endeavor—one that requires commitment, execution, and resources. It is not surprising that thousands of books have been written on this topic, but most offer only technical perspectives and are usually written for a technical audience. In this book, you will find new strategies to align information security with your business objectives. Two key principles are highlighted throughout the chapters: clarity of purpose and effective collaboration. While everyone can benefit from the details and advice in this book, it is specifically geared for business leaders and boards of directors. In short, EXPOSED! offers information that will provide business leaders with the appropriate skills to protect their company’s valuable information. The call is for immediate action with the notion that everyone is a target, everyone is vulnerable, and everyone is exposed! If you are a business leader who is responsible and accountable for protecting an organization’s brand and assets, you are invited to read and to practically apply the nuggets of information security knowledge found within the pages of this book.


  • Understand legal and compliance cyber risks applicable to your organization
  • Define cybersecurity governance metrics that your board needs to know
  • Delegate priorities which focus on protecting your intellectual properties
  • Mandate cybersecurity strategies that align with your business vision
  • Formulate cost effective and measurable cybersecurity priorities
  • Plan strategic and innovative measures to mitigate cybersecurity liabilities
  • Understand the various cybersecurity myths and expand your knowledge
  • Execute organization policies and procedures that aligned with your mission
  • Identify a number of practices and activities that are wasting resources


  • Business executive’s personal liabilities are relevant to data privacy
  • Understand quantifiable statistics and metrics that produce value
  • Learn innovative methods to eliminate imminent business failures
  • Build a cybersecurity program based on continuous improvement
  • Employ a competent cybersecurity executive for your organization
  • Understand how to proactively identify downstream liabilities
  • Identify strengths, weaknesses, opportunities, and threats in an organization
  • Mandate clear, concise, and enforceable enterprise policies
  • Examine appropriate security strategies that align with your mission
  • A resilient model that is practical, applicable, and measurable


We respect your email privacy

Want A One-On-One Executive Coaching With David?