Mir Ali is a Managing Director in FTI Consulting’s Cybersecurity practice and is based in Chicago. Mr. Ali is an Information and Data Governance expert specializing in helping organizations build mature, compliant, and defensible data programs from the ground up. He brings extensive and specialized experience in leading complex, global engagements focused on data minimization, mapping and inventory, cyber and privacy risk assessments, and robust third-party risk management frameworks.
Prior to joining FTI Consulting, Mr. Ali served as a Senior Director in Technology, Privacy, and Cyber Risk Advisory at a global consulting firm. In this role, he was instrumental in implementing enterprise-wide information governance programs specifically designed to operationalize defensible data deletion strategies, ensuring compliance with significant global regulations including the California Privacy Rights Act (CPRA), the General Data Protection Regulation (GDPR), and the New York Department of Financial Services (NYDFS) regulations. His leadership extends to initiating and conducting comprehensive information governance risk assessments and developing multi-year strategic roadmaps for multiple Fortune 100-1000 companies, guiding them toward enhanced data maturity.
Mr. Ali has established himself as a key leader in modernizing and consolidating data retention policies and procedures. His comprehensive approach includes not only implementing defensible data deletion programs aligned with major global standards, but also modernizing and consolidating legacy records retention schedules, policies, and procedures to ensure regulatory defensibility across the enterprise. Furthermore, he has successfully assisted companies with intricate compliance requirements, such as adherence to retention and disposition mandates for NYDFS Part 13, and has developed sophisticated framework maturity assessments for enterprise information governance programs.
His expertise is globally relevant, encompassing the successful implementation of compliance programs for a wide array of global data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA)/California Privacy Rights Act (CPRA), and the Health Insurance Portability and Accountability Act (HIPAA). His deep technical knowledge and strategic oversight continue to be instrumental in supporting client compliance and operational excellence across various regulated industries.
You must be logged in to post a comment.