Carol Rhyu, PMP, PMI-ACP, SAFe, CCSFP, CSM, CSPO, PSM II, ITIL Expert Witness
Curriculum Vitae

Expert: Cyber Governance, AI Risk & M&A Security

Contact this Expert Witness

  • Company: Ardent LLC
  • Phone: 872-985-6051
  • Cell: 872-985-6051
  • Website: ardent-co.com

Specialties & Experience of this Expert Witness

General Specialties:

Cybersecurity and Digital Forensics

Keywords/Search Terms:

Cybersecurity, Standard of Care, Pen Testing, Remediation, Expert Witness, Risk Management, Governance, Regulatory Audit, AI Governance, Cloud Security, Litigation Support, Infrastructure, M&A Integration, Due Dilligence, Data Privacy, Due Dilligence, Data Breach, Incident Response, Risk Mitigation, Compliance

Education:

B.A., Northwestern University

Years in Practice:

5

Number of Times Deposed/Testified in Last 4 Yrs:

0

Additional Information

PROFESSIONAL BIOGRAPHY I am a senior Cybersecurity and Project Management Consultant with 5 years of intensive, high-stakes experience securing, auditing, and remediating environments for Fortune 500 enterprises. My practice bridges the gap between complex technical infrastructure and corporate boardroom strategy, delivering evidence-based insights for legal counsel in litigation, due diligence, and regulatory proceedings. EXPERTISE & CORE COMPETENCIES My practice focuses on the technical "Standard of Care" in three critical areas: Cybersecurity Governance & Remediation: Extensive experience in large-scale cyberdefense and remediation for global organizations like United Airlines. I evaluate the effectiveness of security controls and pen-testing programs against industry benchmarks to identify gaps and failures. AI Governance & Cloud Security: Specialized experience in the architecture of AI-driven ecosystems and cloud-based infrastructures. I provide authoritative analysis on AI risk, data privacy, and the regulatory challenges inherent in modern cloud adoption. M&A Security & Technical Due Diligence: A proven track record in high-stakes M&A security integration, including the AbbVie/Allergan and Sony/Peanuts transactions. I assess the technical risks of post-merger integration, identifying latent vulnerabilities that often escape standard due diligence. PROFESSIONAL BACKGROUND & APPROACH Operating at the intersection of technical execution and executive strategy, I specialize in translating complex security failures into clear, compelling narratives. Whether evaluating a post-merger tech stack or auditing AI governance pilots at firms like USAA, my approach remains rooted in objective analysis. I am highly adept at assisting attorneys in establishing or defending claims of negligence, breach of duty, and contractual non-compliance. SERVICES Available for case evaluation, forensic analysis, deposition, and courtroom testimony regarding cybersecurity negligence, technical due diligence, and enterprise-scale data security. CREDENTIALS Industry Experience: Healthcare/Pharma (AbbVie/Allergan), Aviation (United Airlines), Media (Sony/Peanuts), Financial Services (USAA), Hospitality (Hyatt). Methodology: Technical Oversight, Compliance Auditing, Root-Cause Analysis, Forensic Reporting. Professional Certifications GSTRT: GIAC Strategic Planning, Policy, and Leadership (Expected Aug 2026) PMP: Project Management Professional PMI-ACP: Project Management Institute Agile Certified Practitioner SAFe: Scaled Agile Framework CCSFP: HITRUST Certified CSF Practitioner CSM: Certified ScrumMaster CSPO: Certified Scrum Product Owner ITIL: Information Technology Infrastructure Library Foundational Technical Credentials CCNA: Cisco Certified Network Associate AWS CPP: AWS Certified Cloud Practitioner