David Cundiff is a Director of Services at RM Cyber, where he oversees client service delivery and helps shape the firm’s cybersecurity service strategy. With more than two decades of experience spanning information security, infrastructure, cloud, and emerging technology domains, David brings a pragmatic, business-centered approach to cybersecurity, focused on reducing real risk while empowering organizations to operate and grow with confidence.
David’s career spans multiple industries, including manufacturing, software, healthcare services, and utilities, giving him a well-rounded perspective on the operational realities and regulatory pressures organizations face. His technical expertise includes Microsoft, Apple, and Linux environments, as well as hardware, controls, and hybrid infrastructure systems. He is deeply experienced in information security governance and compliance frameworks such as PCI DSS, HIPAA, NIST, CIS, and GDPR, and has led security initiatives across major cloud platforms including AWS, Azure, and Google Cloud.
In his role at RM Cyber, David leads multidisciplinary teams of engineers and consultants, advises clients on complex security and risk-management challenges, and partners closely with business development to ensure engagements are well-scoped, thoughtfully executed, and aligned with client outcomes. His work often bridges strategy and execution, translating high-level security objectives into practical, defensible controls that withstand real-world threats.
A longstanding advocate for meaningful, outcome-driven cybersecurity, David regularly shares insights on threat evolution, ransomware activity, cybercrime trends, and practical steps organizations can take to improve resilience. His published articles and speaking engagements reflect a consistent focus on demystifying cybersecurity for business leaders and empowering organizations to make informed, actionable decisions. Through his leadership, David supports RM Cyber’s mission to empower organizations to thrive securely.
