Grant Duncan



Managing Director

Grant Duncan is a managing director in the Cyber Risk practice of Kroll, based in the New York office. Grant helps clients understand data breach response and the complexities that arise when notifying large populations of individuals, both before and after an event occurs. He has worked on some of the largest data breach events.

Prior to joining Kroll in 2012, Grant worked in varying positions within the information technology industry, including as a web developer and advising the small and medium-sized business market on cloud computing implementation.

Professional Experience
  • Data Breach Response
    Grant has helped thousands of clients in their data breach response efforts, ranging in size from small to millions of impacted individuals, across many industries.
  • Data Breach Preparedness
    Grant works with clients before they have an incident to understand process and procedures around data breach response.


Education and Certifications 
  • M.S., Computer and Information Systems Security/Information Assurance, Boston University
  • B.S., Business Administration, American University Kogod School of Business
  • Certified Information Privacy Professional (CIPP)


Affiliations and Memberships
  • International Association of Privacy Professionals (IAPP)
  • Professional Liability Underwriting Society (PLUS)
  • InfraGard

  • Spanish – Fluent

Cyber Risk

Incident response, digital forensics, breach notification, managed detection services, penetration testing, cyber assessments and advisory.

Identity Theft and Breach Notification

Services include drafting communications, full-service mailing, alternate notifications.

Pharmaceutical Recall Notifications

Kroll's expertise handling large-scale notifications for highly regulated industries helps you increase efficiencies and meet regulatory requirements.