15+ years of solid experience in the IT field including application and desktop support, database and application development, data analysis and database administration, quality assurance, e-discovery and ESI processing, forensic data collection and IT litigation support.  Ability to successfully apply hands-on IT experience and knowledge to IT Audit roles.  Current and past clients include entities in the following industries: Aerospace Systems, Virtual Data Rooms, Cloud Services, Communications and Electronics, Data Centers, Debt Collection, Direct Mail Processing, Financial Services, Food Processing, Gift Card Distribution, Healthcare Management, Re-Insurance, Managed IT Services, Mass Media, Payroll and Retail.

SOC 1

Examine controls at a Service Organization which are relevant to user entities’ internal control over financial reporting.

HIPAA

Examine compliance with the requirements of the Health Insurance Portability and Accountability Act (HIPAA) of 1996 to protect the privacy and security of individual’s health information.

FISMA

Examine compliance with the requirements of the Federal Information Security Management Act (FISMA) of 2002 to protect government information, operations and assets against natural or man-made threats

AGREED UPON PROCEDURES

Perform an audit on specific tests and procedures and report on the results.

MARS-E

SOC 2

Evaluate the suitability of the design and operating effectiveness of controls to meet the criteria for the Trust Services Principles and Criteria for Security, Availability, Processing Integrity, Confidentiality, and Privacy.

HITRUST

GLBA

Examine compliance with FFIEC guidelines and GLBA 501(b) to help protect customer data security and privacy.

SOX ITGC TESTING

PUBLICATION 1075

Examine compliance with the requirements of Publication 1075 for safeguarding and protecting federal tax returns and return information.