Eric has experience providing cybersecurity, IT risk and internal control solutions. He has been with the firm since 2012 and has experience on a variety of engagements, specializing in Sarbanes-Oxley compliance risk assessments and testing. Other areas of expertise include IT internal audit, IT and cybersecurity risk assessments, IT advisory projects, and system and organization controls (SOC) reporting. He serves clients in various industries, with a focus in higher education.
In addition, he:
– Performs regulatory compliance assessments (e.g., IT SOX, HIPAA) for organizations by conducting risk reviews and control assessments, overseeing control testing activities and gap analyses to identify deficiencies within internal controls and related processes and provides recommendations for compliance
– Evaluates internal controls over financial reporting to ensure adequate control design and operating effectiveness
– Performs IT risk assessments
– Conducts a variety of IT audits and consulting projects to evaluate risks associated with information technology and provides recommendations to address risk areas
– Assists in the preparation of annual IT audit plans
– Performs cybersecurity audits and assessments to assist organizations mature their overall cybersecurity environment