Meet Mr. Anderson, AAFCPAs’ Certified Ethical Hacker

AAFCPAs’ reminds clients that October is cybersecurity awareness month in the United States.

AAFCPAs performs Information Technology (IT)/Cyber Security Assessments which help clients identify risks from the use of technology that could potentially cause information loss and/or financial and reputational harm to your organization.

Our assessments include Vulnerability & Penetration testing performed by Mr. Anderson, MCSE, CCNP, CISSP, CEH, AAFCPAs’ Certified Ethical Hacker. Mr. Anderson is a “white hat” ethical security hacker and business continuity advisor with extensive experience in the development & implementation of security-focused audit and control programs.

We purposefully conceal Mr. Anderson’s identity to help ensure his effectiveness in attempting physical security breaches.

Listen as Mr. Anderson shares strategies bad actors use to gain access to sensitive information:

Related Content:

  • IT & Cybersecurity HealthCheck – This 360-degree checklist is designed to assist clients in surfacing, understanding, and managing priority IT risks that may be mitigated to better secure your organization’s Personally Identifiable Information (PII), Electronic Health Records (HER), client records, proprietary information, and/or other sensitive data. Clients are encouraged to utilize this resource in discussions with your IT services group and as part of a more comprehensive Enterprise Risk Management Program.
  • eBook: Best Practices for Reducing IT & Cyber Risks – AAFCPAs’ IT Security professionals outline the most prevalent risks and share critical security measures to mitigate these risks.
  • Videos: AAFCPAs’ Certified Ethical Hacker (CEH), Mr. Anderson, shares strategies bad actors use to gain access to sensitive information.
  • Eye on Cyber: A Day in the Life of an Ethical Hacker – In this instructive podcast, AAFCPAs’ IT Security professionals James Jumes and Vassilis Kontoglis go behind the disguise with our in-house Certified Ethical Hacker, who reveals a day in the life of an Ethical Hacker. We review some of the covert tricks and techniques he uses! Additionally, we review the key cyber risk categories that are part of comprehensive Cyber Risk Assessments, as well as best practice recommendations to immediately enhance your cybersecurity posture.

About the Authors

James Jumes
James joined AAFCPAs in 2013 to lead the Business Consulting Services practice. He has more than 25 years of experience working with information technology systems and diverse business operational processes. James is highly experienced in IT controls and assurance, SOX 404, and Service Organization Control (SOC) reports: SOC 1 (SSAE 18), SOC 2, SOC 2+ and 3 attestation reporting.  James developed a unique methodology to delivering SOC reporting services, and he is an AICPA-approved Peer Review SOC Specialist, assisting peer review teams to review SOC 1, 2, 2+ and 3 engagements. He is a HITRUST Certified Common Security Framework (CSF) Practitioner, providing HITRUST CSF self-assessment consulting, or SOC 2 + HITRUST for assessing against the evolving compliance landscape shaped by HITECH, HIPAA, CMS and various other federal, state and business requirements.
Vassilis is a leader in AAFCPAs’ Business Process & IT Consulting Practice. He has 20+ years’ proven experience providing business intelligence, productivity, information risk management, and cybersecurity solutions. He is a critical resource in keeping clients and the firm on the forefront of transformative technologies while mitigating risks that come along with these advancements. Vassilis leads the delivery of Robotic Process Automation solutions at AAFCPAs. He understands the unique requirements to achieve RPA success, including proper design, planning, implementation, and governance. He works collaboratively with clients and cross-functional teams, and leverages his deep understanding of enterprise information systems, business logic, and structured inputs to automate rote processes and increase operational efficiency. Vassilis is also the leader of AAFCPAs’ automation center of excellence (CoE), an internal team that streamlines automation output, provides structure, and helps scale automation through the firm.
Mr Anderson - Ethical Security Hacker
Mr. Anderson is a “white hat” ethical security hacker and business continuity advisor with extensive experience in the development & implementation of security-focused audit and control programs.   He is highly sought-after for his expertise in: security architecture reviews; penetration/vulnerability testing; business resiliency, disaster recovery and other remediation strategies; hardware system selection and configuration; cloud application security reviews; and wireless security assessments. Mr. Anderson has a deep understanding of industry standards and extensive experience with internal controls evaluation, COSO, COBIT, ITIL, ITGCC, GLBA audits, and ISO, SOX 404 compliance requirements, including all phases of planning, evaluation, documentation, testing and remediation.