LinkedIn facebook twitter vimeo instagram
Print Friendly, PDF & Email
 

Meet Mr. Anderson, AAFCPAs’ Certified Ethical Hacker

Posted on

AAFCPAs’ reminds clients that October is cybersecurity awareness month in the United States.

AAFCPAs performs Information Technology (IT)/Cyber Security Assessments which help clients identify risks from the use of technology that could potentially cause information loss and/or financial and reputational harm to your organization.

Our assessments include Vulnerability & Penetration testing performed by Mr. Anderson, MCSE, CCNP, CISSP, CEH, AAFCPAs’ Certified Ethical Hacker. Mr. Anderson is a “white hat” ethical security hacker and business continuity advisor with extensive experience in the development & implementation of security-focused audit and control programs.

We purposefully conceal Mr. Anderson’s identity to help ensure his effectiveness in attempting physical security breaches.

Listen as Mr. Anderson shares strategies bad actors use to gain access to sensitive information:

Related Content:

  • IT & Cybersecurity HealthCheck – This 360-degree checklist is designed to assist clients in surfacing, understanding, and managing priority IT risks that may be mitigated to better secure your organization’s Personally Identifiable Information (PII), Electronic Health Records (HER), client records, proprietary information, and/or other sensitive data. Clients are encouraged to utilize this resource in discussions with your IT services group and as part of a more comprehensive Enterprise Risk Management Program.
  • eBook: Best Practices for Reducing IT & Cyber Risks – AAFCPAs’ IT Security professionals outline the most prevalent risks and share critical security measures to mitigate these risks.
  • Videos: AAFCPAs’ Certified Ethical Hacker (CEH), Mr. Anderson, shares strategies bad actors use to gain access to sensitive information.
  • Eye on Cyber: A Day in the Life of an Ethical Hacker – In this instructive podcast, AAFCPAs’ IT Security professionals James Jumes and Vassilis Kontoglis go behind the disguise with our in-house Certified Ethical Hacker, who reveals a day in the life of an Ethical Hacker. We review some of the covert tricks and techniques he uses! Additionally, we review the key cyber risk categories that are part of comprehensive Cyber Risk Assessments, as well as best practice recommendations to immediately enhance your cybersecurity posture.

About the Authors

James Jumes
James Jumes, MBA, M.Ed.
James joined AAFCPAs in 2013 to lead the Business Consulting Services practice. He has more than 25 years of experience working with information technology systems and diverse business operational processes. James is highly experienced in IT controls and assurance, SOX 404, and Service Organization Control (SOC) reports: SOC 1 (SSAE 18), SOC 2, SOC 2+ and 3 attestation reporting.  James developed a unique methodology to delivering SOC reporting services, and he is an AICPA-approved Peer Review SOC Specialist, assisting peer review teams to review SOC 1, 2, 2+ and 3 engagements. He is a HITRUST Certified Common Security Framework (CSF) Practitioner, providing HITRUST CSF self-assessment consulting, or SOC 2 + HITRUST for assessing against the evolving compliance landscape shaped by HITECH, HIPAA, CMS and various other federal, state and business requirements.
Vassilis Kontoglis
Vassilis is a senior member of AAFCPAs' Business Process & IT Advisory practice with proven expertise in cyber security and IT risk assessments, data analytics and data visualization, and robotic process automation. He also has extensive expertise assessing IT general controls, and conducting System and Organization Control (SOC) attestations. He helps clients increase business process efficiency, effectiveness, and risk management.
Mr Anderson - Ethical Security Hacker
Mr. Anderson, MCSE, CCNP, CISSP, CEH
Mr. Anderson is a “white hat” ethical security hacker and business continuity advisor with extensive experience in the development & implementation of security-focused audit and control programs.   He is highly sought-after for his expertise in: security architecture reviews; penetration/vulnerability testing; business resiliency, disaster recovery and other remediation strategies; hardware system selection and configuration; cloud application security reviews; and wireless security assessments. Mr. Anderson has a deep understanding of industry standards and extensive experience with internal controls evaluation, COSO, COBIT, ITIL, ITGCC, GLBA audits, and ISO, SOX 404 compliance requirements, including all phases of planning, evaluation, documentation, testing and remediation.