Professional Overview

‍

Erik has over 15 years of experience in the information technology, cybersecurity, governance, risk, and compliance (GRC), and internal audit disciplines and has worked extensively across multiple industries throughout his career. He has in-depth knowledge of risk, controls, and testing related to business processes, ITGCs and application controls and has assisted organizations in developing vendor risk management processes to assess the risk related to outsourced services and vendors with access to sensitive data. He has extensive knowledge and expertise across the third-party compliance and attestation sector with experience in SOC 1 and SOC 2 examinations, HITRUST, HIPAA/HITECH,ISO 27001, and GDPR.

Prior to joining Elliott Davis, Erik was a Governance, Risk, and Compliance Director for Finvi where he was responsible for building and maintaining risk management programs. Erik’s experience also includes IT compliance and attestation services at Ernst & Young, Grant Thornton, and Schellman and Company.

Education, Credentials and Special Training

• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Auditor (CISA)
• Certificate of Cloud Security Knowledge (CCSK)
• ISO/IEC 27001 Lead Auditor
• Certified Common Security Framework Practitioner (CCSFP) (HITRUST)
• Advanced SOC for Service Organizations Certificate
• Certified HITRUST Quality Professional (CHQP)
• B.A., Accounting, Columbus State University

‍