Dan has over seven years of information security, control and IT audit experience in a number of industries including cloud services, financial institutions, healthcare, insurance, and manufacturing. Dan’s experience includes SOC 1, 2, and 3 examinations and SOC readiness assessments, ISO 27001 Certification Audits, Microsoft Data Protection Requirements (DPR) assessments, IT risk assessments, IT audits, security & privacy assessments (GDPR, HIPAA/HITECH), and Sarbanes-Oxley 404 IT compliance reviews. Dan holds a Bachelor of Arts degree in Political Science from Ohio State University and a Master of Accounting degree from Southern Illinois University. Dan is a Certified Information System Security Practitioner (CISSP), a Certified Information Systems Auditor (CISA), a Qualified Security Assessor (QSA), and an ISO 27001 Lead Auditor. Dan is a member of the Information Systems Audit & Control Association (ISACA) and (ISC) 2.