Jeff Lemmermann is a Senior Information Assurance Consultant specializing in evidence-based security audits, enterprise risk assessments, and compliance readiness (NIST, HIPAA, GLBA, CIS, PCI, SOC, CMMC). He served over 30 years of time in information security, and is a CISA, CPA, and CITP with experience spanning public accounting, executive leadership (CIO/CFO), and security consulting. Jeff focuses on practical, defensible security improvements that connect technical controls to operational processes, helping organizations reduce risk, demonstrate control effectiveness, and build maintainable information security programs. Jeff's memberships include the Information Systems Audit and Control Association, American Institute of CPAs, and the Wisconsin Institute of Certified Public Accountants. He enjoys speaking on and writing articles related to information security topics whenever the opportunity presents.