About Jan Hertzberg

Jan is a senior IT audit, cybersecurity and data privacy educator and consultant with more than 30 years of experience providing IT risk, Cyber Security, and Privacy compliance services to clients in the higher education, Not-For-Profit, healthcare, insurance and technology industries. He has extensive experience identifying and managing internal control and technology risks as well as recommending solutions that apply cybersecurity and privacy frameworks (including NIST, ISO, and CIS Critical Security Controls) to implement leading practices.
Jan has held leadership positions with Fortune 100 companies, including IBM, Abbott, Ernst & Young LLP and others.  He has conducted numerous cybersecurity and privacy risk assessments, HIPAA security and privacy risk assessments/gap analysis, System and Organization Control (SOC) attestations, external and internal penetration assessments, social engineering, and compliance readiness reviews.

Jan is a frequent speaker and moderator on cybersecurity and privacy topics and has written and lectured extensively on cybersecurity risk assessments, board and senior management oversight matters and technology risk.