Josh Schuler Email & Phone Number

Minneapolis, MN, US

• Served various clients as an independent cybersecurity and IT audit contractor
• Managed day-to-day operations of the business, including client relationship management, marketing, and administrative functionsInitiatives/Projects
• Managed the third-party risk management (TPRM) workflow for a mass media company with a newspaper ranked in the top 20 in the world by circulation
• Facilitated semi-annual user access review for application, database, and operating system components at the above mentioned media company
• Performed cybersecurity assessment work for multiple government entities focused on next generation 9-1-1 readiness
• Performed cybersecurity assessment work based on NIST 800-171 standards for a public safety communications consulting firm

Charlotte, North Carolina, US

• Performed cybersecurity risk assessments, cyber insurance reviews, and tabletop exercises for entities in the private sector
• Utilized a variety of methodologies and control frameworks, including NIST 800-53, NIST Cybersecurity Framework, ISO:27001, and CIS 20 to evaluate the security posture of client organizations
• Assisted clients with the development and implementation of the above mentioned frameworks
• Ranked risks and developed phased mitigation options specific to the client environment
• Assisted client's technical and non-technical staff in implementing or optimizing new cybersecurity capabilities, such as vulnerability management, incident response, and governance programs or initiatives
• Conducted interviews with key personnel across critical infrastructure entities to identify cyber risk

• Performed technology risk assessments and reviewed, documented, evaluated and tested information technology controls including change management, security, backup, and operations controls, in a wide range of computing.
• Observed, reviewed, documented, and tested key business process transactions, access controls, segregation of duties and automated controls for internal audit and SOC engagements
• Ensured the delivery of high-quality deliverables and compliance with quality assurance and independence policies on engagements covering SOC 1 and SOC 2 reports and readiness reviews
• Responsible for timely communications to RSM SOC leadership and clients on progress of client engagements
• Reviewed staff work papers and ensured quality of engagement files to support firm’s quality standards
• Assessed IT security policies, procedures, and controls of clients’ business applications, networks, operating systems, and other components of their technology infrastructure

Chicago, IL, US

• Planned and executed concurrent audits related to software development, ISO27001, GLBA, information security, access management, eBanking, and IT general controls at a client in the financial services industry
• Developed project plans, including scope of testing, scheduling interviews, documentation requests, and staffing
• Developed work programs and risk and control matrices to support controls testing
• Participated in business process controls testing for a client implementing an ERP solution
• Tracked metrics relevant to engagement economics, including comparison of budget vs. actual
• Assisted with client billing process

US

• Planned and executed a variety of risk management services, including IT security and privacy, IT general controls, IT SOX, SOC, and financial audit support
• Analyzed and assessed client environments related to IT governance, vendor management, workstation security, server security, application security, asset management, change management, business continuity and disaster.
• Managed full engagement life cycle, including planning and conducting fieldwork, discussing findings with client management during exit meetings, documenting work papers, and preparing written reports
• Conducted engagements both independently and while leading an engagement team
• Gained exposure to various security and control frameworks and regulations, including NIST, COSO, COBIT, ISO, SANS, SSAE 16, HIPAA, FFIEC, and GLBA
• Reviewed and provided feedback for staff-level work

US

Winona, MN, US

Winona, MN, US

Bachelor Of Science (B.S.), Accounting And Management Information Systems

Education record