Erica Hightower is a senior manager with the KraftCPAs risk assurance and advisory services practice. She is responsible for planning, coordinating, and executing integrated internal audit engagements, consulting on internal controls, evaluating the effectiveness and efficiency of business processes, and assisting in the audit risk assessment and audit plan development process.
Erica provides system and organization controls (SOC) attestation engagements for clients in a variety of industries, including healthcare, logistics, technology (managed IT and cloud services), and manufacturing/wholesale/distribution (MWD). She also provides HIPAA gap assessment and risk analysis consulting, as well as HITRUST Common Security Framework (CSF) validated assessment engagements for healthcare organizations.
She has additional experience providing internal audit, IT audit, Sarbanes-Oxley (SOX) testing, HITRUST and Health Insurance Portability and Accountability Act (HIPAA) engagements, and FFIEC IT regulatory audits for financial institutions.
Involvement
- American Institute of Certified Public Accountants
- Tennessee Society of Certified Public Accountants
- The Institute of Internal Auditors
- ISACA
- Member of Women in Technology of Tennessee (WiTT), Scholarship Committee, Outreach Committee, Mentor Program