Erica Hightower is a manager with the KraftCPAs risk assurance and advisory services practice. She is responsible for planning, coordinating, and executing integrated internal audit engagements, consulting on internal controls, evaluating the effectiveness and efficiency of business processes, and assisting in the audit risk assessment and audit plan development process.
Erica provides system and organization controls (SOC) attestation engagements for clients in a variety of industries, including healthcare, logistics, technology (managed IT and cloud services), and manufacturing. She also provides other consulting services, such as HIPAA gap assessment and risk analysis, as well as performing HITRUST Common Security Framework (CSF) Validated Assessment engagements for start-up healthcare organizations.
She has additional experience providing internal audit, IT audit, Sarbanes-Oxley (SOX) testing, HITRUST and Health Insurance Portability and Accountability Act (HIPAA) engagements, and FFIEC IT regulatory audits for financial institutions.
- American Institute of Certified Public Accountants
- Tennessee Society of Certified Public Accountants
- The Institute of Internal Auditors
- Member of Women in Technology of Tennessee (WiTT), Scholarship Committee, Outreach Committee, Mentor Program