Meet Craft Compliance
Security is too important to waste time and money.
Craft Compliance is here to focus on the critical path — the minimum number of steps to complete critical tasks and provide the best value for our clients.
-
We focus on individual organizations and their specific IT security needs, without the fluff and extras.
-
We talk to our clients ourselves, without the middlemen.
-
We do the work ourselves, without the inflated hours and expenses.
-
And finally, we seek to truly understand what our clients need, without the cookie-cutter approach.
We are consistently increasing the effectiveness of the services we perform while saving time and expenses for our clients.
BRETT CZAJKOWSKI
EDUCATION
Miami University, B.S., Accounting,
Masters of Accountancy
CERTIFICATIONS
Certified Information Systems Auditor (CISA)
Certified Public Accountant (CPA)
17 YEARS OF EXPERIENCE
Brett Czajkowski has 17 years of experience in Information Technology, Security, and Compliance. Brett is currently the signing partner on a security and privacy attestation report and has performed various cybersecurity-focused assessments and implementations. Brett has coordinated global Internal Audit, IT, and Security functions to scope, execute and report on internal controls, with a focus on SAP and Sarbanes-Oxley compliance. Brett has also served as the external IT auditor on dozens of public and private company audits. As a project leader with both business process and IT control experience, Brett is able to bridge the typical divides between business and IT functions to communicate with impact across stakeholder groups with different backgrounds.
BEN GORDON
EDUCATION
Indiana University, B.S., Finance
M.S., Information Systems
CERTIFICATIONS
Certified Information Systems Auditor (CISA)
11 YEARS OF EXPERIENCE
Ben Gordon is an Information Technology and Security professional with over a decade of experience. He holds a Bachelor's of Science in Finance and a Master's of Science in Information Systems from Indiana University Bloomington and maintains the Certified Information Systems Auditor (CISA) certification. Previously, Ben has worked to deliver on and manage a variety of IT compliance and security-related services, across multiple industries, including IT general controls projects for Sarbanes Oxley and JSOX compliance, IT maturity assessments, common security framework-based assessments, implementations, and attestation engagements, as well as technical penetration testing services.
NAT SHERE
EDUCATION
Columbia University, M.S. Computer Security
Yeshiva University, B.A. Mathematics
CERTIFICATIONS
Certified Web App Penetration Tester (CWAPT)
10 YEARS OF EXPERIENCE
Nat Shere has worked in the security industry for ten years, specializing in ethical hacking and secure coding. He has experience both as a security consultant and as a product security engineer. As a consultant, he has performed penetration testing services for small and large companies alike and presented findings to both technical teams and executive leadership. As a product security engineer, Nat has worked with development teams throughout the development lifecycle to ensure that security requirements and testing are a priority. Finally, Nat has college-level teaching and public speaking experience, which has helped him learn to discuss complex, technical issues in a plain, clear manner.
ALYSSA AHMANN
EDUCATION
The Ohio State University
B.S, B.A, Management Information Systems
CERTIFICATIONS
Certified Information Systems Auditor (CISA)
Certified Data Privacy Solutions Engineer (CDPSE)
11 YEARS OF EXPERIENCE
Alyssa Ahmann has 11 years of experience in risk management, security, compliance, and privacy. She graduated from The Ohio State University with a degree in Management Information Systems. Previously, she has led the integration of a multi-million-dollar SAP implementation into an existing SOX framework, implemented and managed SOC1 and SOC2 attestation reporting, cybersecurity framework implementation and gap analysis, privacy compliance assessments, regulatory compliance, and process assurance for IT systems and IT-dependent business processes. She is also an active leader and the current past president of the Central Ohio ISACA chapter, supporting networking and education opportunities for professionals responsible for information security and compliance across all industries.