James Jumes, MBA, M.Ed.
James joined AAFCPAs in 2013 to lead the firm’s Business Process & IT Consulting practice. He leads a team of senior technologist in the delivery of solutions related to business intelligence & productivity, information risk management and cybersecurity, and special IT attestations, compliance, and certifications. His goal is to strengthen the links between people, process, and technology, which increases productivity and drives business growth.
James has more than 30 years of experience working with information technology systems and diverse business operational processes. He is highly experienced in IT controls and assurance, SOX 404, and System and Organization Control (SOC) reports: SOC 1 (SSAE 18), SOC 2, SOC 2+ and 3 attestation reporting. James developed a unique methodology to delivering SOC reporting services, and he is an AICPA-approved Peer Review SOC Specialist, assisting peer review teams to review SOC 1, 2, 2+ and 3 engagements. He is a HITRUST Certified Common Security Framework (CSF) Practitioner, providing HITRUST CSF self-assessment consulting, or SOC 2 + HITRUST for assessing against the evolving compliance landscape shaped by HITECH, HIPAA, CMS and various other federal, state and business requirements.
James has authored two books and various whitepapers focusing on Windows NT Security Audit and Control. His advisory experience includes systems strategy planning, application selection studies, and implementation of enterprise resource planning (ERP) solutions. In addition, James is an adjunct professor at Boston College and a visiting lecturer at Bentley University.
- Grant Thornton, LLP – Senior Manager
- CCR, LLP – Partner
- IBM Business Consulting Services – Associate Partner
- Deloitte – Senior Manager
- KPMG – Senior Manager
- PwC – Director
- Lehigh University – Master of Business Administration
- Boston College – Bachelor of Arts and Master of Education
- AAFCPAs 2021 CFO Survey Report: Insights from CFOs on Data Use
- AAFCPAs eBook: Best Practices for Reducing IT & Cyber Risks