Joseph Kraemer


IT Audit Reviews
Security Risk Assessment
Application Security Reviews
Vendor Risk Assessments
Information Protection
Business Continuity Planning
Vulnerability Assessments
Privacy Shield Assessment

Joseph Kraemer

Offensive Security Consultant


Joseph is an ambitious, positive, enthusiastic individual excited about working on complex engagements and challenging environments where he excels at leveraging his technical and analytical skills to achieve success.


  • Performed mitigation testing on discovered vulnerabilities using virtual machines
  • Supported compliance engagement with review of privacy principles for Privacy Shield certification
  • Designed, modified, and implemented corporate system security configuration standards for Windows and Red Hat servers/operating systems
  • Ensured corporate and customer networks followed industry best security policies
  • Performed vulnerability Scanning using Nessus tool
  • Utilized Kali Linux penetration testing tool
  • Developed a customer facing document for third party penetration tests and vulnerability
  • Executed detailed audit plans for IT systems and business processes supporting regulatory requirements
  • Conducted detailed interviews with process owners for IT audit testing
  • Performed ongoing quality assurance reviews to ensure the accuracy of role-based access provisioning
  • Identified segregation of duties conflicts and determined controls in place or should be established to mitigate business risk
  • Performed ITGCC audits to ensure companies are in compliance with industry best practices and internal policies
  • Developed audit programs, performed audit procedures, completed workpaper documentation, and prepared audit reports.
  • Consulted with clients to identify, analyze, and evaluate business issues and identify operational improvement opportunities
  • Technical IT Audit experience across a variety of platforms and systems, including Windows, Unix, and Linux


  • University of Minnesota
    BaS – Bachelor of Applied Sciences,
    Minor in Computer Science


  • Offensive Security Wireless Professional (OSWP)
  • Digital Forensics Basics – FEMA: EC AWR139 0062
  • Secure Software – FEMA: EC AWR178 0059
  • Present Information Risk Management – FEMA: AWR177 0059


    • Office


    • Email