Partners and Associates

Partners and Associates

A hybrid team of accountants, advisors, and consultants whose collective experience and diverse backgrounds ignite ideas, reconfigure approaches, and recommend strategies and innovative solutions for our clients.

St. Paul

8665 Hudson Blvd. North
Lake Elmo, MN 55042

Tel: 952.230.6487



Areas of Focus

  • Information security risk assessment, vulnerability assessment, and audit
  • Information security program (ISP) governance and policy development
  • Cybersecurity assessments (NIST, FFIEC, and other regulatory/statutory frameworks)
  • Critical Security Controls for Effective Cyber Defense (V5.1)
  • Regulatory compliance (GLBA, FFIEC, SOX, HIPAA, HITRUST, and PCI DSS)
  • NIST 800-30 and 800-53
  • Network engineering and security architecture, design, testing, planning, implementation, and support
  • Technologies (routers and switches, firewalls/IPSs and VPNs, and LAN and WAN protocols)
  • Customer services

Dennis M. Johnson, CISSP

Master Consultant - Cybersecurity Services

Dennis Johnson is a master consultant in Wipfli’s cybersecurity services consulting practice. He has been a valued contributor and advisor in helping to ensure Gramm-Leach-Bliley Act (GLBA) regulatory compliance for numerous financial institutions since 2002. Dennis also assists other clients in the areas of the Health Insurance Portability and Accountability Act of 1996 (HIPAA), Health Information Technology for Economic and Clinical Health Act (HITECH), Sarbanes-Oxley Act of 2002 (SOX), and Payment Card Industry Data Security Standard (PCI DSS). For cybersecurity, he has developed and delivered assessment services for many regulatory and statutory requirement frameworks.

With Dennis’s use of methodologies grounded in the National Institute of Standards and Technology (NIST) and International Organization for Standardization (ISO) standards, along with detailed attention to specific guidance from regulatory bodies such as the Federal Financial Institutions Examination Council (FFIEC) and Health Information Trust Alliance (HITRUST), clients are assured of a comprehensive information security framework rubric for issues that are identified and solid steps for moving forward with confidence related to the security of their critical systems and information.


  • Certified Information Systems Security Professional
  • Cisco Certified Internetwork Expert (inactive)

Professional Memberships and Activities

  • International Information System Security Certification Consortium [(ISC)2] - Member
  • InfraGard - Member