Paul J. Johnson, CPA
Partner
As a partner in Wipfli’s risk advisory services practice, Paul Johnson works with clients to assess, improve, and test their information security and risk management programs. He also helps clients determine their compliance with healthcare security requirements including HIPAA and HITRUST. In addition, Paul leads a team with extensive experience and qualifications to provide HIPAA risk assessments, HITRUST assessments, healthcare privacy and security policy development, and other security advisory services.
With over 25 years in the information technology (IT) and information security fields, Paul combines his various experiences with Wipfli’s methodologies and processes to provide clients with sound advice and services to improve their technical environments.
Certifications
- Certified Information System Security Professional
- HITRUST Common Security Framework Practitioner
- Certified Public Accountant
Professional Memberships and Activities
- American Institute of Certified Public Accountants (AICPA) - Member
- Information Systems Security Association (ISSA) - Member
- ISSA, Minnesota Chapter - Member
- International Information Systems Security Certification Consortium, Inc. (ISC2) - Member
Areas of Focus
- Information security consulting
- Risk assessments
- IT audits
- Healthcare security compliance
- Service Organization Control (SOC) reports
Industries
HealthcareEducation
University of Wisconsin-River Falls- Computer science and information systems
- Accounting
Recent Insights
Articles
How the HITRUST CSF version 11 release helps make your assessments easier
Feb 01, 2023
How HITRUST will help keep the national health data exchange secure
Dec 04, 2022
What is the new HITRUST i1 assessment, and do you need it?
Jan 11, 2022
Are you ready for your HITRUST validated assessment?
Dec 17, 2021
Hospitals and health systems: Cybersecurity, ransomware and how to prepare
Sep 16, 2021
7 signs you should switch your HITRUST® Authorized External Assessor
Aug 08, 2021
What is HITRUST inheritance and what are its benefits?
Jan 07, 2021
What is continuous auditing and how can you leverage it?
Mar 03, 2020
The service organization's path to HITRUST CSF Certification
Oct 07, 2019
The Path to HITRUST Certification: Five Reasons to Start Now
Apr 30, 2019
HITRUST vs SOC 2: Leveraging the Best Path to Assurance
Apr 21, 2019
Improve Your Ransomware Awareness and Defense
Mar 15, 2016
Has Cybersecurity Moved up the Priority List in Your Small Health Care Organization
Oct 21, 2015
Blogs
4 Budget-Conscious Health Care Security Tools
Mar 03, 2019
Webinars
Healthcare Connections: Healthcare Cybersecurity Compliance
Oct 21, 2022
Healthcare Connections: Healthcare Cybersecurity Compliance
May 18, 2021