Anders Erickson, CISA, CISSP, CRISC

Risk Advisory Principal

Anders Erickson

Nobody wants to be up at night worrying about whether their data is protected. My goal is to help clients feel more confident in the security of their systems.


Anders assists clients in establishing a culture of security within their organization. He leads organizations through the process of identifying their cybersecurity risks and brings practical solutions to help manage and mitigate those risks.

When you work with Anders, you can expect him to take time to understand the cybersecurity challenges your organization faces, provide solutions that are tailored to your environment, and ensure you understand how your organization is affected by its cybersecurity risks.

Outside of work, Anders loves to spend time hiking with his family in the Boise foothills, practicing baseball with his son (who hopes to one day play for the Washington Nationals), or taking his wife on a date to their favorite Mexican restaurant. When he has some free time, he'll break out his Martin D1 guitar to play a little Eric Clapton or Led Zeppelin and reminisce about the days he played in a band.



  • Information Systems Audit and Control Association
  • International Information Systems Security Certification Consortium


  • Certified Information System Security Professional
  • Certified in Risk and Information Systems Control
  • Certified Information Systems Auditor


  • Master of Information Systems Management – Brigham Young University, Provo


Client Work

  • Leads the Eide Bailly cybersecurity services team, helping clients understand their cybersecurity risks and creating a plan for remediating weaknesses and managing ongoing risks.
  • Plans and executes assessments of IT security practices, risks and controls against organizational, industry and government standards.
  • Leads evaluations of logical and physical security, continuous monitoring programs, business continuity plans, change management processes and system implementation.
  • Leads readiness assessments to prepare both public and private clients for future third-party attestations related to IT security management and computer network defense.
  • Managed the execution of IT controls and security assessments for federal government agencies, including Department of Defense (DoD), Department of Homeland Security (DHS) and the Intelligence Community (IC). Scope of reviews included financial management and reporting, service organization assessments and compliance with Federal Information Security Management Act (FISMA). Supervised audit remediation activities through the development of Corrective Action Planning (CAP) processes.


Community Involvement

  • Boy Scouts of America