Skip to main content

Enter Keywords

Jill Martucci | CISA, SSCP, CCSFP
Principal Security Consultant

Jill Martucci | CISA, SSCP, CCSFP

Jill is a principal with FoxPointe Solutions Information Risk Management Division of The Bonadio Group. 


IT and IS internal and external auditing

What do you focus on?

My focus is on internal and external auditing of information technology and information security practices and controls. My experience includes auditing and consulting for organizations across all lines of service, executing programs predicated upon ensuring that client controls are functioning.

Expertise in Control Regulations / Regulators and Frameworks

  • Vendor Risk Management
  • HITRUST CSF Security and Privacy Framework
  • System and Organization Controls for Service Organizations (SOC 1, SOC 2, and SOC 3 Reports)
  • National Institute of Standards and Technology (NIST)
  • Sarbanes-Oxley Act (SOX 404)
  • New York State Department of Financial Services (NY DFS)
  • Federal Financial Institutions Examination Council (FFIEC)
  • Gramm-Leach-Bliley Act (GLBA)


  • Industry content for several sources, including Bonadio Insights and Leading Age New York

Recent Presentations

  • Co-Presented with HITRUST’s VP of Assurance on the HITRUST CSF Security and Privacy Framework
  • Niagara Frontier Chapter Construction Financial Management Association
  • New York State Association of School Business Officials (NYSASBO) Education Summit & Expo
  • Niagara County Technology and Cybersecurity Forum


  • Certified Information Systems Auditor (CISA)
  • Systems Security Certified Practitioner (SSCP)
  • Certified Common Security Framework Practitioner (CCSFP)


  • Buffalo Business First 30 Under 30 honoree (2019)


  • Information Systems Audit and Control Association (ISACA)
  • International Information Systems Security Certification Consortium (ISC2)
  • Health Information Trust Alliance (HITRUST)
  • Member, InfoTech Western New York
  • Rotary Club of Hamburg