About Joe

Joe Layne is a partner in Marcum’s IT Risk Assurance and Advisory Services practice. He oversees IT audits for large commercial clients, including public and private businesses. He is an experienced Information Systems Auditor with dynamic information systems risk, compliance, and audit experience across external Big Four audit, internal audit and information technology.

Joe has worked in information technology as well as internal and external audit developing a unique perspective having experienced the client side as well as performing client services. This allows him to better bridge the gap between broad regulations and the realistic impact or implementation of IT risk and controls with clients.

He offers ongoing education for clients around risk mitigation as well as risk assessments and consulting around prevention strategies and procedures. He assists clients to develop protocols and internal controls for IT risk management.

Professional & Civic Affiliations

  • Information Systems Auditing and Control Association (ISACA)

Professional Designations

  • Certified Information Systems Auditor (CISA), ISACA
  • Certified Information Security Manager (CISM), ISACA
  • Certified Data Privacy Solutions Engineer (CDPSE), ISACA
Practice Focus

IT Risk Management
IT Governance
IT Security Assessments
IT Audits
IT Internal Audits
Sarbanes-Oxley Act (SOX)
SOC 1, 2, 3
HIPAA Security Rule
Internal Controls
PCI Compliance

Industry Focus

IT Audits
Risk Assessments and Mitigation
Public and Private Companies
Healthcare Organizations


Bachelor of Science, Information Studies
Florida State University