Joan has provided internal control services since 2004. She provides risk management and compliance services to clients in many industries and specializes in manufacturing, technology, and retail. Her key focus is on process improvement work and managing audits under the requirements of Sarbanes-Oxley (SOX) section 404. Joan uses risk assessments to scale and evaluate client risks before reviewing key processes within these work streams to identify control objectives and control activities. She assists her clients with creating, conducting, and reviewing testing results and documentation, and recommending solutions to remediate gaps and efficiency opportunities. Prior to joining Moss Adams, Joan provided internal audit services at a Big Four firm.

Selected Publications

  • "How to Build and Strengthen Risk Management Plans" (Moss Adams Insight, December 2019)
  • "Cybersecurity Threats Are Always Present—Here’s How You Assess Your Risk" (San Diego Business Journal, October 2018)
  • "Navigating SOX Compliance: What You Need to Know for Your Growing Business" (San Diego Business Journal, July 2018)

Selected Speaking Engagements

  • Strategies to Strengthen Risk-Response Systems
    (Moss Adams Webcast, September 2019)
  • How to Adopt the New Lease Standard and Maintain SOX Compliance
    (Workiva User Conference, Nashville, TN, September 2018)
  • Navigating SOX 404a: How to balance risk, budget and operational goals
    (Moss Adams Webcast, May 2018)
  • The Four Internal Controls You Must Get Right
    (Moss Adams Webcast, February 2018)
  • SOX 404a: A Realistic Approach
    (Moss Adams webcast, February 2016)

Professional Affiliations

  • Member, California Society of Certified Public Accountants
  • Member, Institute of Internal Auditors


  • BSBA, accounting, California State University, Sacramento