Photo of Josh Deitch
Josh Deitch


Josh has practiced public accounting since 2008. He has over ten years of experience with System and Organization Controls (SOC) and HITRUST readiness assessments and audits, business process and IT consulting, compliance audits, attestation examinations, and internal controls evaluations.

Josh serves clients across a variety of industries, such as technology, health care, transportation and logistics, telecommunications, and financial services. He also serves various business structures, including publicly traded entities, private businesses, third-party administrators, and government agencies. Josh performs oversight of audit and assessment teams, IT and business process controls evaluation, and quality assurance reviews of reports.

Josh is an active member in the firm’s Technology Communications & Life Sciences and Health Care groups, and regularly provides educational training and insights on SOC 1-2-3, HITRUST, and privacy topics. He helps companies understand the scope of their business needs so they can navigate the complexities of IT compliance, regulations, standards, and frameworks.

External Publications

  • "Reduce Risk and Due Diligence Effort With a SOC for Supply Chain Examination" (Portland Business Journal, August 2020)

Selected Speaking Engagements

  • SOC 2 Criteria (Security, Availability, Confidentiality, Privacy and Processing Integrity)
    (YouTube, June 2021)
  • How to Select the SOC Audit That is Right for You
    (YouTube, June 2021)
  • SOC for Supply Chain
    (YouTube, June 2021)
  • SOC for Cybersecurity
    (Portland IIA & ISACA Chapter, November 2017)

Professional Affiliations

  • Member, Information Systems Audit and Control Association


  • BBA, accounting, Harding University

Insights from Josh Deitch