Jacob Staack, CISM

Jacob Staack, CISM

Governance, Risk & Compliance Expert

Failed audits. DoD contracts on hold. HIPAA violations. I fix these exact problems for small & mid-size companies nationwide

Schedule Your Free Gap Assessment See How I Help

(850) 901-7203 • jacobstaack@gmail.com

Turn Compliance Nightmares Into Protected Growth

You’re facing one of these right now:

  • Cyber insurance renewal denied
  • HIPAA or CMMC audit looming
  • Vendor questionnaire you can’t answer
  • Recent breach or near-miss

Targeted GRC solutions that solve these triggers immediately. No resume fluff — just real results for SMBs and mid-market companies like the ones I’ve already helped save $20K+ per year.

Compliance Solutions That Actually Work

🛡️

CMMC 2.0

DoD contracts on the line? I get you Level 1–3 ready with gap analysis, POA&M, and documentation that passes assessment first time.

🏥

HIPAA

Protect PHI, pass OCR audits, and keep your healthcare practice running. Full risk analysis + policies I’ve implemented at Eglin AFB medical facilities.

📊

SOX & GLBA

Financial & insurance firms: internal controls, Gramm-Leach-Bliley compliance, and board-ready reporting that satisfies regulators and insurers.

🔄

NIST RMF / FISMA

Government & DoD experience (Active Secret clearance). Full A&A, continuous monitoring, and POA&M management.

GRC Services Built for Your Triggers

Risk Assessments & Gap Analysis

----------------------

NIST, ISO 27001, SOC 2, HIPAA, CMMC — delivered with heatmaps and clear roadmap.

BCP / BIA / DRP / IR Retainer

---------------------

Business Continuity, Business Impact Analysis, Disaster Recovery, and Incident Response — exactly as emphasized in my MS Cybersecurity program.

Fractional vCISO Retainer

---------------------

Ongoing strategic leadership, board reporting, policy development, and compliance oversight without hiring a full-time CISO.

Real Problems I’ve Already Solved

01

Saved a private K-12 school $20K annually

Implemented full cybersecurity framework, policies, and risk mitigation — all while maintaining compliance.

02

Cut MDM costs 45% ($7K+/month)

For Air Force-scale operations (5,500+ devices) while strengthening encryption and compliance controls.

03

Led HIPAA-compliant infrastructure at Eglin AFB

Medical group — telephony, IoT, RFID, and PHI protection under NIST RMF and DoD standards.

04

Directed $1B-scale operations with zero compliance gaps

State of Florida and DoD environments — continuous monitoring, POA&M, and stakeholder board reporting.

Credentials That Back Every Recommendation

  • CISM – Certified Information Security Manager
  • PMP – Project Management Professional
  • CASP+ Security+, Cloud+, AWS Cloud Practitioner, Java
  • Active Secret Clearance
  • DoD 8140.3 CompliantIAM & IAT Level III, IASAE Level II

Education

M.S. Cybersecurity & Security Management
University of West Florida
Emphasis: GRC, BCP, BIA, DRP, IR, NIST RMF

M.B.A. Operations
ITT Technical College

Emphasis: Operations & Process Improvement

GRC Insights

7 Things Every Business Should Watch in 2026

CMMC 2.0, compliance deadlines, and breaches — how to prepare before the panic hits.

Read →

CMMC vs HIPAA vs GLBA – Which Deadline Is Hitting You Next?

Clear comparison table + 30-day action checklist.

Read →

How I Cut MDM Spend 45% While Strengthening DoD Compliance

Real case study from my Air Force work.

Read →

Connect on LinkedIn for daily GRC tips → Jacob Staack LinkedIn

Let’s Fix Your Compliance Trigger

(850) 901-7203 • jacobstaack@gmail.com

Archives