Kerry L. Shackelford CPA LLC ("klsCPA") is a CPA firm expert in audits and assessments of IT internal controls, information security, and privacy practices. Kerry Shackelford, Founder, is a Certified Public Accountant (CPA) licensed in Colorado with over 20 years of experience in the IT audit profession.

 

He is also a skilled security and privacy professional having previously held certifications as a Certified Information Systems Auditor (CISA, 1986 to 2024), HITRUST Alliance Common Security Framework (CSF) Practitioner (2012 only), and a Payment Card Industry (PCI) Data Security Standard (DSS) Qualified Security Assessor (QSA, 2010 to 2012).

 

Kerry has also served the IT auditing profession for approximately 15 years as a volunteer for two AICPA task forces:

 

• AICPA Electronic Commerce Assurance Services Task Force—Kerry joined this AICPA team as Arthur Andersen’s representative and served and contributed for several years. He co-authored the criteria underlying today’s AICPA Trust Services SOC 2 audits as well as the WebTrust program for Certification Authorities.

 

• AICPA Privacy Task Force—Kerry was a charter member of this team and served throughout its entire existence from 2001 to 2013. He co-authored the Generally Accepted Privacy Principles or “GAPP,” which are the criteria for a SOC 2 Privacy audit. klsCPA is expert in assessing privacy programs and completing SOC 2 Privacy audits.

 

Kerry holds a Bachelor of Arts degree in Computer Science from Baylor University and completed one year of post-graduate work in Accounting. He is a member of the Colorado Society of Certified Public Accountants (COCPA) and the American Institute of Certified Public Accountants (AICPA).

​