Managing Partner, SVP of Operations, Sr. Executive IT Auditor (CISA, QSA, CRISC, MCPM, CISM, CDPSE)

Jerry Hughes, a founding member of Compass IT Compliance, LLC, has over 35 years of experience helping companies become compliant with internal, industry and government regulations such as PCI-DSS, Sarbanes-Oxley, HIPAA, and GLBA. Mr. Hughes, a Certified Information Systems Auditor (CISA), Qualified Security Assessor (QSA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), and Certified Data Privacy Solutions Engineer (CDPSE) has extensive IT auditing experience, especially within the financial industry and the retail sector. He carries an undergraduate degree in Applied Mathematics for Engineers and a minor in Computer Science from the University of Rhode Island.

Mr. Hughes has helped develop Compass IT Compliance, LLC into one of the nation's premier consulting firms in the areas of IT governance, assurance, security, and compliance services. His team of CISA-certified auditors, certified in the international framework called Control Objectives for Information and related Technologies (COBIT), offers a full suite of IT compliance services within the banking, insurance, retail, higher education, and healthcare sectors.

Managing Partner, SVP of Sales

William DePalma is a founding member of Compass IT Compliance, LLC. Prior to founding Compass IT Compliance, William spent eight successful years as Manager of Sales for the Lighthouse IT Compliance Group. In this role, William was instrumental in driving year over year revenue gains and positioning Lighthouse IT Compliance Group as one of the premier IT security consulting firms in the northeast.

At Compass IT Compliance, William is responsible for driving strategic revenue growth while overseeing national sales and marketing efforts. Under his direction, Compass IT Compliance has consistently experienced double-digit year over year sales growth while ensuring the highest level of customer satisfaction to the growing list of clients. William brings real-world knowledge of customer challenges with over 17 years of sales and customer support experience having previously worked for Lighthouse Computer Services, Sullivan and Cogliano, and Cabletron.

William holds a Bachelor of Science in Business Administration from University of New Hampshire and is a retired reservist in the United States Coast Guard with 21 years of successful service.

Director of Business Operations (CISA, CISSP)

Adam Cravedi is an original member of Compass IT Compliance, LLC. He brings over 26 years of experience in the information technology arena including financial, higher education, small business, and healthcare industries to the Compass team. He holds a Masters of Science in Management Operations and Information Technology and a Bachelors of Science in Electrical Engineering both from Worcester Polytechnic Institute.

Mr. Cravedi has worked in the IT services arena since 1989. As a Senior IT Auditor for Lighthouse Computer Services, he headed up the PCI ASV scanning and internal/external vulnerability and penetration testing functions for the organization. He also contributed to PCI, IT, and information risk and security audits. His work includes the role of Information Security Officer where he developed an in-depth information security program that included security awareness training as a baseline for information security for the organization and their employees. He also has extensive experience in planning, directing, and implementing large scale information technology projects including WAN/LAN infrastructure, information systems architecture, VMware, storage, security, and compliance. Additionally, Mr. Cravedi has been involved in the planning, coordinating, and execution of several business continuity and disaster recovery projects. 

Mr. Cravedi holds several industry certifications including ISC² Certified Information Systems Security Professional (CISSP), ISACA’s Certified Information Systems Auditor (CISA), GIAC Web Application Penetration Testing (GWAPT), GIAC Mobile Security (GMOB), GIAC Certified Incident Handler (GCIH), and GIAC Information Systems Professional (GISP).

VP IT Audit (CISA, QSA, CDPSE)

Derek Boczenowski is VP of IT Audit with Compass IT Compliance. Derek has over 20 years of IT experience in a variety of vertical markets, including financial services, higher education, and state/local government. Prior to joining Compass IT Compliance, Derek was the VP of Technology for a credit union in Massachusetts with approximately $700M in assets under management. With an MBA in Technology Management as well as industry leading certifications, such as being a Certified Information Systems Auditor (CISA), Qualified Security Assessor (QSA), and Certified Data Privacy Solutions Engineer (CDPSE), Derek works with clients of all sizes and in all vertical markets to help them identify gaps in their IT security strategies and provide relevant, attainable solutions to ultimately mitigate their overall risk.

Derek has spoken at numerous conferences throughout his career, including the Fiserv national conference and New York Banker’s Association Annual Meeting, and is recognized as a thought leader in the field of information technology and information security.

VP IT Security

Jesse Roberts is VP of IT Security with Compass IT Compliance. Jesse Roberts is an information technology & cybersecurity professional with over 20 years of experience in the field. He is a former professor of Network Engineering & Cyber Security at the New England Institute of Technology. Jesse holds multiple industry level certifications & has been invited to speak at events across the country, including the Rhode Island Joint Cyber Task Force Meeting. His presentations often include real-time live hacking demonstrations. He's mentored students at various local colleges through cybersecurity clubs, and recently started mentoring high school and middle school students in information security through the CyberPatriot program.

In his role with Compass IT Compliance, Jesse leads the organization's IT Security, Digital Forensics, and Incident Response teams. He is responsible for implementing innovative techniques and strategies to drive growth and improvement in these areas.

Director of Human Resources and Administration

Jennifer Barrett is the Director of Human Resources and Administration at Compass IT Compliance. With a background in education, Jennifer has a Bachelor of Arts from Amherst College and a M.Ed. from the University of Hartford. Prior to joining Compass IT Compliance and following a new career path, Jennifer was a full-time educator.

Jennifer was the first member of Human Resources at Compass IT Compliance and was tasked with building out the entire function. A SHRM certified HR professional, Jennifer has initiated benefits, performance reviews, onboarding, compliance initiatives, and training opportunities within the company. Jennifer has tremendous pride in both the talent she has helped cultivate in the Compass team and the fact that Compass IT Compliance has been named “A Best Place to Work in Rhode Island” in multiple years. In addition, Jennifer has developed procedures for quality assurance and leads our team that ensures the consistent quality that Compass IT Compliance customers have come to expect. In her administration role, Jennifer leads all back-office administration which includes leading the accounting team and being a liaison for management for financial reporting. Energized by new challenges, Jennifer enjoys taking on new roles and responsibilities. Her ability to collaborate and problem solve make her an important part of the management team.