Joanna Lyn Grama is a Senior Consultant at Vantage Technology Consulting Group. Joanna has more than 15 years of experience in higher education with a strong focus in law, IT security policy, compliance, governance, and data privacy. Most recently, Joanna was Director of Cybersecurity and IT Governance, Risk and Compliance programs at EDUCAUSE where she directed programs designed to help improve higher education information security governance, compliance, data protection, and privacy postures. In addition to being a prolific author and frequent public speaker on information security and privacy issues, she is also author of the textbook, Legal Issues in Information Security, 2 ed (2015). Joanna has a law degree from the University of Illinois College of Law, and is a Certified Information Systems Security Professional (CISSP) and Certified Information Privacy Technologist (CIPT).