Drew Hendrickson, CPA, CIPP

Shareholder, Information Security

Image of Drew Hendrickson, CPA, CIPP

University of North Carolina, Bachelor’s and Master’s degree in accounting

Drew Hendrickson, CPA, CIPP, draws on more than twelve years of experience as an information security professional and auditor to help clients manage their security program within the context of the business’ overall risk environment.​

Drew leads LBMC’s Information Security HITRUST & SOC practices. He has experience with regulatory compliance (ICFR, SOX), SSAE 18, SOC 1 reporting, SOC-2 reporting, GDPR readiness, HITRUST, ACAB certification, ISO 27001 certification, project management, systems implementation, healthcare consulting services including HIPAA risk assessments, PCI, FISMA, financial audits, and other various privacy and security consulting services.

Drew also works with clients regarding the overall information security environment and assists with recommendations related to not only regulatory and compliance standards, but also with the latest security standards.

Before joining LBMC, Drew worked at a national public accounting firm for over nine years. Drew left as a senior manager and served several external audits locally in Nashville in the healthcare, retail, utility, and manufacturing industries.  He helped to manage several teams at once (up to twenty) including one of the firm’s largest clients in North America with over thirty team member as the lead senior manager.

Drew attended the University of North Carolina Wilmington received his Bachelor's and Master's degrees in accounting.


  • Certified Public Accountant (CPA)
  • Certified Information Privacy Professional (CIPP)

Thought Leadership

How to Choose a HITRUST Assessor
What to Know about HITRUST 9.1