Biographical Info

With an acute awareness that information security is a commodity like water or electricity, I understand that it is often only missed when it is gone. As an experienced leader, I have amassed a wealth of experience as well as numerous hard and soft skills. Equally important to these skills and experience are the personas my teams and I adopt to navigate an organization’s culture in achieving our mission. These personas are leveraged accordingly to exemplify • A journalist who uses credible facts and data to tell a story to an audience that may not understand a complex topic or situation • A law enforcement officer who must know and apply rules to others accountable for following them • A teacher that bridges gaps in understanding and works through others to transform a community • A salesman who influences people to embrace and adopt what they need, even if they may not want it • A legislator that brokers decisions and establishes policies that prescribe what is required, and collaborates with others on how to achieve it. The bedrock on which I build solutions and achieve results starts with ownership, accountability, and governance, and balances a combination of people, process and technology to achieve positive outcomes for an organization’s risk standing. Having served in numerous roles across verticals, both as a consultant and in industry for large enterprises and small business, I adopt the principle that context is king in influencing effective information risk management. Core Competencies include: Leadership Development IT Governance and Strategy Regulatory Compliance – SOX, PCI-DSS, FFIEC Executive and Board-tailored Communications Cybersecurity Security Event/Incident Management Security solutions for transformative technologies Context-based Information Risk Management Security and Network Architecture IT and Vendor/Cloud Risk Management ITIL, ITSM, COBIT Application Security Organizational Change Management With an acute awareness that information security is a commodity like water or electricity, I understand that it is often only missed when it is gone. As an experienced leader, I have amassed a wealth of experience as well as numerous hard and soft skills. Equally important to these skills and experience are the personas my teams and I adopt to navigate an organization’s culture in achieving our mission. These personas are leveraged accordingly to exemplify • A journalist who uses credible facts and data to tell a story to an audience that may not understand a complex topic or situation • A law enforcement officer who must know and apply rules to others accountable for following them • A teacher that bridges gaps in understanding and works through others to transform a community • A salesman who influences people to embrace and adopt what they need, even if they may not want it • A legislator that brokers decisions and establishes policies that prescribe what is required, and collaborates with others on how to achieve it. The bedrock on which I build solutions and achieve results starts with ownership, accountability, and governance, and balances a combination of people, process and technology to achieve positive outcomes for an organization’s risk standing. Having served in numerous roles across verticals, both as a consultant and in industry for large enterprises and small business, I adopt the principle that context is king in influencing effective information risk management. Core Competencies include: Leadership Development IT Governance and Strategy Regulatory Compliance – SOX, PCI-DSS, FFIEC Executive and Board-tailored Communications Cybersecurity Security Event/Incident Management Security solutions for transformative technologies Context-based Information Risk Management Security and Network Architecture IT and Vendor/Cloud Risk Management ITIL, ITSM, COBIT Application Security Organizational Change Management