An experienced leader of cyber & information security risk, governance, and management with over 25 years of overall professional working experiences; more than 15 years of senior level information security management responsibility, including executive and board level program and risk reporting.
A diverse background and in-depth knowledge, skills, and abilities in enterprise level strategy and management of cyber, information security, operational risk, enterprise architecture, IT services, project and systems/software development life cycle, e-commerce, cloud computing, operational technology (OT), disruptive tech, digital banking, and core business systems. This is all supported by a traditional engineering discipline with a focus on business objectives and the customer.
Expertise include security strategies, tactics, and risk management – development, implementation and management of frameworks; policies; programs; operations and incident response; threat and risk assessments; and assurance services.
Industry certifications include: C|CISO, CRISC®, CGEIT®, CISM®, CISA®, CDPSE™, CISSP®-ISSMP® and actively participates in the local, national, and international information security, IT governance and risk community.