Download PDF

Summary

Dynamic executive leader offering over 13 years of experience implementing and promoting information security, privacy, risk management, and compliance programs responsible for driving customer and shareholder trust, confidence and loyalty.  

Extensive experience providing information security assurance to prospects, customers, and external auditors, as well as obtaining and maintaining accreditation for multiple information security, privacy, and regulatory compliance programs.  

Work History

2013Present

Senior Manager, Global Compliance

CSG International

Design, implement and monitor the global compliance program for the world's second largest communications industry business support solutions (BSS) provider.

  • Advise business leaders at all levels across the enterprise on the applicability of regulations, industry standards, risk mitigation options, and the crafting of policies and procedures to safeguard the integrity and reputation of the company while simultaneously improving the security, and/or efficiency the control environment reducing risks and costs. 
  • Determine need, source, implement, and manage information systems to facilitate compliance risk analysis/reporting and improve program management or related business process efficiency.
  • Monitor domestic and international regulatory policy development and enforcement trends related to business operations.
  • Perform due diligence for strategic transactions and relationships; mergers, acquisitions, venture partners, sales agents, and other third parties.
20072013

Director of Compliance

ViaWest, Inc.

Responsible for directing the information security compliance program for one of the largest privately-held colocation, managed services, and cloud providers in North America with 24 data centers in five states. 

  • Supported sales teams by participating in prospect calls/meetings to describe/promote information security program design and assurance for products, services, and corporate information security practices.
  • Administered incoming prospect and customer due diligence questionnaires and customer audits.  Supported clients in a broad range of verticals including; finance/banking, medical, aerospace, defense, telecommunications, and eCommerce which allows me to understand and speak to the specific needs of clients in their terminology.
  • Envisioned and implemented self-service portal allowing clients to obtain assurance reports and guidance documents at their convenience.
  • Anticipated customer needs and strategically obtained third party attestation reports, certifications, or accreditations to various regulations, standards or guidelines such as; SSAE 16/SOC 1, HIPAA-HITECH, PCI DSS,  AICPA's Trust Principals (SOC 2/3), NIST 800-53.  Expanded program from 1 to 5 accreditations over 6 years.
  • Translated, advised, and educated/trained on IT security, data privacy, and compliance issues for business operations, sales, and technical staff. 
  • Assisted in drafting and negotiating agreements, proposal requests, and vendor agreements. Create policies, procedures, and other white papers and promotional documents. 
20062007

Consultant

Aorist Enterprises, Inc

Contracted to cable industry non-profit organization for software development project management, business analysis, and technical writing.

  • Collaborated with stakeholders to establish project scope, solution design, project plans and delivery schedules for XML/SOAP based web services. Monitored projects and stakeholder expectations, tracked and resolved issues.
  • Responsible for GUI design, writing technical specifications, business requirements, product marketing presentations and release notices.
20042006

Sr. Technical Writer

STW Fixed Income Management

Created requirements documents, test plans, flow diagrams, and internal communications for in-house software development team at fixed income portfolio management firm specializing in high net worth clients. (Minimum portfolio size of 30 million with 11.2 billion in total asset management.)

  • Coordinated software development projects and provided system analysis, infrastructure documentation, and process mapping as well as system environment definition, analysis, planning and implementation. Reported to Chief Information Officer.
  • Successfully lead effort to obtain organization's first service auditor's examination and report (SAS-70) covering control objectives and activities over in-house developed portfolio management information systems and related processes.
20022004

Product Design & Delivery Business Analyst

Digital Insight

Gathered and defined requirements for ASP Internet banking and bill payment products at financial services company.

  • Composed business, functional specifications and end user instruction manuals. Created vision and scope documents, use cases, flow diagrams, and internal communications. Reported to VP of product design and delivery. 
  • Explained complex product features to varying audiences. Required comprehension of complex business rules with the ability to identify and manage resolution of major issues that could be political, controversial or technical in nature.

Certifications

2015Present

CCEP - Certified Compliance and Ethics Professional

Compliance Certification Board (CCB)


2013Present

GLEG - Law of Data Security and Investigations

Global Information Assurance Certification (GIAC)


2013Present

CRISC - Certified in Risk and Information Systems Control

ISACA License #1316993


2014Present

CIPP - Certified Information Privacy Professional

International Association of Privacy Professionals (IAPP)


Education

20142016

BS Business Administration

Capella University

pending Fall 2016

1994

AA Liberal Arts

Allan Hancock College