Work experience

Work experience

Throughout 18+ years of progressive management success, W. Mark Brooks has gained a reputation as a leader in the emerging field of global information risk, security, and compliance.  He brings to the table a rare breadth of experience that encompasses managing governance, systems, staff, budgets, and operations in diverse areas of business.

Mark enjoyed a long and successful tenure with Eli Lilly & Company, a $20 billion international leader in the pharmaceutical industry that has spanned a broad range of IT and business areas progressing from hands-on systems analysis to Director, Enterprise Information Risk and Compliance.  As a rising expert in the field, he was selected to spearhead the strategic direction and manage the global information compliance, risk, privacy, and security division in IT.  He was the leader and driving force behind several best-in-class, award-winning programs, management models, and enterprise governance frameworks.  He was also selected as Lilly’s first-ever IT Compliance Champion and IT Privacy Officer and served as the Global Lilly IT leader on numerous business initiatives and senior governance bodies.  While serving as Director, Information Technology, Toxicology, he successfully led IT efforts in response to Lilly’s first and only targeted FDA IT audit.  His leadership efforts have substantially improved the overall state of IT compliance and control in support of Lilly’s business goals.

Mark has demonstrated success spanning multiple business disciplines, in addition to the information risk domain.  He received multiple performance-based promotions at Eli Lilly and Company in Human Resources, Application Development and Support, and Corporate Infrastructure Services.

Prior to his 18-year tenure with Eli Lilly, Mark enjoyed success as a U.S. Army Officer in the 101st Airborne Division (Air Assault) .  While in the Army, he held management authority with budgets as high as $20 million annually, 60 direct reports, and was responsible for wartime readiness operations in support of the 20,000-member 101st Airborne Division.

Mark holds a Bachelor’s degree in Computer Science from Ball State University, post-graduate training in DOD systems engineering, and numerous industry-leading certifications including Certified Information Security Manager (CISM), Certified Information Privacy Professional (CIPP), and Certified Corporate Compliance and Ethics Professional (CCEP).

He provides industry leadership as a member of several organizations including Society of Corporate Compliance and Ethics Professionals, International Association of Privacy Professionals, International Systems and Accounting Controls Association, and The Information Risk Executive Council.

Mark has had the privilege of being exposed to a wide variety of cultures and peoples around the world.  Having traveled and lived abroad, he now currently resides with his family in Indianapolis, Indiana.

Education and Certifications

Ball State University, Bachelor of Science in Computer Science

Certified Information Security Manager - CISM

Certified Information Privacy Professional - CIPP

Certified Corporate Compliance and Ethics Professional - CCEP



With progressive management success spanning both IT and business disciplines, and significant enterprise level information risk and compliance leadership experience, W. Mark Brooks has the expertise and leadership experience to meet your business needs.  He is especially adept in providing insightful business strategies that reduce the risk of breach, and secure the flow of company information.

Highlights of Mark's background and accomplishments:

  • Reducing corporate exposure to information risk through leading regulatory, security, and privacy compliance initiatives.

  • Establishing effective programs, strategies, governance, and controls to effectively manage enterprise risk.

  • Authoring best-practice corporate policies and procedures related to regulatory compliance and information security.

  • Founding and directing best-in-class IT Sarbanes-Oxley (SOX) and IT Privacy Compliance programs.

  • Highly credentialed: CISM (Certified Information Security Manager); CIPP (Certified Information Privacy Professional); CCEP (Corporate Compliance and Ethics Professional).

  • Enabling a company's outsourcing strategy by ensuring that the information used in those business operations maintains its integrity, is accessible by the right people, and is managed in accordance with applicable regulations and laws.

  • Protecting sensitive company information from theft, misuse, or breach by employees, contractors, or business partners.

  • Improving business performance by driving adoption of industry control frameworks to include COBIT, ITIL, and Quality Management Systems.