EVP & CISO
Federal Reserve Bank
Results-oriented executive information security leader with over 22 years of broad cyber security and enterprise risk management experience and a proven record of success. Expert in managing cost-effective, high-performance, information technology security programs that balance enterprise risk with legislative and regulatory compliance in the support of key business objectives. Skilled in all aspects of the “protect, detect, respond” cyber security triad and applying the proven tenets of “defense-in-depth.” Effective communicator skilled at gaining business buy-in to enterprise security initiatives. Expert at creating effective security awareness programs, conducting risk and security control assessments for the information assets of the organization. Customer-focused with the development and implementation of enterprise security policies and in the recommendation of security controls in light of value vs. threat vs. vulnerability vs. cost. Skilled at conducting reviews to assess the adequacy of access privileges based on need to know.
Specialties: Expert in applying cost-effective risk-based principles to large cybersecurity programs to support of key business objectives • Solid business managerial (strategic planning, budget, negotiation, project and process management) skills • Expert at threat and vulnerability management and the conduct of periodic vulnerability assessments of enterprise assets • Solid interpersonal and communication skills – adaptable to the audience
Key takeaways: Identify that cyber security is a global risk and a global concern – Information sharing can decrease impact if willing to work intra-sector and inter-sector/within the country and internationally / Information sharing to help identify root cause and techniques used in a cyber incident / Information sharing supports government relations/compliance/global operations – set global […]