An entrepreneur and virtual CISO for the last 15 years, I have been consulting organizations on Information Security, IT Governance, and Risk Management. I am currently the Vice President of SD ISACA, President of SD OWASP, and a SANS Mentor.
Many talk about gaining strategic advantage through IT- I execute by weilding COBIT, Balanced Scorecards (BSC), Lean Six-Sigma, ITIL, and my passion for information security. Equally comfortable engaging in board-level discussions or application testing, I bring the business acumen necessary to engage executive management while maintaining the deep technical knowledge necessary to lead, manage, and engage on technical issues. Web Application Testing, Risk Assessments, Security Assessments, Regulatory Gap Analysis, and Governance are the focus areas I spend most my time on.
* Covered on Forbes Magazine
* Credit Union Business Magazine
* Credit Union Magazine
* CU Times
* Insurance & Technology Review
* CMP Media
* Storage Inc.
* Security Practitioners Conference 2009
* SecureIT 2008
* SecureIT 2009
* Government Technology Conference (GTC)
* Many of the Credit Union Leagues
Security Assessment, Strategic Security Consulting, Security Dashboard & Strategy Map Development, Regulatory Gap-Analysis including HIPAA, NCUA, FFIEC, OTS, OCC, PCI, GLBA, & Sarbanes Oxley (SOX). Frameworks including: COBIT, ITIL, NIST, OCTAVE, & ISO. Penetration Testing, E-Commerce Assessments, IT Alignment, Risk Management, & Performance Measurement.
Feel free to contact me directly,
Free Security Assessment Request and Contact Info
Do not be mislead by Fear, Uncertainty and Doubt (FUD)! By consolidating regulatory compliance efforts, leveraging a control framework, using a leak portfolio, aligning with business goals, and executing with financial prudence — security initiatives achieve maximum ROI.