My name is Keith and I have over 15 years of Information Risk Management experience, helping organizations with their Information Security needs.
While this experience has been valuable, I want to focus less on what can go wrong, and more on what could go right.
So I'm interested in learning more about opportunities in business process improvement, user experience, product management, and more.
Some things I've done as an Information Risk Management consultant include:
- Orchestrated IT Security Assessments with an eye toward HIPAA Compliance Standards
- Developed methodologies for IT control owners to evaluate controls that resided within their vendors’ processes
- Evaluated requests for exceptions to Information Security Policies and Standards for companies
- Trained client personnel on audit procedures for IT General Controls
- Identifed requirements to comply with the California Consumer Privacy Act of 2018
- Conducted third-party risk assessments to ascertain that vendors had appropriate security and privacy controls
- Interviewed process owners and wrote procedures for E-Business (marketing) processes
- Assessed processes supporting email campaigns, social media, and mobile platform development
- Conducted controls rationalization exercises, as a foundation for IT audit plans and risk mitigation strategies
My clients have included AmerisourceBergen, Biogen, Capital One, DirecTV and Johnson Controls.
M.
B.
A.
in Finance from Temple University
B.
A.
in Public Policy from University of Pittsburgh
Active CRISC (Certified in Risk and Information Systems Control) certification.
Thank you for your time and consideration!
Whatsapp
