Executive Vice President and Chief Information Security Officer, The Federal Reserve System
Results-oriented executive information security leader with over 22 years of broad cyber security and enterprise risk management experience and a proven record of success. Expert in managing cost-effective, high-performance, information technology security programs that balance enterprise risk with legislative and regulatory compliance in the support of key business objectives. Skilled in all aspects of the protect, detect, respond cyber security triad and applying the proven tenets of “defense-in-depth.” Effective communicator skilled at gaining business buy-in to enterprise security initiatives. Expert at creating effective security awareness programs, conducting risk and security control assessments for the information assets of the organization. Customer-focused with the development and implementation of enterprise security policies and in the recommendation of security controls in light of value vs. threat vs. vulnerability vs. cost. Skilled at conducting reviews to assess the adequacy of access privileges based on need to know.
Specialties: Expert in applying cost-effective risk-based principles to large cybersecurity programs to support of key business objectives • Solid business managerial (strategic planning, budget, negotiation, project and process management) skills • Expert at threat and vulnerability management and the conduct of periodic vulnerability assessments of enterprise assets • Solid interpersonal and communication skills – adaptable to the audience.