Greater Chicago Area
* Results-driven and innovative executive with sound experience in information security management, leading strategic initiatives to safeguard organizational assets and mitigate cyber threats. * Expertise in security compliance, risk management, incident response, and emerging technologies. Adept at establishing a robust risk management framework that enhanced resilience to emerging threats and ensured compliance with industry standards. * Highly skilled in implementing a continuous monitoring security operations program, leveraging threat intelligence and advanced analytics to detect and mitigate security vulnerabilities proactively. * Proven success in fostering a culture of security awareness and resilience across diverse teams, driving innovation, and achieving measurable results. Areas of Expertise: * Cybersecurity Strategy & Leadership * Cybersecurity Program Development * Security Operations * Team Building & Leadership * Cross-Functional Collaboration * Enterprise Risk Management * Business Resiliency Selected Career Achievements: * Managing and directing a global security team of 35+ professionals across multiple countries and regions, including administering overseas direct reports to ensure consistent and efficient operations. * Led and coordinated the global infrastructure and operations, supporting 27 offices in 10 countries while directing a diverse team of 60 employees, ensuring operational excellence across all locations. * Enhanced network infrastructure by overseeing connectivity, security measures (firewalls, routing, switching, IPT, VC, and VPNs), business continuity, disaster recovery, and managing internal and external hosting environments. * Created a data protection program to prepare for GDPR Compliance. * Built a Global Service Line to provide security and infrastructure services to select strategic clients
Partnering with regional business leadership and integrated with BISOs to guide and direct responses to security risks, ensuring timely remediation and identifying root causes alongside BISO and Client Services teams. Liaised cross-functionally with Executive Leadership, Finance, Recruiting, Communications, Learning and Development, IT, and cross-functional teams to drive initiatives in security consulting, awareness, and operational improvements. Reporting security risks, incidents, and program updates to the Thoughtworks Board, and ensured alignment with Cyber & Information Security threats, risks and company priorities. ▪ Overseeing global operations for 10,500 employees across 48 offices in 18 countries, reporting directly to the Chief Talent & Operating Officer, and part of the Operational Leadership Group at Thoughtworks. ▪ Developed and drove the security roadmap, set clear goals and objectives, and prioritized projects that aligned with the company's IT strategy and global execution targets. ▪ Worked closely with the CIO and IT organization to manage internal security initiatives, Application security program, safeguarding critical internal business systems, data and assets.
Led the establishment and oversight of the enterprise risk management function, focused on identifying and proactively mitigating strategic, operational, and cybersecurity risks across the organization. Performed in-depth risk assessments and gap analyses to uncover vulnerabilities and inefficiencies within critical business processes, systems, and controls, driving continuous improvements. Delivered frequent and detailed reports to executive leadership and the board of directors, providing insights into the organization's risk exposure and the progress of ongoing mitigation efforts. ▪ Designed and implemented comprehensive risk management frameworks, methodologies, and tools to effectively assess, monitor, and manage risks at an enterprise-wide level. ▪ Partnered with key business units to formulate and execute tailored risk mitigation plans and control strategies to address identified risks and reduce potential impacts on the organization.
Okta CISO Forum brings cybersecurity leaders together to exchange insights on how to address dynamic Identity challenges and the ever-evolving threat landscape.