Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Work Background
VincoSenior Consultant
Dec. 2023Senior Consultant | vCISO/vCTO at VINCO
In my role as a Senior Consultant at VINCO, I deliver expert guidance as a virtual Chief Information Security Officer (vCISO) and virtual Chief Technology Officer (vCTO), focusing on optimizing technology strategies and fostering organizational innovation. I spearhead strategic initiatives that enhance competitiveness in a rapidly evolving landscape, collaborating closely with teams to implement adaptable solutions tailored to each organization's unique needs.
CentrilogicDirector, Security Practice
Aug. 2021 - Jan. 2024Toronto, ON
CentrilogicCISO as a Service Security Advisor - Security Practice
Aug. 2021 - Mar. 2023Mississauga, Ontario, CanadaEncourages the continual development of a culture of Security and Compliance with industry standards and key internal policies. Provides leadership, guidance, documentation and advice to clients and staff to achieve compliance requirements through education, training and general business engagement. - Advise internal management or business partners on implementing or operating compliance programs.
- Information Security Assessment and Advisory - Capability Maturity Assessment, Implementation Plans and - Remediation Roadmaps allow the increased ability to raise the Security posture based on risk management and operational requirements. - Provide employee training and documentation on compliance-related topics, policies, or procedures.
- Assist internal or external auditors in compliance reviews.
- Monitor compliance systems to ensure their effectiveness.
- Oversee internal reporting systems such as corporate compliance hotlines and inform employees about these systems.
- Keep informed regarding pending industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes.
- Design or implement improvements in communication, monitoring, or enforcement of compliance standards.
- Verify that all firm and regulatory policies and procedures have been documented, implemented, and communicated.
- Direct the development or implementation of compliance-related policies and procedures throughout the business.
- Advise technical professionals on the development or use of compliance or reporting tools.
- Develop or implement compliance plans.
- Review or modify policies or operating guidelines to comply with changes to standards or regulations.
KortextDirector IT Services
Feb. 2019 - Aug. 2021Program & Project Management • Initiate and manage the projects or programs working with product owners in the development of appropriate business cases, risk assessments, budget management, resources, timeframes, Control projects, provide business guidance, identify any deviations to work plan and recommend corrective action to rectify potential issues/constraints that may impact project success. Prepare and deliver executive-level presentations on assigned projects to keep management apprised of project status, major issues, scope changes, resource changes and milestone achievements. Process Improvement • Plan, support and provide training and coaching in process improvement and other improvement methodologies to executives, associates, and others. • Act as a proactive strategic resource to product owners by identifying, planning, implementing process engineering and other improvement strategies and projects. Drive process-engineering and process/product ownership efforts across the businesses to continually improve productivity targets while fostering a process engineering culture change. Quality Assurance • Develop, inspire, and grow a geographically distributed team responsible for all aspects of functional and non-functional testing, partnering with multiple engineering teams to develop and support features, platforms, and new technologies • Ensure quality for our three products • Build innovative ways to automate and expand our software testing • Compile, analyze, and present test results—ultimately driving and constantly improving product quality • Work closely with product managers to understand requirements and oversee the writing and execution of test cases • Closely manage timelines and resources by understanding priorities and team members' strengths
Uzado Inc.Information Security Advisor
Jun. 2018 - Feb. 2019Responsible for assessing the enterprise-wide information security management program • Conducted IS Risk Assessment for general, system, process and application controls • Remediation recommendations and plans aligned with IT Strategy • Reviewed IT policies and procedures to ensure compliance with best practices. • Accountability for the areas of compliance, security awareness, risk management and integration across the organizational • Developed the Third-Party Risk Assessment process • All assurance activities related to the availability, integrity and confidentiality of company systems and data and integrity. • Established relationships with business leads, interpreted and applied standards, policies, and best practices. • Analyzed threats and vulnerabilities and designed the remediation process and requirements. • Promoted use of security requirements for System Development Life Cycle across multiple IT projects.
Giant TigerDirector Information Security Risk Management
Feb. 2017 - Jan. 2018Responsible for maintaining and advancing the enterprise wide information security management program
● Conducted IS Risk Assessment for general, system, process and application controls
● Reviewed IT policies and procedures to ensure compliance with best practices.
● Accountability for the areas of compliance, security awareness, risk management and integration
across the organizational
● Developed the Third Party Risk Assessment process
● Process owner of all assurance activities related to the availability, integrity and confidentiality of
company systems and data and integrity.
● Established relationship with businesses leads, interpreted and applied standards, policies, best
practices.
● Analyzed threats and vulnerabilities, and designed the remediation process and requirements.
● Promoted use of security requirements for System Development Life Cycle across multiple IT
projects.
PwC CanadaSr Manager Information Security Operations & Risk Management Internal Firm Services
Jul. 2015 - Feb. 2017Ontario, CanadaProviding direction and technical guidance on matters involving IT Risk Management and Information Security. Measuring and monitoring effectiveness of security controls in support of Internal Security Policies, Client requirements as well as Regulatory or Legal requirements. Managing a team of Risk and Information Security Operations Professionals. • Provides IT Security and Risk Management guidance and support to cross-disciplinary teams including Information Technology, Human Resources, Firm Security, General Counsel and other lines of service. • Communicate risk management practices, risk assessment results, remediation activity advisory to C-Level /Senior Executives • Ensures compliance is met for PwC Information Security Policy, ISO27001:2013 certification, Client related and other regulatory or firm compliance requirements. Interprets information security policies, standards, and other requirements as they relate to a specific internal information system, and assists with the implementation of these and other information security requirements • Lead coordination of Information Security audits, including annual Information Systems Quality Control, ISO27001:2013, Global ITS Compliance and client related audits. • Act as lead security consultant on information technology risk, information security, IT incident investigations. • Developed Information Security Statement and policies aligned to the Global Information Security Policy and mapping to the risk management • Leads projects and associated meetings to ensure that IT Security deliverables are achieved on schedule and within budget.
PwCInformation Security Risk Management Consultant - PWC
Apr. 2014 - Jul. 2015Information Security Project Management – West Cluster Shared Services - Information Security Shared Services Consolidation and Integration. Multiple Countries - USA, Canada, Mexico, Brazil across multiple territories ensure the successful implementation of global services. Accomplishments include:
• Territory consolidation for the following 7 systems and processes – web application security assessment, source code review, SEIM, IDS/IPS, vulnerability management and reporting, ePolicy Orchestrator, Security Operations Centre, Firewall Monitoring
• Information Security Risk Assessments for multiple projects and vendor reviews.
• Project/Application/Infrastructure - Security Risk Assessments and process improvement
• Policy, Standard and Process development
• Coordinating the Global consolidation of local services • Assisted with the ISO21k/2013 Certification requirements and audit.
One of a Kind Consulting SolutionsContract - IT Security, Risk Management
Feb. 2014 - Jul. 2015OSFI / ISO / COBIT Assessment HomEquity
• Capability maturity assessment
• Technology risk and control compliance review Sentry Metrics subcontracts:
ISO Security Assessments PM – Legal Firm - BLG
Info. Sec Advisory & Planning – Energy – Liberty Utilities
OSFI Assessment of Controls –Insurance - EGI
Information Security design effectiveness review - ISO, NIST – VHB
FirstOntario Credit UnionDirector, Information Technology & Security
Oct. 2011 - Feb. 2014stoney creekProvide hands on technical vision and leadership for developing, supporting and monitoring IT security initiatives. As the subject matter expert with the overall responsibility for proactively safeguarding all technology services and data against security breaches and vulnerability issues. Responsible for reviewing IT systems projects and auditing existing systems from a security and risk perspective and directing the administration of security policies, activities, and standards. My role includes education of staff and corporate management regarding IT and Security.
One of a Kind Consulting Solutions Inc.Director of Information Technology & Security Consulting
Jan. 2010Contract Manager vCISO, vCTO, IT Security, Risk Management, Security & Technology Project Manager
Responsible for maintaining and advancing the enterprise wide information security management program
IS Risk Assessment for general, system, process and application controls Reviewed and develop IT policies and procedures to ensure compliance with best practices.
Accountability for the areas of compliance, security awareness, risk management and integration across the organization
Developed the Third-Party Risk Assessment process
Process owner of all assurance activities related to the availability, integrity and confidentiality of company systems and data and integrity.
Established relationship with businesses leads, interpreted and applied standards, policies, best practices.
Analyzed threats and vulnerabilities and designed the remediation process and requirements.
Promoted use of security requirements for System Development Life Cycle across multiple IT projects.
Project Management – West Cluster Shared Services - Information Security Shared Services Consolidation and Integration. Project/Application/Infrastructure - Security Risk Assessments and process improvement
Assisted with the ISO21k/2013 Certification requirements and audit.
OSFI / ISO / COBIT Assessment - HomEquity
Capability maturity assessment Technology risk and control compliance review
February 2014 – July 2015 Strategic Consulting, including Risk Management, Information Security Operations, Information Technology planning, Audit, Regulatory Requirements & Business Continuity/ Disaster Recovery Planning
Sentry Metrics subcontracts: ISO Security Assessments PM – Legal Firm - BLG
Intch is a Professional Networking App for the Future of WorkSee more people like Deborah on Intch
300k+ people
130+ countries
AI matching
Get Intch if you'd like to
1027651 people
16
Senior .Net Developer
27
Software engineer @ GFT Canada
15
Consultant @ Deloitte
68483 people
16
Software Quality Assurance Lead - LATAM @ CIBC
18
Inventory Analyst @ Lowe's Home Improvement
20
Python|Automation|Backend @ Self-Employed