User:PhilRichards

Chief Security Officer for Fundtech Corporation, a banking and payment software company. Global responsibility for all information and physical security for the enterprise. Scope of responsibility includes the Enterprise with 18 major offices worldwide and global employee population of over 1,500. Created and implemented Information Security Policy and Standard documentation sets based on ISO 27001/2 standards. Led the organization to clean PCI DSS and SSAE SOC2 compliance certifications. Implemented Security Awareness Training for the Enterprise. Training delivered to over 90% of the organization with a pass rate of 99.6%. Maximized operational stability, regulatory compliance, and security oversight by establishing first Change Advisory Board to handle change management and change controls. Eliminated electronic and physical vulnerabilities by implementing and re-architecting enterprise-level, disaster resistant, multi-tiered security infrastructure. Implemented comprehensive compliance security audit framework based on ISO 27001/2/5, COBIT, ITIL, COSO, NIST, and other criteria. Led the organization through GLBA risk assessment and remediation. Improved the organizations risk profile through risk assessment and remediation work in the areas of Identity and Access Management, Log and Patch Management, Security Awareness, Intrusion Detection and Prevention, Penetration testing and Application Vulnerability Assessment work.