David B. Email & Phone Number

Mesa, AZ, US

Rochester, New York, United States

• Lead a multinational IT compliance team, driving strategic initiatives and ensuring adherence to regulatory requirements, including SOX, across diverse geographic regions. Oversee daily operations, optimize processes.
• Led and managed a global team of 5 compliance and risk professionals, improving cross-functional collaboration, data reporting, and accountability in SOX IT compliance processes across multiple regions.
• Optimized team performance and operational efficiency, reducing workload through process improvements and better resource allocation, saving 100-300 hours per quarter.Implemented a strategic transition plan to migrate.
• Mentored and developed team members, providing ongoing coaching and professional development opportunities, resulting in enhanced skills, career progression, and consistently high-quality outputs.
• Developed and enforced robust compliance frameworks, policies, and procedures in line with SOX and industry standards to minimize risks and safeguard company assets.
• Conducted in-depth assessments of compliance systems and controls, identifying gaps and inefficiencies, and executing targeted action plans to enhance processes and mitigate risks.

Kansas City, Missouri, United States

• Led the management and alignment of information security risk assessments, ensuring compliance with banking regulations, internal audit standards, and regulatory frameworks. Focused on risk intelligence, IT controls.
• Managed comprehensive risk assessments to align with internal audit expectations, regulatory guidelines, and banking requirements, ensuring full compliance with NIST Cybersecurity Framework and other security standards.
• Developed and evaluated information security policies and procedures, collaborating with cross-functional teams to enhance UMB Bank’s risk management posture and adherence to evolving regulatory standards.
• Facilitated communication across all Lines of Defense (LOD) and stakeholders, ensuring timely resolution of compliance issues, risk findings, and internal control self-assessments.
• Led 3rd-party risk assessments, delivering critical documentation and risk intelligence to partners and clients, ensuring transparent and secure relationships.
• Directed HIPAA compliance initiatives, identifying risks, reporting on compliance gaps, and developing action plans to ensure adherence to healthcare data protection requirements.

Phoenix, Arizona, United States

• Led strategic risk management initiatives within the Global Infrastructure (GI) Risk Management program, ensuring alignment with internal audit standards, risk oversight teams, and regulatory requirements. Drove.
• Managed audit and compliance requests for the Global Infrastructure Risk Management program, collaborating with technology teams to ensure timely and accurate evidence submission, enhancing overall regulatory compliance.
• Developed and refined policies and procedures for the Global Infrastructure Risk Management & Governance team, aligning with industry best practices and regulatory frameworks such as PCI-DSS and banking regulations.
• Acted as Subject Matter Expert (SME) on PCI-DSS and regulatory compliance, providing guidance and risk intelligence to cross-functional teams, ensuring adherence to all required standards.
• Optimized regulatory reporting processes, implementing process improvements that resulted in saving 80-100 hours per quarter.
• Led risk investigations and control assessments, ensuring that IT controls and compliance measures were fully aligned with regulatory expectations and internal governance standards.

Scottsdale, Arizona

• Led the strategic development and execution of a comprehensive vulnerability management, compliance, and governance program for CVS Health's Windows Server infrastructure, ensuring adherence to key regulatory.
• Spearheaded the design and implementation of a strategic vulnerability management program, reducing active vulnerabilities from over 300,000 to under 1,000, ensuring sustainable compliance with detailed documentation.
• Oversaw compliance management for critical frameworks, achieving 99.5% PCI-DSS compliance over three years and 100% compliance in SOX assessments for two consecutive years in assigned spaces.
• Led a team of 2-5 professionals, providing strategic leadership in identifying and resolving enterprise-wide risk, governance, and compliance issues, fostering collaboration and continuous process improvement.
• Optimized process and documentation management, enhancing efficiency and ensuring compliance with external audits and regulatory requirements across PCI, SOX, SOC, HIPAA, and GDPR/CCPA.
• Maintained and updated Minimum-Security Baseline documentation, achieving a 99.8% compliance rate (100% including business risk acceptances) across internal and external assessments, reinforcing security standards.

Phoenix, Arizona Area

• Executed process and procedures to oversee and establish strategic work plans to resolve system issues. Troubleshot complex hardware, software, and network problems while managing multiple projects as a project team.
• Implemented robust techniques to establish the integrity of operating system environment and ensures compliance with established standards, policies, and configuration guidelines.

Phoenix, Arizona Area

• Steered significant efforts to devise and execute solutions in both small business and large-scale enterprise environments to increase efficiency. Established small business networks and implemented security policies.
• Utilized in-depth knowledge to create and deliver customized IT solutions in line with customer requirements and specifications in Microsoft Windows and Apple MacOS spaces through technology integration.
• Led 2K endpoint rollout to replace previous aging equipment including hardware deployment, OS configuration, and network setup for each of the endpoints deployed through both Microsoft Deployment Tools and SCCM.
• Provided Windows Server system administration skills as well as system, network, and security architecture skills to non-profit organizations to modernize the secure new and existing networks while providing for.

Phoenix, Arizona Area

Project lead for the Apollo Group Apple Technology Initiative. Under executive level supervision, was responsible for designing, developing, and implementing a corporate strategy to deploy and support Apple products to the Apollo Group, University of Phoenix, Western International University, and several other subsidiaries.Received several commendations.

Phoenix, Arizona Area

Responsible for designing and implementing a corporate IT strategy for the deployment and life cycle monitoring of new technologies to over 20,000 endpoints. Managed and maintained professional relationships with Tier 1 Vendors (Dell, Apple, Lenovo, NEC) to facilitate a tighter working relationship to facilitate a faster and more efficient business.