Deborah Wiebe

Deborah Wiebe Email and Phone Number

vCISO, vCTO, Chief Technology Officer, Security, Risk Management, Compliance and Governance Leader @ Vinco
Deborah Wiebe's Location
Ridgeway, Ontario, Canada, Canada
Deborah Wiebe's Contact Details
About Deborah Wiebe

Deborah Wiebe is an experienced information technology professional with 25+ years’ experienceComplementing this is differing roles focusing on information technology within the financial services, retail and consulting industries with a track record of building and leading high performing teams.Leadership roles in information security, global risk & security operations with multi-national corporations• Program / Project Management, Delivery• Quality Assurance • Technology Risk, and Audit professional• Technology Operations• Disaster Recovery Implementations• Solution Architecture

Deborah Wiebe's Current Company Details
Vinco

Vinco

View
vCISO, vCTO, Chief Technology Officer, Security, Risk Management, Compliance and Governance Leader
Deborah Wiebe Work Experience Details
  • Vinco
    Senior Consultant
    Vinco Dec 2023 - Present
    San Francisco , Ca, Us
    Senior Consultant | vCISO/vCTO at VINCOIn my role as a Senior Consultant at VINCO, I deliver expert guidance as a virtual Chief Information Security Officer (vCISO) and virtual Chief Technology Officer (vCTO), focusing on optimizing technology strategies and fostering organizational innovation. I spearhead strategic initiatives that enhance competitiveness in a rapidly evolving landscape, collaborating closely with teams to implement adaptable solutions tailored to each organization's unique needs.
    View
  • One Of A Kind Consulting Solutions Inc.
    Director Of Information Technology & Security Consulting
    One Of A Kind Consulting Solutions Inc. Jan 2010 - Present
    Contract Manager vCISO, vCTO, IT Security, Risk Management, Security & Technology Project ManagerResponsible for maintaining and advancing the enterprise wide information security management programIS Risk Assessment for general, system, process and application controls Reviewed and develop IT policies and procedures to ensure compliance with best practices.Accountability for the areas of compliance, security awareness, risk management and integration across the organizationDeveloped the Third-Party Risk Assessment processProcess owner of all assurance activities related to the availability, integrity and confidentiality of company systems and data and integrity.Established relationship with businesses leads, interpreted and applied standards, policies, best practices.Analyzed threats and vulnerabilities and designed the remediation process and requirements.Promoted use of security requirements for System Development Life Cycle across multiple IT projects.Project Management – West Cluster Shared Services - Information Security Shared Services Consolidation and Integration. Project/Application/Infrastructure - Security Risk Assessments and process improvementAssisted with the ISO21k/2013 Certification requirements and audit.OSFI / ISO / COBIT Assessment - HomEquityCapability maturity assessment Technology risk and control compliance reviewFebruary 2014 – July 2015 Strategic Consulting, including Risk Management, Information Security Operations, Information Technology planning, Audit, Regulatory Requirements & Business Continuity/ Disaster Recovery PlanningSentry Metrics subcontracts: ISO Security Assessments PM – Legal Firm - BLG
  • Crosscap
    Chief Technology Officer
    Crosscap Jan 2024 - Aug 2024
    San Francisco, California, Us
    Responsible for security compliance management and the design and deployment of the enterprise infrastructure. Compliance must be managed according to approved policies developed by CrossCap. Our infrastructure ecosystem includes the traditional infrastructure and operational platforms such as data centers, networks, and new infrastructure we intend to migrate to, such as cloud hosting and service models. In this role, you will work closely with Product, Customer Success, Development, and Operations to determine the organization's current needs and implement innovative solutions to deliver value to our customers and end-users.Responsibilities:• Responsible for the North America datacenters which service our global customers• Responsible for compliance, including SOC 2 Type 1 and Type 2• Ensure best-in-class security practices are followed• Identify vendors for 3rd party audits, security assessment and certification • Identify and assess security risks and develop and execute risk mitigation plans.• Review current disaster recovery and business continuity process and recommend/implement necessary changes.• Define and implement strategies for continuous improvement and scalability.• Monitor system performance and take proactive measures to optimize resource utilization including producing dashboards, reporting and metrics for management and clients.• Interact with clients to discuss business continuity and security protocols • Work with Sales on client IT questionnaires or RFPs for data security, performance and business continuity • Maintain policy documents and provide a standard policy toolkit for customer’s IT departments• Liaise with parent company IT to ensure CrossCap is aligned with policies set out for the organization• Collaborate with and advise Product on required platform enhancements and tech debt by owning the infrastructure Roadmap• Manage vendors to ensure applications are upgraded; ensure contract SLAs are complied with
    View
  • Centrilogic
    Director, Security Practice
    Centrilogic Aug 2021 - Jan 2024
    Mississauga, Ontario, Ca
    View
  • Centrilogic
    Ciso As A Service Security Advisor - Security Practice
    Centrilogic Aug 2021 - Mar 2023
    Mississauga, Ontario, Ca
    Encourages the continual development of a culture of Security and Compliance with industry standards and key internal policies. Provides leadership, guidance, documentation and advice to clients and staff to achieve compliance requirements through education, training and general business engagement. - Advise internal management or business partners on implementing or operating compliance programs.- Information Security Assessment and Advisory - Capability Maturity Assessment, Implementation Plans and - Remediation Roadmaps allow the increased ability to raise the Security posture based on risk management and operational requirements. - Provide employee training and documentation on compliance-related topics, policies, or procedures.- Assist internal or external auditors in compliance reviews.- Monitor compliance systems to ensure their effectiveness.- Oversee internal reporting systems such as corporate compliance hotlines and inform employees about these systems.- Keep informed regarding pending industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes.- Design or implement improvements in communication, monitoring, or enforcement of compliance standards.- Verify that all firm and regulatory policies and procedures have been documented, implemented, and communicated.- Direct the development or implementation of compliance-related policies and procedures throughout the business.- Advise technical professionals on the development or use of compliance or reporting tools.- Develop or implement compliance plans.- Review or modify policies or operating guidelines to comply with changes to standards or regulations.
    View
  • Kortext
    Director It Services
    Kortext Feb 2019 - Aug 2021
    Bournemouth, Dorset, Gb
    Program & Project Management • Initiate and manage the projects or programs working with product owners in the development of appropriate business cases, risk assessments, budget management, resources, timeframes, Control projects, provide business guidance, identify any deviations to work plan and recommend corrective action to rectify potential issues/constraints that may impact project success. Prepare and deliver executive-level presentations on assigned projects to keep management apprised of project status, major issues, scope changes, resource changes and milestone achievements. Process Improvement • Plan, support and provide training and coaching in process improvement and other improvement methodologies to executives, associates, and others. • Act as a proactive strategic resource to product owners by identifying, planning, implementing process engineering and other improvement strategies and projects. Drive process-engineering and process/product ownership efforts across the businesses to continually improve productivity targets while fostering a process engineering culture change. Quality Assurance • Develop, inspire, and grow a geographically distributed team responsible for all aspects of functional and non-functional testing, partnering with multiple engineering teams to develop and support features, platforms, and new technologies • Ensure quality for our three products • Build innovative ways to automate and expand our software testing • Compile, analyze, and present test results—ultimately driving and constantly improving product quality • Work closely with product managers to understand requirements and oversee the writing and execution of test cases • Closely manage timelines and resources by understanding priorities and team members' strengths
    View
  • Uzado Inc.
    Information Security Advisor
    Uzado Inc. Jun 2018 - Feb 2019
    Richmond Hill, Ontario, Ca
    Responsible for assessing the enterprise-wide information security management program • Conducted IS Risk Assessment for general, system, process and application controls • Remediation recommendations and plans aligned with IT Strategy • Reviewed IT policies and procedures to ensure compliance with best practices. • Accountability for the areas of compliance, security awareness, risk management and integration across the organizational • Developed the Third-Party Risk Assessment process • All assurance activities related to the availability, integrity and confidentiality of company systems and data and integrity. • Established relationships with business leads, interpreted and applied standards, policies, and best practices. • Analyzed threats and vulnerabilities and designed the remediation process and requirements. • Promoted use of security requirements for System Development Life Cycle across multiple IT projects.
    View
  • Giant Tiger
    Director Information Security Risk Management
    Giant Tiger Feb 2017 - Jan 2018
    Ottawa, Ontario, Ca
    Responsible for maintaining and advancing the enterprise wide information security management program● Conducted IS Risk Assessment for general, system, process and application controls● Reviewed IT policies and procedures to ensure compliance with best practices.● Accountability for the areas of compliance, security awareness, risk management and integrationacross the organizational● Developed the Third Party Risk Assessment process● Process owner of all assurance activities related to the availability, integrity and confidentiality ofcompany systems and data and integrity.● Established relationship with businesses leads, interpreted and applied standards, policies, bestpractices.● Analyzed threats and vulnerabilities, and designed the remediation process and requirements.● Promoted use of security requirements for System Development Life Cycle across multiple ITprojects.
    View
  • Pwc Canada
    Sr Manager Information Security Operations & Risk Management Internal Firm Services
    Pwc Canada Jul 2015 - Feb 2017
    Toronto, Toronto, Ca
    Providing direction and technical guidance on matters involving IT Risk Management and Information Security. Measuring and monitoring effectiveness of security controls in support of Internal Security Policies, Client requirements as well as Regulatory or Legal requirements. Managing a team of Risk and Information Security Operations Professionals. • Provides IT Security and Risk Management guidance and support to cross-disciplinary teams including Information Technology, Human Resources, Firm Security, General Counsel and other lines of service. • Communicate risk management practices, risk assessment results, remediation activity advisory to C-Level /Senior Executives• Ensures compliance is met for PwC Information Security Policy, ISO27001:2013 certification, Client related and other regulatory or firm compliance requirements. Interprets information security policies, standards, and other requirements as they relate to a specific internal information system, and assists with the implementation of these and other information security requirements • Lead coordination of Information Security audits, including annual Information Systems Quality Control, ISO27001:2013, Global ITS Compliance and client related audits. • Act as lead security consultant on information technology risk, information security, IT incident investigations. • Developed Information Security Statement and policies aligned to the Global Information Security Policy and mapping to the risk management • Leads projects and associated meetings to ensure that IT Security deliverables are achieved on schedule and within budget.
    View
  • Pwc
    Information Security Risk Management Consultant - Pwc
    Pwc Apr 2014 - Jul 2015
    Gb
    Information Security Project Management – West Cluster Shared Services - Information Security Shared Services Consolidation and Integration. Multiple Countries - USA, Canada, Mexico, Brazil across multiple territories ensure the successful implementation of global services. Accomplishments include:• Territory consolidation for the following 7 systems and processes – web application security assessment, source code review, SEIM, IDS/IPS, vulnerability management and reporting, ePolicy Orchestrator, Security Operations Centre, Firewall Monitoring• Information Security Risk Assessments for multiple projects and vendor reviews.• Project/Application/Infrastructure - Security Risk Assessments and process improvement• Policy, Standard and Process development• Coordinating the Global consolidation of local services • Assisted with the ISO21k/2013 Certification requirements and audit.
    View
  • One Of A Kind Consulting Solutions
    Contract - It Security, Risk Management
    One Of A Kind Consulting Solutions Feb 2014 - Jul 2015
    OSFI / ISO / COBIT Assessment HomEquity• Capability maturity assessment• Technology risk and control compliance review Sentry Metrics subcontracts:ISO Security Assessments PM – Legal Firm - BLGInfo. Sec Advisory & Planning – Energy – Liberty UtilitiesOSFI Assessment of Controls –Insurance - EGIInformation Security design effectiveness review - ISO, NIST – VHB
  • Firstontario Credit Union
    Director, Information Technology & Security
    Firstontario Credit Union Oct 2011 - Feb 2014
    Hamilton, On, Ca
    Provide hands on technical vision and leadership for developing, supporting and monitoring IT security initiatives. As the subject matter expert with the overall responsibility for proactively safeguarding all technology services and data against security breaches and vulnerability issues.Responsible for reviewing IT systems projects and auditing existing systems from a security and risk perspective and directing the administration of security policies, activities, and standards. My role includes education of staff and corporate management regarding IT and Security.
    View
  • Cibc
    Director Technology Control Management - Strategic Planning & Business Management
    Cibc Nov 2010 - Oct 2011
    Toronto, Ontario, Ca
    Responsible to oversee the integrity of the technology control structure, underlying technology processes throughout Technology and INTRIA. This role supports functional and executive management with proactive support through risk identification and mitigation strategies. Delivers awareness of key bank policies, monitors compliance and executes standardized compliance programs. Liaisons and coordinates with compliance partners including Internal, External auditors and Self Regulating Organizations to facilitate compliance objectives and relationship management among the Technology Organizational Departments. Alignment IT auditing direct assistance processes with risk management practices and frameworks. • Client relationship management and building a success relationship with external auditors. • Identified and articulated control weaknesses and promote compliance with appropriate processes • Lead the development and maintenance of technology controls, ensuring key controls reflect the operating environment • Leads the technology executive attestation processes for SOX, OSFI, GCC, VISA PIN, INTERAC, and PCI DSS.• Acts as the subject matter expert on technology controls during the development and updating of technology standards
    View
  • Intria Items Inc. - Cibc
    Contract - Sr. Project Manager - Audit Remediation
    Intria Items Inc. - Cibc Jun 2010 - Nov 2010
    Providing advisory and management related activities where a focus is required to build in the sustainment process and ensure the success of multiple audit requirements or remediation efforts within the IT division. This includes planning, remediation, documentation requirements, sustainment and the presentation of the revised processes to the internal audit department. The remediation areas of focus were: UNIX Patch Management, Security Configuration, INTEL and UNIX, Logical Access Control, INTEL and UNIX, Capacity Planning and Monitoring, Remediation of Vulnerability Assessment, Documentation Standards ,Asset Disposal & Inventory, Management Attestation Process, Logging and Monitoring
  • Pwc Canada
    Contract - Information Security Consulting Service
    Pwc Canada Mar 2010 - May 2010
    Toronto, Toronto, Ca
    • Developing and updating the Security Standards, Guidelines and processes in alignment with the Global information security policy and IT Strategy.• Assisted and advised IT Operational teams with the development of process documentation required including technical documentation, guidelines and architecture diagrams.• Planning the implementation of a documentation repository framework to establish version control and change tracking for annual review.• Providing assistance with DR project requirements, specifically the documentation of recovery processes performed by operational team members and storage of the Disaster Recovery documentation in database. Enhancing the DR documentation repository.
    View
  • Canadian Tire
    Information Security Manager
    Canadian Tire Sep 2008 - Jan 2010
    Toronto, Ontario, Ca
    Responsible for the implementation of a comprehensive information and technology security program including advisory, Contributed to the IS strategy and roadmap. Responsible for the maintenace of Information Security Policies, Standards, Guidelines and Operating procedures that align with the Corporate Strategy and 5 year plan including all necessary regulatory and legislative requirements. Ex. International Financial Reporting Standards (IFRS - CSOX), Payment Card Industry (PCI), Personal Information Protection and Electronic Documents Act, (PIPEDA)Capability Maturity Assessments to ensure the Policies and Standards are aligned with the capabilities of the technology.Liaison and advise with Corporate Security, Risk Governance and Compliance, Internal and External Audit services and Senior Executives and Chief Information OfficerDeveloped and Planed Vulnerability Assessments, Threat/Risk Assessments, Privacy of information classification, ownership and assessments, Project and special request Security Risk Assessments, Vendor Risk Assessments/5970 SAS70 type 2 Audit report reviews and Master Contract Agreement/Statement of work review and Security Incident response processAssess security and regulatory requirements CSOX, PCI, PIPEDA, INTERACEducate employees and contractors related to the enterprise security issues, policies, awareness, compliance, and threats. Information Security is Everyone's Business.Contribute to the disaster recovery plans, and business continuity plans.Manage all Information Security employee day to day activities and development plans.Manage the Information Security Budget and financial planning.Sustaining Manager for the Information Security compliance monitoring, reporting tools and activities. Governance/oversight of IT operational security tools, monitoring and reporting mechanisms.
    View
  • Canadian Tire Financial Services
    Sr. Information Security Control Analyst
    Canadian Tire Financial Services Sep 2006 - Aug 2008
    Oakville, On, Ca
    Responsible for identification/design of general computing controls * Responsible for creating and organizing IT documentation for the C-SOX Internal audit* Alignment of the CTFS C-SOX (Bill 198. NI 52-109) CEO CFO Certification framework with the Canadian Tire Corporation risk management methodology. * Governance and Compliance reviews of the IT processes and general computing controls based on the regulatory legislation requirements of (C-SOX) CEO CFO Certification, (PCI DSS) Payment Card Industry Data Security Standards, (OSFI) Office of Superintendent of Financial Institutions Canada (PIPEDA) Personal Information Protection, Electronic Documents Act and Interac regulations and ISO 17799/27001 standards. * Responsible for regulatory requirements, effectiveness testing, documentation, * Provided recommendations to management to correct control weaknesses identified by internal/external auditors and follow-up on outstanding audit findings.
    View
  • Canadian Tire Financial Services
    It Compliance Project Manager
    Canadian Tire Financial Services Sep 2004 - Sep 2006
    Oakville, On, Ca
    • Conducted specific investigations and provide Management advice and assistance regarding risk mitigation and internal controls practices• Worked with business units in the development of adequate controls contributing to ITP&S goals, also satisfying regulatory requirements • Provided recommendations to correct control weaknesses identified by internal/external auditors and follow-up on outstanding audit findings• Identified control issues relating to new projects and work with the project team to adequately address the issues• Prepared reports for Management and Board of Directors as requiredKey Accomplishments:o Designed and implemented the IT Risk Governance and Security Department Competency on behalf of the ITP&S Vice President.o Regulatory requirement Subject Matter Expert, Identification and design of IT key general computing controls o Implemented the COBIT framework to facilitate the regulatory objectives and control designo Conducted CEO CFO Control objective work shopso Created awareness and support within the organization related to CEO CFO Certification o Key contributor to the development methodology and the SDLC process
    View
  • Canadian Tire Financial Services
    It Project Manager/Team Lead
    Canadian Tire Financial Services Jan 2003 - Sep 2004
    Oakville, On, Ca
    • Responsible for working closely with Project Managers, IT Account Managers, functional business unit managers and the project teams. • Acted as an IT Representative and/or a Team Lead, and managing, removing roadblocks and continuously motivating a group of IT Team members to ensure IT Integration across the various IT disciplines participating in the project and IT delivery in the expected timeframe• Provided input to, and facilitating recommendations, and ensuring escalation of issues where deemed necessary to ensure appropriate technical decisions are reached in a timely manner• Working with the team to identify the IT tasks required, and then reporting on status and completion of tasks to ensure the IT project deliverables are documented and tracking to expected delivery dates.• Provided effective project communication between the various clients, functional business units and project team by creating and issuing IT related communications as needed to ensure consistency and clarity of information• Ensured the IT Process Methodology deliverables are completed by IT team members by holding IT team status updates and by reporting completeness of the methodology deliverables using a checklist to minimize project risk encountered when best practices are not followed.• Recommend and assist with implementing improvements to the IT Process Methodology by communicating and discussing the long-term viability of IT lessons learned to PLDE peers to ensure IT Process Methodology reflects CTFS best practicesKey Accomplishments:o Typically assigned to Tier A projects, and projects of high complexity, size and criticality.o Provided support to the on-going project management activities from an IT perspective.o Promoted to Senior IT CEO/CFO Project Manager – Managing a team of 20+ Managers and associated resources.
    View
  • Canadian Tire Financial Services
    Sr. Systems Solution Anlayst
    Canadian Tire Financial Services Jan 2001 - Jan 2003
    Oakville, On, Ca
    • Responsible for the application design of solutions that integrate into an efficient and scalable system that meets the strategic objectives. • Review upcoming initiatives to understand current and future requirements and to provide advice on technology capability and options. • Responsible for creating Preliminary Design documentation to assess the impact and viability of scope items and recommend alternatives along with their associated costs and timings. • Reviewed the detailed designs for adherence to the integrated design and architecture standards. • Guide the project team to make the early design decisions by identifying and prioritizing the architecturally significant requirements• Identify the major functions and interfaces of the system• Identify, evaluate and recommend applications for re-use that meet the requirements (by understanding the constraints of an application)Key Accomplishments:o On-going solution design for the replacement of legacy technology in multiple business units.
    View
  • Canadian Tire Financial Services
    Sr Test Analyst
    Canadian Tire Financial Services Oct 1997 - Jan 2001
    Oakville, On, Ca
    • Responsible for development of a quality testing methodology. • Responsible for creation of testing documentation, test strategies, high level and detailed test plans test cases, test scripts, post testing documentation and defect tracking. Test case database archive system development.• Test Coordinator/Lead, responsible for the quality of all testing and deliverables produced involving a variety of systems and integrated applications.• Internet / E-Commerce, testing.• QA review of projects, testing deliverables and result verification.• Project plan creation and upkeep • Tested mission critical and important desktop products to determine year 2000 compliance • Planned the implementation roll out strategy• Java / XML / HTML / CRM – Chordiant / Windows 2000/2003 Servers / Mainframe / AS/400 / Oracle /IBM-AIX / UNIX tester i.e. baseline, regression, date shift testing, UAT & awareness • Knowledge for the testing and Development life cycle and lifeblood process
    View
  • Internet Communications Niagara
    Corporate Account Manager
    Internet Communications Niagara Jan 1994 - Oct 1997
    • Account Manager for all corporate clients.• Assist in all marketing strategies and promotions• Corporate web/e-commerce design and implementation.• Creation of all corporate accounts / Unix shell setup, submission of client domain requests• Assist and suggest network strategies for clients to expand new and existing networks or workgroups. • Management of all Internet training.

Deborah Wiebe Skills

Information Security It Audit Governance Disaster Recovery Security Information Technology Pci Dss Information Security Management Iso 27001 Sdlc Risk Management Cisa Vulnerability Assessment Solution Architecture Cissp Process Improvement Cobit Risk Assessment It Management Security Audits Sarbanes Oxley Act Security Architecture Design Compliance Sas70 Vulnerability Management Enterprise Risk Management Internal Audit Security Policy Internal Controls Financial Risk Nist Payment Industry Sox Policy Architecture Iso It Risk Solution Design Standards Compliance Coso It Governance Compliance Management Risk Governance Fraud Detection Corporate Fraud Investigations Cmmi Pipeda Itgc Bill 198 Online Fraud

Frequently Asked Questions about Deborah Wiebe

What company does Deborah Wiebe work for?

Deborah Wiebe works for Vinco

What is Deborah Wiebe's role at the current company?

Deborah Wiebe's current role is vCISO, vCTO, Chief Technology Officer, Security, Risk Management, Compliance and Governance Leader.

What is Deborah Wiebe's email address?

Deborah Wiebe's email address is de****@****ara.com

What is Deborah Wiebe's direct phone number?

Deborah Wiebe's direct phone number is +190538*****

What skills is Deborah Wiebe known for?

Deborah Wiebe has skills like Information Security, It Audit, Governance, Disaster Recovery, Security, Information Technology, Pci Dss, Information Security Management, Iso 27001, Sdlc, Risk Management, Cisa.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.