Brian Dunlap Email & Phone Number

• Governance, Risk and Compliance (GRC) Director managing an international team, responsible for providing comprehensive oversight and Risk Management, while ensuring tolerances are within company's risk appetite..
• Directs Information Security corporate-wide process for Policies, Standards, Procedures, and other Security governance to be developed, updates, reviewed, approved and communicated to all applicable stakeholders.
• Reviews legal customer and corporate contracts for compliance and security, while providing consulting around HIPAA, GPDR and other regulatory requirements, with the understanding of customer requirements/needs as well.
• Manages and facilitates company-wide audits such as SOC2, ISO and penetration testing. Works with departments in creating procedures and processes to align with organization wide GRC framework, facilitating successful.
• Provides key insights and quantified risk analysis to C-suite executives, facilitating security-related discussion and decision making.
• Lowered annual audit costs by $500,000 while maintaining industry standard certifications without compromising security or risk resilience.

Westlake, Texas, US

• Governance, Risk and Compliance Officer managing a global group of IT security professionals, for an industry leading telematics transportation sector company, for products innovating routing, fleet safety and other.
• Reported to CISO, while also directly engaged with C-Suite executives focusing on all aspects for risk to the company.
• Worked with executive leadership to lower risks and company appetite, project risk acceptance and collaborate with departments to engage in projects to lower known company risks.
• Managed team to facilitate and successfully complete both internal and external annual audits including HIPAA, SOC, and other compliance audits.
• Created new global policies and procedure while working with heads of departments. Established an annual cadence for review of all policies, as well as key stake holder approval.

Phoenix, Arizona, US

Role Context: Sr. Security professional commissioned to build and manage the Governance, Risk, Compliance and Vulnerability Programs incorporating analysis and development, while leading and implementing systems of protection for Fortune 1000 company.Team Size: 7 IT Security personnelKey Achievements:- Oversee and mature the IT Security Governance, Risk.

• Contracted resource for business’s Strategic Information Technology and Security solutions, focused on medium sized Fortune 1000 companies.
• Architected and led implementations/initiatives in: network infrastructure and security, Identity Access management, Information Security strategies, IT audits, security encryption, and data loss prevention.
• Business Continuity and Disaster Recovery creation and implementation
• Internal/External Security Risk and Threat Assessment.

JP

Role Context: IT Web Hosting and SQL Database Senior Manager for Fortune 100 multinational conglomerate within the aerospace and manufacturing industries.Team Size: Managed 25 global and off-shore web hosting & database developers and engineersKey Achievements:- Recruited to build and guide transition teams for new contracts as Managed Services IT leader.

Role Context: Head of Web Hosting Services Program for Global Service Delivery & Global Technology organization across Americas (North & South), Asia, Europe & Middle East for Fortune 100 Company. Managed security, encryption and Identity Access Management for companies 15,000+ user base for Fortune 100 Company.Team Size: Managed 15 matrixed Developers.

Juris Masters, American/U.S. Law/Legal Studies/Jurisprudence - Concentration In Risk And Compliance

Masters Of Science, Nation Security And Public Safety; Information Protection And Security (Retired Program)

Bachelors Of Science, Information Technology