Robert Maclay Email & Phone Number

Palo Alto, CA, US

• Responsible for the security operations, governance risk and compliance and the identity and access management teams.
• Spearheaded the successful implementation of a multi-layered security framework.
• Developed and executed a comprehensive enterprise-level security strategy and roadmap to safeguard critical information assets and ensure compliance with industry regulations.
• Present cybersecurity strategy and security program updates to the board of directors.
• Established and maintain a robust governance, risk, and compliance framework, ensuring adherence to industry standards, policies, and regulatory requirements.

Palo Alto, California, US

• Worked with the executive team to build the strategy and portfolio planning process for the company based on industry best practices.
• Building and leading cross functional teams to execute strategic initiatives.
• Built ML integration with Epic using cloud technology, FHIR and Python
• Developed internal and external cost models based on the organization's financial drivers to address key questions regarding the cost of service delivery.
• Responsible for reviewing new vendors, vendor contract negotiations. I have worked on vendor negotiations and structured multi-million dollar contracts.
• Design and implementation of new technologies through cross collaboration with multiple application, infrastructure and vendor teams.

Dublin 2, IE

• Conducted numerous security assessments and developed security event management requirements to meet regulatory compliance.
• Developed disaster recovery strategies for the online division of a fortune 50 company.
• Designed and deployed enterprise single sign on system for large financial services company.
• Managed international operational support team.
• Program manager leading key application upgrades and implementations.
• Supported the expansion of user portal systems.

Greenwood Village, CO, US

• Conducted risk based audits analyzing gaps to regulatory requirements and industry best practices. Communicated findings to internal audit and senior executives.
• Conducted security audits for regulatory environments at banks, credit unions, hospitals and public companies.
• Contributed to the development of audit strategies based on COBIT and PCAOB frameworks.
• Developed policies for clients to comply with GLBA, HIPAA and VISA/MasterCard PCI requirements.
• Conducted numerous IT risk assessments based on NIST SP 800 – 30 best practices.
• Developed business continuity plans, IT disaster recovery plans and incident response plans.