Certified Information Security Manager (CISM) serving as Head of Cyber & IT Controls Design & Development for State Street Global Technology Services.Responsible for the management of a global team of Cybersecurity and IT Risk professionals in the execution of the following processes and initiatives:- Enhancement, development, and documentation of key and compensating Cybersecurity and IT controls and maintenance of the control library to ensure completeness and accuracy- Development of a comprehensive Controls Assessment Framework for applications, third parties, infrastructure and Cloud to ensure compliance with corporate standards and identify Cybersecurity and IT risks- Collaboration with Enterprise Technology Risk Management and Corporate Audit in the development of actions plans and review and closure of issues- Support and QA for the Information Security Risk Management Process for applications- Development and execution of a residual risk assessment program for Cybersecurity and IT risks

Certified Information Security Manager (CISM) serving as Group Information Security Officer for Citi Global Markets business, supporting Equities, Rates and Currencies, Commodities, Global Spread Products, Global Investor Sales, Markets Quantitative Analysis, and Securities Services organizations. Responsible for the management of a global team of Information Security professionals to ensure that information created, acquired or maintained by Global Markets and its authorized users is used in accordance with its intended purpose, to safeguard and protect customer and proprietary information and its infrastructure from external and internal threats, and to ensure that Global Markets complies with all applicable statuary, regulatory and corporate information security requirements. - Served as primary contact point and advisor to Global Markets senior management for all information security matters.- Delivered cyber security presentations to existing and prospective clients, outlining the components of Citi’s program and providing information on the global cyber threat landscape.- Oversaw the execution of the Information Security Risk Assessment (ISRA), Security Incident Reporting, Third Party Information Security Assessment (TPISA), Entitlement Management, Risk Issues Management, and Training and Awareness programs across Global Markets in accordance with established Citi standards.- Implemented key risk indices to measure risk related to security breaches and policy violations, security vulnerabilities, and outstanding security assessments, resulting in reduction of risks due to increased awareness and Information Security Officer and business engagement on mitigation efforts. - Implemented product-aligned Business Information Security Officer coverage model to foster ISO accountability for risk mitigation, enhance business partnerships and build relationships, and to increase the visibility of the information security program across Global Markets.

Certified Information Security Manager (CISM) within Enterprise O&T responsible for management of Information Security, Continuity of Business, and Supplier Risk Management control programs for Citi Private Bank Americas Operations. General responsibilities include:- Managed compliance with third party vendor management standards including Third Party Information Security Assessments (TPISA) and Systems Security Testing (SST) for internet/extranet applications. Served as Lead Information Security Officer for engagement with franchise critical supplier that hosts the Brokerage Investment Platform utilized across multiple business lines. - Managed Information Security Risk Assessment (ISRA) process for Americas Operations functions. Responsible for identifying and analyzing information security risk and working with business and information technology management and third party vendors to ensure that all information security threats are clearly defined and adequately addressed. - Developed and tracked corrective action plans and risk acceptances for all areas of non-compliance with Citigroup Information Security Standards within Americas Operations. Responsible for assessing and documenting information security risk, identifying compensating controls, obtaining approval from senior management, and monitoring resolution status.- Managed Business Recovery Planning process for Americas Operations, including the performance of Business Impact Analyses and development of recovery strategies based on associated recovery time and recovery point objectives for all departments. - Coordinated Business Continuity program testing including denial of access, disaster recovery, and crisis management testing. Responsible for ensuring the viability of business recovery strategies developed by each department, ensuring that communication plans are effective and validating that key applications are recoverable after a business interruption.

Business analyst within Citi Private Bank Global Operations responsible for operational risk management for Singapore, Switzerland, and U.S. locations.- Managed Risk and Control Self-Assessment (RCSA) process for Global Operations resulting in “Fully Effective” internal audit ratings. Identified control, test plan, and documentation deficiencies and worked with management to improve RCSAs and enhance controls. - Developed and implemented an enhanced incident/issue reporting process for Global Operations designed to identify all operational risk issues and root causes and achieve transparency within the organization. Implementation resulted in timely identification of many new risk issues while also streamlining the weekly, monthly, and quarterly operational risk reporting processes.- Developed a comprehensive operational risk report covering all areas of operational risk including system, human resources, information security, compliance, and control risk. Identified key risk measurements and developed weighting system to provide senior management with a more accurate assessment of operational risk on an ongoing basis. Responsible for coordination of all Global Operations operational risk reporting.- Conducted training workshops and coaching sessions for operational risk and information security-related topics. Formal seminars and presentations as well as individual coaching sessions on targeted issues were performed with staff in all locations in order to increase awareness of operational risk requirements and assist in the development of more robust controls.- Authored operational risk management procedural documents to ensure compliance with corporate-wide policies, industry standards, and best practices. Material covered included RCSA, incident and operational loss reporting, and records management.- Developed and performed general RCSA self-tests of various compliance requirements for all Americas-based RCSA Entities.

Management strategist with cross-functional expertise in business and financial analysis. - Managed project team of business analysts on an organization-wide initiative for the fourth largest human resources outsourcing company to migrate from a client oriented team environment to a functional environment with the goal to increase capacity by reallocating the existing staff while minimizing the incremental costs of adding new clients. Responsible for budget analysis, capacity planning, development of business requirements, system enhancements and work flow process improvement. Identified savings opportunities of 30% while minimizing incremental costs associated with adding new business.- Identified and prioritized opportunities for global processing (outsourcing) of administrative and IT implementation processes. Developed assessment criteria and presented analysis to senior management. Identified overall cost savings opportunities related to global processing of 25% while maintaining service delivery quality and client satisfaction.- Analyzed financial controls of a global specialty chemicals manufacturer to evaluate compliance with the Sarbanes-Oxley Act. Reviewed cash management, accounts payable, accounts receivable, legal, risk management, environmental, and closed sites processes, identified areas of non-compliance and made recommendations to senior management to improve financial controls and reporting.- Documented, tested and integrated improved business practices through process redesign and strategy development used in the training of new hires and in highlighting areas of potential risk for a large financial institution relocating a global investor services group from New York City to Dallas.- Developed and implemented project plans for software implementations for banking and financial institutions. Established and oversaw project management office, management reporting and risk management.

Management strategist with cross-functional expertise in business and financial analysis responsible for support of major organization initiatives for a financial institution. - Maintained all project related tasks and status reporting for a major system conversion effort encompassing all aspects of a business: operations and technology, compliance, front office, middle office, legal, finance and technology vendors.- Supported planning and conversion of a recently acquired Broker/Dealer with a large financial institution. - Captured, organized, and created business and procedural documentation for Fixed Income Operations and Equities Trading Support and Settlement for a major financial institution.- Conducted training seminars related to reviewing and publishing of business and procedural documentation in a proprietary knowledge integration tool.

Senior Underwriter and Project Manager responsible for development and implementation of agency management program for unique segment of New Jersey auto insurance market and maintenance of new elite book of business. - Developed and tested agency management procedures to determine project feasibility and profitability and presented recommendations to upper management.- Trained and managed underwriters, underwriting assistants and customer service representatives in implementation and maintenance of agency management program. - Analyzed performance of agencies, submitted written reports with supporting data, established goals, conducted rehabilitation meetings and presented recommendations to upper management regarding individual agency performance issues. Consistently cited for outstanding agency profiles.- Evaluated agencies’ books of business to determine desirability of granting new company contracts.- Facilitated compliance with legal and company standards by conducting field and home office visits with agents.