Robin Basham

Robin Basham Email and Phone Number

CEO/CISO EnterpriseGRC Solutions, CSA Working Group, President ISC2 East I Bay Chapter @ EnterpriseGRC Solutions, Inc.
Robin Basham's Location
Dublin, California, United States, United States
Robin Basham's Contact Details
About Robin Basham

Robin is the Chief Information Security Officer for AdaptHealth, a network of full-service medical equipment companies in the United States. Our mission is to empower patients to live their best lives by providing tailored products and services that allow them to stay out of the hospital and comfortably manage their health at home. AdaptHealth offers a wide range of products and services, including respiratory equipment, sleep solutions, diabetes supplies, breastfeeding products, incontinence supplies, orthotics, rehabilitation aids and more. Additionally, AdaptHealth Patient Care Solutions provides healthcare that fits into everyday life, with online support, customer service representatives, and convenient doorstep delivery. It is my honor to participate with the amazing workforce of AdaptHealth who collectively ensure this mission.Most notably, and prior to AdaptHealth, Robin is the founder, CEO/CISO of EnterpriseGRC Solutions, Recent Past President, ISC2 East Bay and their Conferences Chair, Certified Information Systems Security (CISSP), Audit (CISA), Governance (CGEIT) and Risk (CRISC), ICT GRC expert and early adopter in both certifying and offering certification programs for Cloud Security and Virtualization, with industry experience in management of systems, controls and data for SaaS (IaaS and PaaS), Finance, Healthcare, Banking, Education, Defense and High Tech. Positions held include Technology Officer at State Street Bank, Leading Process Engineering for a major New England CLEC, Sr. Director Enterprise Technology for multiple advisory firms, founding, engineering product and running two governance software companies, and most recently Director Enterprise Compliance for a major player in the mortgage industry, Ellie Mae. Recently full time at Cisco, Unified Compliance and ISMS Program Manager, Robin currently leads LSHC in support of three MDM clients as well as donating substantial time to supporting social platform security to further social democracy.

Robin Basham's Current Company Details
EnterpriseGRC Solutions, Inc.

Enterprisegrc Solutions, Inc.

View
CEO/CISO EnterpriseGRC Solutions, CSA Working Group, President ISC2 East I Bay Chapter
Robin Basham Work Experience Details
  • Enterprisegrc Solutions, Inc.
    Ceo, Ciso
    Enterprisegrc Solutions, Inc. Sep 2011 - Present
    Dublin, California, Us
    Cybersecurity, Enterprise Risk Management - GRC implementation and adoption, audit and assessment reporting. Specializing in common control-based audits and assessment reports combining frameworks such as the following, and providing a customized mapping from your policies and programs to the collection of required compliances dictated by your industry and desired market opportunities.Sample Array:FedRamp DFARSSV.BITS Shared Assessments Third Party Risk Assessment TPISACalifornia Consumer Privacy Act of 2018Canada PIPEDACCM v4.5 Cloud Security Alliance © 2021Center for Internet Security Critical Security Controls Version 8.1Cloud Computing Information Assurance Framework — ENISACMMC 2.0 Cybersecurity Maturity Model CertificationCobit 5 © ISACA 2013Compliance Controls Catalogue (C5)COSO 2013Criminal Justice Information Services (CJIS) Security PolicyCSF / PF NIST Privacy Framework 1.0CSF Framework for Improving Critical Infrastructure CybersecurityCybersecurity Risk MGT Program - Description Criteria © AICPA 2017ECUC European Cloud User Coalition v2.1EudraLex Annex 11GAMP® 5 Guide: A Risk-Based Approach to Compliant GxP Computerized SystemsGeneral Data Protection Regulation (EU) 2016/679HIPAA - HITECH Title 45 C.F.R. § 164HITRUST CSF v11.2ISO 13485:2016 €ISO 27799:2016ISO/IEC 27001:2013 €ISO/IEC 27001:2022 €ISO/IEC 27002:2013 €ISO/IEC 27002:2022 €ISO/IEC 27017:2015 € 27002 for cloud servicesISO/IEC 27018:2019 €ISO/IEC 27701:2019 €ISO/IEC 29100 €ISO/IEC 30111:2019 €ISO/IEC FDIS 27002:2021 €MITRE ATT&CK FrameworkNCSC NATIONAL CYBER SECURITY STRATEGY 2016-2021NERC CIPNIST 800-171 r2NIST 800-171r3NIST 800-172NIST 800-53 r5NIST CSF 2.0 CorePCI DSS V4.0 Copyright ©2022SD ElementsTitle 21 CFR Part 11Title 21 CFR Part 820 QMS RequirementsTSP 100—2017 Trust Services CriteriaUK Cyber EssentialsCIS Benchmarks DISA STIGS
    View
  • (Isc)2 East Bay Chapter
    Conferences Chairperson, Recent Past Board President - (Isc)2 East Bay Chapter
    (Isc)2 East Bay Chapter Jan 2017 - Present
    San Ramon, California, Us
    President and Board member responsible for development and management of ISC2 East Bay Chapter and its conferences. Get involved in Cybersecurity educational events. Join us.Meeting Conference
    View
  • Cloud Security Alliance
    Cloud Controls Matrix Working Group Volunteer
    Cloud Security Alliance Jun 2021 - Present
    Seattle, Us
    Leader for CSA CCM Working Group for NIST and contributor for several projects with emphasis to industry mapping for ISO and NIST.
    View
  • Adapthealth
    Chief Information Security Officer
    Adapthealth Apr 2024 - Jul 2024
    Plymouth Meeting, Pa, Us
    Security Program transformation project - 90 days (Parachute in, Zipline out. Leave them standing.)Established Monthly/Quarterly KPI and projects responding to and improving program resultsIncident Response - organic assessment across departments to resolve gaps in handoff, improve policy, establish cybersecurity matrixDesign and deliver the Event-2-Incident portal and Exception Management portalImplement a ground-up, zero-cost, GRC program, leveraging compliance mapping for HIPAA, ITGCC (SOX), and SOC 2ISMS Policy Assessment and Management PortalSecurity awareness gap assessment / Phishing program implementationSecurity Program Architecture and Tools OversightExpanding use of Zscaler Risk360, Zscaler Private Access (ZPA), Zscaler Internet Access (ZIA), Resolve supporting evidence of Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure.Train, Align, Hire Security & GRC Staff
    View
  • Cisco
    Sr. Architect & Technical Grc Lead Archer Implementation
    Cisco Jun 2017 - Mar 2020
    San Jose, Ca, Us
    Architected and populated 50+ integrated applications using the RSA Archer GRC platform. Educated dozens of professionals along their journey from GRC novice to Advanced Administrative expertise. Met RBAC, ISMS Policy, FedRamp ConMon, C5, SOC2+ testing and reporting requirements for 8 consecutive quarters. Fulfilled the Unified and ISMS Compliance Manager duties while also implementing a Facilitated Compliance Management Program that has resulted in successful POC for Cisco’s STO Archer Compliance Program. Above and beyond the job description, the Facilitated Compliance Program met the following goals: Evidence is mapped to the greatest possible number of compliance use cases Train and influence people to increase evidence committed to Doc Central Enable visibility over what is ready for audit and what is missing Improve and enable the unified compliance process through continuous metrics and reporting Map common process framework across all Cisco Policy, CATO, Unified and Regulatory Specific Control and Tests Detail the greatest number of audit uses for answers to interview questions; map a Cloud Assurance framework questions bank. Increase number of represented compliances per same business capabilities, processes, policies and product functionality Special Project: Automated Access Review for Webex and HCS-G reducing a 90 day process to .5 days.
    View
  • Cavirin
    Vp Security & Chief Customer Compliance Officer
    Cavirin Apr 2016 - Mar 2017
    Santa Clara, Ca, Us
    - Established Security Company Brand (Elastic Security Compliance Fabric)- Engineered via Python and JSON legacy product compliance content mapping system configuration rules to security assessment models covering WIN2008 R1 & R2, WIN20012 R1& R2, CentOS 6, CentOS 7, RHEL6, RHEL7, AWS Linux, AWS Foundation, ESX 5.5, Azure, Docker, Windows 7 and Windows 10- Created compliance crosswalk mappings for CIS Benchmark & DISA STIGS to NIST 800-53 r4 + Appendix J, PCI DSS 3.2, SOC 2 2016 plus privacy, HIPAA-HITECH Common Security Framework, NIST Cybersecurity Framework (CSF), CIS CSC 6.1 Top 20, FedRamp, CJIS, UK Cyber Essentials, FFIEC, GLBA, NERC CIP- Joomla website development and management, core content and continuous blogging, raised Cavirin Web Presence by 2 million world rank in under six months¬ (Is the fourth time raising a technology company from obscurity to top 50K US)- Engineered in Python the extraction of XCCDF content to simple database structure and developed JSON for the import of OS hardening rules as created by DISA and CIS, mapping rules to 12 major security assessment frameworks - As Speaker and Spokesperson for Cavirin, landed major accounts in Health, Finance, MSP, SaaS; Added Partners- Represented Company Security and Risk Management on behalf of client organizations- Client Assurance to implement ARAP as a component of their overall Cybersecurity Risk Management practice and security program architecture
    View
  • Ellie Mae
    Director, Enterprise Compliance
    Ellie Mae May 2013 - Nov 2015
    Pleasanton, California, Us
    The Director Internal Audit & Compliance reports to the CSO ( who has dotted line to Audit Committee and President), providing a service and function to all departments of Ellie Mae with accountability to prioritizing, requesting, gathering and demonstrating necessary controls and their artifacts for audit and control and is tasked to develop, implement, and manage a comprehensive risk-based IT compliance program designed to improve overall Enterprise compliance.Internal Audit & Compliance aligns programs that plan, schedule and project manage, audit and assessment, risk, and process, including writing, assisting to organize Ellie Mae’s policies and procedures Facilitate the mapping of policies and procedures to Ellie Mae’s risk, compliance, and control framework, including establishing dynamic links and references that support change controls and audit trails Design and utilize workflow tools to help access, create, modify, review, and approve policy and procedure documents in a controlled manner Design and employ consistent procedures for exception identification, evaluation, capture, reporting, task management, and status reporting as well as potential non-compliance investigation, tracking and remediation Work with Human Resources and other Ellie Mae reports and leaders to support the training and communications of policies and procedures by bringing together a comprehensive content repository and a framework for training delivery and tracking Develop report and dashboard templates to enable easy status tracking from any computer The focus of this position is to support and facilitate Ellie Mae management to become more proactive, rather than reactive, in continually enhancing compliance and quality assurance in the information technology environments. The program serves to enhance a unified view of Ellie Mae’s internal compliance with regulations, laws and corporate policies relating to its IT systems and processes
    View
  • Isaca Silicon Valley
    Conference Director
    Isaca Silicon Valley Jun 2012 - Jun 2013
    This is a board position with responsibility for the producing of three conferences in the 2012 to 2013 time period.
    View
  • Association Of Certified Green Technology Auditors™ (The Acgta™)
    President, Board Member
    Association Of Certified Green Technology Auditors™ (The Acgta™) Sep 2009 - Dec 2011
    Plantation, Florida, Us
    My mission is to bring organizations together in leading green implementation and audit standards. Please reach out, volunteer and share ideas. We are open to assisting others in their research, designs and publications. "Commit to measure in 2012 and our present will be the criterion reference and check list to let you know when you get there.
    View
  • Soaprojects
    Sr. Director Enterprise Technology, Grc
    Soaprojects Aug 2008 - Sep 2011
    Mountain View, Ca, Us
    Until transition to Private Corporation 9/2011, was Sr. Director Enterprise Governance and Risk Compliance, Archer Certified Consultant, ACGTA - Green Technology Initiatives * Director Process Transformation, Brocade TSO,- migration and implementation IP/SAN to Oracle CRM* McKesson Implementation and design Team, Archer GRC* OmniVision Internal Audit: Sarbanes-Oxley ITGC testing, program design, testing, reporting for Phase I and II 2008, Oracle ERP application testing, controls program design, release planning and implementation* OmniVision MIS and IT: Enabling end to end GRC and SDLC for major Oracle implementation, providing development and implementation of IT Controls tool suite, Project Oversight delivering and documenting compliance workflow and reporting for teams using Corporate ERP financial applications, custom billing, accounting, order and warehouse management systems highly complex environments. Satisfied PwC audit in two phases of external review. * Hallisey & D’Agistino – Delivered testing and report of SAS 70 Type II Data Center Services – New England Clients* Security and Web Services Management for SOAProjects* Web Site Design, Security, Maintenance, Branding and Marketing –raising reach and SEO from score 2 to 93 (one point behind PwC)* Reconnaissance and content provided toward Intellectual Property Suite filed for counts of federal trademark infringement, false designation of origin, dilution of trademark, violation of the Anti-Cybersquatting Consumer Protection Act * Photon Dynamics- SQL, SharePoint, SalesLogix Integration, Migration and Support Expandable, InfoPath, Agile environment
    View
  • Phoenix Business And Systems Process
    Founder
    Phoenix Business And Systems Process Oct 2002 - Oct 2009
    Needham, Ma, Us
    Fortune One and Five Hundred Sarbanes-Oxley and SAS 70 Compliance, CobiT CSA projects to successful third party attestation, Raytheon, Journal Communications, Siemens, Financial Times Interactive Data, Options Clearing Corporation, AON RiskLabs-Trademarked application Facilitated Compliance Management application and methodology -SOA & GRC Architect – Aligning IT Information Assets to Process and Security Compliance via Active Directory and other existing tools -OSS Data Migration Specialist, MetaSolv, Remedy, Access, Lotus Notes, SAP, SNMP Network Detection and Perl/CGI Scripting Process, AS400 – real time assessment and automation over telecom and data center asset reporting-SOA, OOP Requirements and Developmeing Java, UML, Remedy, SharePoint, Visio, MS Access, Visual Basic, Crystal Reports, Business Objects, Macromedia Studio, Apache TomCat - created this site www.pbandsp.com
    View
  • Control Solutions
    Dir. It Regulatory
    Control Solutions Oct 2006 - Aug 2008
    Woburn, Ma 01801-6500, Ma, Us
    Director supporting Compliance Advisory Services (http://www.businesswire.com/news/home/20070125005600/en/Robin-Basham-Governance-Risk-Compliance-Expert-Joins) to companies facing the challenges of regulations such as Sarbanes-Oxley, Basel II and HIPAA, providing impelmentation expertise leveraging standards and best practice such as COBIT 4, NIST 30 and 53a, FISCAM, COSO ERM, OCEG, with sensitivity to proper use of IIA, AICPA and ITGI audit guidelines.Key Client Deliverables:* SOX ITGCC lead for Computer Associates, 400 Application and 300 IT Key controls, utilizing a team of 10 consultants to achieve delivery against an aggressive schedule. Lead Tester and Final Review; QAR sign off* Design and Implementation ERM Application for Health Services and Publishing Services* SAS TYPE II Exposure Review CitiStreet, Review of KMPG * Security Policy Program Implementation, Options Clearing Corporation* IT GCC Program management and IT Controls Testing to prepare Sharp for year one Japan SOX* ISACA Detroit Chapter CobiT Foundation Training* Options Clearing Corporation Risk Program Management Responsibilities - Regulatory and Compliance Services* US Information Systems Compliance Testing and Reporting* Compliance Training* Policy and Procedure Program* GRC and Corporate Governance* Enterprise Risk Management - emphasis towards ongoing technology programs and IT Security* IT Security and Network services* IT Remediation* Enterprise Technology Operations / Data Center Operations* GRC Platforms – CA, SAP, Oracle, FCM, Symantec, Founding Contributor to OCEG and Oracle GRC* Enterprise Information Technology ArchitectureProvides tools, program design and delivery across detail and strategic areas of Information Technology, assuring compliance readiness and regulatory resilience.
    View
  • Ctc Communications
    Manager Process Engineering
    Ctc Communications Oct 1998 - Oct 2002
    Burlington, Ma, Us
    Data Migration and Systems Integration, Network Management Architecture TeamDesigned Solution, Developed Application, ImplementedData Migration OSS implementations, CIC integration automated trouble ticketing RemedyAudit procedures reconcile Customer Network Services to Order Revenue & Collections, Integrated Access Device Configuration, Enterprise Change Management, Process Development and Tracking System CTC ICN Start up Order Management System (replaced by MetaSolv) Accounting Management, Change Management, Configuration Management, Fault ManagementNetwork Operations Center, New Product/Service Management, Performance ManagementProvisioning Management, Security Management, Service Quality ManagementPOP/LAN Build Out and Operations Procedures**Project began under International Network Services, (Bill Harrison, Ralph Troupe). I transitioned to full time CTC during the INS merger with Lucent. Dates are rolled under CTC for the purpose of project continuity.
    View
  • It Services – Bt
    Network Services Engineer - Ins
    It Services – Bt Oct 1998 - Nov 1999
    London, Gb
    Network Services Engineer, Hired to provide Process Documentation and Remedy Development support to large CLEC implementation: CTC Communications. On the date of INS conversion to Lucent, my position was picked up as an internal hire by CTC. CTC Communications is now One Communications.
    View
  • State Street Bank
    Systems Officer, Service Desk Implementation, Corporate Trust Standardization-Migration, Fmg
    State Street Bank May 1997 - Oct 1998
    Boston, Massachusetts, Us
    Name- Robin Roberts (have taken my married name since 2002 "Basham")Systems Officer, Remedy Service Desk Implementation, Project Manager Desktop Standardization Corporate Trust, Project ManagerDeveloped trouble and change ticketing application for the centralized helpdesk using the Remedy ARS Develop and implement, Change Management Database and WEB SiteStaff Profiles, Service Level Agreement Program CoordinationRestructure support organizations from 53 FTE to 21 FTE helpdesk
    View
  • Sunlife Financial
    Coordinator Field Application Support
    Sunlife Financial Sep 1996 - Jun 1997
    Oo
    Sun Life of Canada hired me as independent contractor under Roberts Computer Consulting EIN: I reported to Louis F BrydaMetrics Analysis - Regional Offices, Database Design and Implementation Application Support DeskResponsible for Desktop/Laptop configuration maintenanceFTP and Network Printer Support, Remote installation management - WinStall SMS Client
    View

Robin Basham Skills

Information Technology Governance Information Security Security Program Management Business Process Cloud Computing Itil Risk Management Enterprise Software Integration It Audit Enterprise Risk Management Business Continuity Project Management Cobit Strategy Cissp Network Security Sarbanes Oxley Act Sdlc Information Security Management Cisa It Service Management Enterprise Architecture Leadership Coso Data Center It Operations Change Management Internal Audit Pci Dss Process Engineering Nist Cloud Security Erp Iso 27001 Business Transformation Internal Controls Sharepoint Security Policy Visio Soa Software Documentation Web Development Fips It Risk Management Enterprise Architect Crisc Soc 2

Robin Basham Education Details

  • Lesley University
    Lesley University
    Education - Computer Based Training Special Needs
  • American Intercontinental University
    American Intercontinental University
    Information Technology
  • University Of Massachusetts Amherst
    University Of Massachusetts Amherst
    Multicultural Education
  • University Of Massachusetts Amherst
    University Of Massachusetts Amherst
    Individualized Learning - Bibliotherapy
  • International School Of Brussels
    International School Of Brussels
    Theatre

Frequently Asked Questions about Robin Basham

What company does Robin Basham work for?

Robin Basham works for Enterprisegrc Solutions, Inc.

What is Robin Basham's role at the current company?

Robin Basham's current role is CEO/CISO EnterpriseGRC Solutions, CSA Working Group, President ISC2 East I Bay Chapter.

What is Robin Basham's email address?

Robin Basham's email address is ro****@****grc.com

What is Robin Basham's direct phone number?

Robin Basham's direct phone number is +161794*****

What schools did Robin Basham attend?

Robin Basham attended Lesley University, American Intercontinental University, University Of Massachusetts Amherst, University Of Massachusetts Amherst, International School Of Brussels.

What are some of Robin Basham's interests?

Robin Basham has interest in Writing, Collecting Antiques, Standards Harmonization, Art, Sports, The Arts, My Rabbit, Teaching, Electronics, Outdoors.

What skills is Robin Basham known for?

Robin Basham has skills like Information Technology, Governance, Information Security, Security, Program Management, Business Process, Cloud Computing, Itil, Risk Management, Enterprise Software, Integration, It Audit.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.