Tim W. Email & Phone Number

Boise, ID, US

Transformative Cybersecurity Leader Driving Breach Prevention and Operational ExcellenceSpearheaded the transformation of a compliance-focused security program into a proactive breach prevention model, delivering 100% visibility into risks and integrating robust data into an enterprise-wide risk management framework.Regularly presented strategic updates.

Toronto, Ontario, CA

• Built, advocated, and sponsored information security initiatives across a fast-growing business, taking it through the security requirements required as a company traded on the NASDAQ, with Fortune 50 customers..
• Executive responsible for the program strategy.
• Created KPI’s that drove monitoring of security effectiveness
• Advocated and created a budget >$6M/Annual for Cyber Security
• Responsible for SOC2, HIPAA and PCI compliance programs.
• Built a program that gave 100% visibility of our cloud assets, to detect any security events and avoid shadow IT

Dallas, Texas, US

• Built, advocated, and sponsored information security initiatives across a fast-growing business, taking it through the security requirements required as a public traded company. Provided vision, strategy, and execution.
• Executive responsible for the security of Signify Health's products, data and assets.
• Lead Signify Health’s Multi-Cloud security vision, strategy and programs.
• Partner with Product and Engineering for security enhancements to the product.
• Responsible for SOC2, HIPAA and HITRUST compliance programs.
• Responsible for information security policies.

• Act as the CISO and Data Protection Officer (DPO) for a variety of organizations, with an expertise in Cloud, healthcare and SaaS. Provide Application Security, Compliance, Privacy and Security Operations.
• Build information security policies
• Act as the privacy director for customers. Designated as the organizational DPO for GDPR. Ensure programmatic compliance with CCPA and other legislative & privacy requirements.
• Build Application Security Practices and automate the process. Includes dynamic and static code analysis.
• Provide penetration testing activities.
• Provide compliance direction for HIPAA, HITECH, GLBA, ISO 27001, PCI, GDPR and SOC II.

Austin, Texas, US

Developed and executed the overall information security, privacy FedRAMP and risk roadmap, to include creation and implementation of effective and reasonable security standards and policies. Led the team through post-acquisition process from Aurea Software, and rebuilt the information security and FedRAMP verticals. Led the security team through the.