AeroLeads people directory · profile

Steve Lodin Email & Phone Number

Vice President, Information Security at Sallie Mae at Sallie Mae
Location: Greater Indianapolis, United States 21 work roles 3 schools
2 work emails found @salliemae.com 6 phones found area 302, 317, and 703 LinkedIn matched
✓ Verified Jul 2026 4 data sources Profile completeness 100%

Contact Signals · 2 work emails · 6 phones

Work email s****@salliemae.com
Direct phone (302) ***-****
LinkedIn Profile matched
3 free lookups remaining · No credit card
Current company
Role
Vice President, Information Security at Sallie Mae
Location
Greater Indianapolis, United States

Who is Steve Lodin? Overview

A concise factual answer block for searchers comparing this professional profile.

Quick answer

Steve Lodin is listed as Vice President, Information Security at Sallie Mae at Sallie Mae, based in Greater Indianapolis, United States. AeroLeads shows a work email signal at salliemae.com, phone signal with area code 302, 317, 703, and a matched LinkedIn profile for Steve Lodin.

Steve Lodin previously worked as Vice President, Information Security at Sallie Mae and Senior Director, Cybersecurity Operations at Sallie Mae. Steve Lodin holds Masters, Computer Science from Purdue University.

Company email context

Email format at Sallie Mae

This section adds company-level context without repeating Steve Lodin's masked contact details.

{first}.{last}@salliemae.com
89% confidence

AeroLeads found 2 current-domain work email signals for Steve Lodin. Compare company email patterns before reaching out.

Profile bio

About Steve Lodin

I am a Cyber Security executive with strong IT domain experience implementing a defense-in-depth strategy focused on Security, Risk, Compliance, and Governance. I have robust international work experience in large global companies and small startups. Highly motivated leader with excellent coaching, facilitation and mentoring skills. Currently leading a team that protects corporate systems and customer sensitive data in the Cloud in addition to a team that provides employee identity and access governance. Previously a consultant in a startup providing IT and information security consulting services. Provided national strategy and support for Forsythe pre-sales resources and engaged with customers to identify and solve business problems related to IT security and risk management issues. Previously specialized in medical device security, healthcare IT security, and corporate information security at Roche. Multi-faceted IT career – internal IT leadership, customer-facing IT vendor, and IT consultant. Multi-industry career – consulting, technology, healthcare/medical devices, financial services industry, accounting, and automotive manufacturing. Strong oral and written communication skills with many public speaking engagements and published works. Active in the security community. Degrees in engineering and computer science with focus in computer security. Active Certifications: Certified Information Systems Security Professional (CISSP)Specialties: ►Executive-level IT strategy►IT Infrastructure (Cloud, Networking, UNIX, Linux, Windows, OSX, etc...)►IT Security Leadership (Governance, Compliance, Strategy, Policy, Architecture)►Regulatory Compliance (PCI-DSS, FFIEC/FDIC, FDA, FERC/NERC CIP)►Medical Device Security and HIPAA

Listed skills include Security, Information Security, Computer Security, Vulnerability Management, and 45 others.

Current workplace

Steve Lodin's current company

Company context helps verify the profile and gives searchers a useful next step.

Sallie Mae
Sallie Mae
Vice President, Information Security at Sallie Mae
AeroLeads page
21 roles · 20 years

Steve Lodin work experience

A career timeline built from the work history available for this profile.

Vice President, Information Security

Current

Newark, De, Us

In addition to the Cybersecurity Operations team, I now lead the Identity and Access Management team providing overall identity and access governance to achieve segregation of duty and least privilege including role-based access control, the access certification process, as well as strategic and operational aspects of IAM in Amazon AWS. As part of my Threat & Vulnerability Management team, I am also responsible for the Corporate Security Exceptions process. Recently added External Attack Security Management (EASM) to the Threat & Vulnerability Management team. Continue to drive and implement many focus areas in the Zero Trust journey, including least privilege, multi-factor authentication, strong IAM segregation of duty, software defined perimeter, microsegmentation, and continuous verification. Collaborates with IT infrastructure and software engineering teams in multiple ways such as vulnerability management and remediation, enterprise architecture, and cross team project oversight. Responsible for incident response internally and with Tier 3 on retainer. Member of the corporate GenAI working group. Recently completed the new Sallie Mae's Leadership Program (LEAP).

Jan 2023 - Present

Senior Director, Cybersecurity Operations

Newark, De, Us

Lead the cybersecurity operations team that provides security engineering for endpoint security, endpoint forensics, network threat detection, vulnerability management, secure baseline configuration management, external attack surface management, wireless intrusion prevention, email security, inbound and outbound web security, data leak prevention, application security, purple teaming, insider risk, threat intelligence, and technical incident response. Purchase and provide security solutions for primary data center infrastructure in the public cloud providers as Sallie Mae migrated all managed data center assets to AWS. Manage 3rd parties providing pen testing, ethical hacking, and MDR/SIEM/SOC Tier 1 providing alerting, limited automated response, and threat hunting. Direct the MSSP that operates 24x7 cybersecurity infrastructure with on-prem and India-based resources. Represent Sallie Mae on the Financial Services Information Sharing and Analysis Center (FS-ISAC) bi-directional information sharing activities while continuously monitoring for emerging threats. Provide support for audits (PCI-DSS, FDIC/FFIEC/GLBA/SOX) and evidence for continuous monitoring of internal controls based on a unified controls framework focused on NIST and FFIEC in a highly regulated environment. Measure security maturity with CIS Critical Security Controls, FFIEC Cybersecurity Assessment Tool, and Cyber Risk Institute Financial Profile. Provide Tier 2 Incident Detection and Response capability to the corporate Incident Response organization. Using Breach Attack Simulation tools under Mitre ATT&CK framework to validate prevention, detection, and event generation in the overall security stack. Partnering with Agile teams such as IT architects, infrastructure, and application development to secure IT during the cloud digital transformation journey to the serverless cloud. Deliver metrics for Risk Committee and Board reporting. Completed Sallie Mae's Leadership Development Program.

Jan 2017 - Jan 2023

Director, Cybersecurity Operations

Newark, De, Us

Subsequent to Sallie Mae splitting the company into Sallie Mae and Navient, I grew and developed the Cybersecurity Operations team from scratch to augment the 3rd party MSSP security operations solution selected for the new Sallie Mae.

May 2014 - Dec 2016

Director, Application Security & Vulnerability Management

Newark, De, Us

Managed a team that provided enterprise-wide services in application security (penetration testing, application security assessments, web app scanning, ethical hacking, mobile app security assessment), vulnerability management (threat intelligence, vulnerability scanning, database security scanning, web site scanning), and security operations (two-factor authentication, virtual datacenter protection).

Nov 2012 - May 2014

Advisory Member

Current
Governor Eric J. Holcomb’S Indiana Executive Council On Cybersecurity

Member of the IECC and currently on the Finance Working Group.

Jan 2019 - Present

Strategic Advisory Boards / Client Advisory Boards

Current
Multi

I participate on numerous advisory boards. The delivery varies from informal breakfast meetings to formal established SAB/CABs. These are all in the IT industry.

2007 - Present ~19 yrs 6 mos

Indianapolis Ciso Executive Summit Governing Board

Current

Portland, Oregon, Us

2022 Executive Boardroom - Cybersecurity Insurance -- What Price Will You Pay? 2021 Executive Boardroom - Executing Your Security Operations Plan 2018 Executive Boardroom - Securing a Multi-Cloud Strategy2017 Breakout Session - Up Your Security Game With Threat Intelligence2017 Breakout Session - Conquering Ransomware – No Magic Wands Required2016 Breakout Session - Threat Intelligence 1012016 Breakout Session - Orchestrating an Effective Data Loss Prevention Program2013 Breakout Session - Application Security and Your Business – the People, Processes and Technology That Lead to Success (Cincinnati)

Jan 2013 - Present

Co-Founder And Consultant

Indianapolis, In, Us

Pondurance LLC is a professional services and risk management firm specializing in Information Security, Business Continuity Management, and Compliance Readiness.As a Co-founder and consultant at Pondurance, I helped clients navigate the maze of information security requirements and develop secure information technology programs that significantly reduce risk to the organization and ensure compliance to industry regulations, including HIPAA, NERC CIP, and PCI-DSS.

Jan 2011 - Nov 2012

Principal

Archmaven

ArchMaven merged together with Theseus Security and Pondurance

May 2010 - Dec 2010

Director, Security Solutions

Skokie, Illinois, Us

Forsythe is a leading, independent provider of technology infrastructure solutions to Fortune 1000 and mid-market companies across all industries. Our clients value our unparalleled expertise in helping them optimize their technology investment, from assessment and design to integration, management, and financing. Our employees are highly motivated self-starters and problem-solvers who value the chance to make a difference. Headquartered in Skokie, Illinois, Forsythe has an unbroken 38-year record of profitability.

Apr 2008 - Dec 2009

Director Of North America Product It Security

Switzerland 🇨🇭 , Ch

Focused on enhancing security of products and providing risk management and IT security answers regarding products and services to customers. Developed security solutions in an FDA regulated environment focused on business risk and regulatory compliance. Developed strategy and roadmaps in remote vendor access infrastructure and security that drove global development and local implementation. Worked with customers (CIO, CISO, Lab Director), industry partners and competitors to establish standards for healthcare IT and medical device industries. Elected chair of the HIMSS Medical Device Security Workgroup for 2006-2007 term. Developed security-related standards while member of HIMSS / NEMA / CLSI.

Jun 2004 - Apr 2008

Head Of Global It Security / Vp / Global Ciso (International Expat Assignment)

Switzerland 🇨🇭 , Ch

Developed the global IT security organization, reported directly to the global divisional CIO. Responsible for the information security program, including policies and procedures, awareness, global IT security emergency response, and IT security consulting. Acted as the divisional representative in cross-divisional IT security activities. Continued to grow the global security organization by hiring resources and providing organizational development support for the regions. Worked closely with internal IT audit, Corporate Audit and external audit to assess risk in the IT environment. Continuously provided management information about the state of security, including global incident cost analysis. Developed the global solutions for intrusion detection and vulnerability management. Completed the Roche Global Leadership Program.

Apr 2001 - Jun 2004

Manager, Information Security

Switzerland 🇨🇭 , Ch

My group administered security systems and performed other information security functions. Managerial activities included direct supervision of user and access administration personnel and project management. Technical activities included IT Strategy and Architecture, Information Security Consulting and System Security Review, Intrusion Detection System Architecture and Implementation, IT Incident Investigation and Response, Vulnerability Management and coordination of Third-Party Security Assessments.

Sep 1999 - Apr 2001

Chair, Medical Device Security Workgroup

Chicago, Il, Us

Chair of the HIMSS Medical Device Security Workgroup, member of the HIMSS Privacy & Security Steering Committee, member of the HIMSS IT Systems Security Workgroup. Helped develop the HIMSS Manufacturer's Disclosure Statement on Medical Device Security (MDS2) and the Application Security Questionnaire.

Jun 2006 - Jun 2007

Manager, Esecurity Services

London, Gb

Technical activities ranged from project technical lead to project manager. Project management activities included workplan development, project planning, resource management, and deliverable quality review. Client related activities included consulting, new business development, proposal development, and engagement kickoff/closure presentations. Other administrative activities included mentoring, resource management and personnel development. Specific client service activities included performing security assessments such as vulnerability identification and risk assessment and performing computer-related intellectual property forensics investigations.

Aug 1997 - Sep 1999

It Specialist - Senior Security Architect

Gillingham, United Kingdom, Gb

Primary duties include developing security architectures, evaluating security components, and deploying security systems for hosts, networks, and applications. Co-developed and managed engineering workstation network of servers and workstations (over 500) for 1000's of users globally. Developed the Corporate Software Bank (presented at USENIX LISA '93). Setup and managed mail and Usenet services.

Oct 1991 - Aug 1997

Advanced Project Engineer

Gillingham, United Kingdom, Gb

Developed advanced concept vehicle displays including Head Up Displays. Also acted as department computer manager including Apple Macintosh and Sun/HP UNIX system administration. Installed first external email connection for Delco Electronics.

Jun 1988 - Oct 1991

Coop Engineer

Ac Spark Plug

Coop engineer working in multiple engineering assignments.

Mar 1985 - Jun 1988
3 education records

Steve Lodin education

Masters, Computer Science

Purdue University

Bachelors, Electrical Engineering

North Dakota State University

College Prep

Fargo Shanley High School
FAQ

Frequently asked questions about Steve Lodin

Quick answers generated from the profile data available on this page.

What company does Steve Lodin work for?

Steve Lodin works for Sallie Mae.

What is Steve Lodin's role at Sallie Mae?

Steve Lodin is listed as Vice President, Information Security at Sallie Mae at Sallie Mae.

What is Steve Lodin's email address?

AeroLeads has found 2 work email signals at @salliemae.com for Steve Lodin at Sallie Mae.

What is Steve Lodin's phone number?

AeroLeads has found 6 phone signal(s) with area code 302, 317, 703 for Steve Lodin at Sallie Mae.

Where is Steve Lodin based?

Steve Lodin is based in Greater Indianapolis, United States while working with Sallie Mae.

What companies has Steve Lodin worked for?

Steve Lodin has worked for Sallie Mae, Ohio River Valley Chapter Of The Cloud Security Alliance, Governor Eric J. Holcomb’S Indiana Executive Council On Cybersecurity, Multi, and Evanta, A Gartner Company.

How can I contact Steve Lodin?

You can use AeroLeads to view verified contact signals for Steve Lodin at Sallie Mae, including work email, phone, and LinkedIn data when available.

What schools did Steve Lodin attend?

Steve Lodin holds Masters, Computer Science from Purdue University.

What skills is Steve Lodin known for?

Steve Lodin is listed with skills including Security, Information Security, Computer Security, Vulnerability Management, Information Security Management, Pci Dss, Project Management, and Linux.

Find 750M verified contacts

Search by job title, company, industry, location, and seniority. Export verified B2B contact data when you need it.