Steve Huff

Steve Huff Email and Phone Number

VP, IT Security & Risk @ Capitol Federal | CISM, GSLC, GCCC @ Capitol Federal® Savings Bank
Steve Huff's Location
Topeka, Kansas, United States, United States
Steve Huff's Contact Details
About Steve Huff

With over 20 years of work experience in the IT and banking sectors, I am a seasoned and certified IT security leader who is passionate about protecting data and systems from cyber threats. I have a strong background in IT security strategy, operations, frameworks, and compliance, as well as project management and vendor negotiation skills. As the VP of IT Security & Risk at Capitol Federal Savings Bank, I am responsible for establishing and leading the IT security function, providing periodic updates to the Board, and managing relationships with third parties for security telemetry and threat feeds.In my current role, I have successfully implemented several initiatives to enhance the security posture of the bank, such as expanding the responsibilities of the security team to improve risk mitigation, implementing multi-factor authentication, and evaluating and deploying SIEM and log collection systems. I leverage various security frameworks, such as CIS Critical Security Controls, NIST, and FFIEC, to guide security strategy and operations. I also hold multiple certifications, such as CISM, GSLC, and GCCC, that demonstrate my knowledge and expertise in IT security and risk management.

Steve Huff's Current Company Details
Capitol Federal® Savings Bank

Capitol Federal® Savings Bank

View
VP, IT Security & Risk @ Capitol Federal | CISM, GSLC, GCCC
Steve Huff Work Experience Details
  • Capitol Federal® Savings Bank
    Vp, It Security & Risk
    Capitol Federal® Savings Bank Jan 2013 - Present
    Topeka, Kansas, Us
    As an accomplished cybersecurity professional, I specialize in creating information security governance programs by collaborating with business partners to design controls that safeguard the bank’s confidential information. My strategic approach combines technical expertise, banking acumen, and regulatory knowledge, resulting in robust, multi-layered defenses against cyber threats.Through my team we implement and oversee cybersecurity controls across the entire bank. Our approach is risk-based, both in working with frameworks such as CIS and NIST, and addressing findings from risk assessments, penetration tests, audits, and examinations. As the primary IT regulator liaison, I ensure seamless compliance. Additionally, my expertise extends to interpreting regulatory changes (e.g., FFIEC) and making necessary adjustments to our IT SOX controls.I play a crucial role in keeping our Board informed about our cybersecurity posture. By bridging the gap between technical intricacies and business impacts, my briefings empower informed decision-making at the highest level.Drawing on my background in business law and regulatory requirements, I effectively negotiate technology agreements. I overhauled the vendor management program to ensure regulatory compliance, creating new processes for vendor onboarding and due diligence. I am also responsible for the bank's cyber incident response.
    View
  • Corefirst Bank & Trust
    Director Of Information Technology
    Corefirst Bank & Trust May 2004 - Dec 2012
    Topeka, Ks, Us
    I excelled in steering and optimizing organizational IT functions. My expertise included creating and managing annual IT capital and operating budgets, ensuring financial efficiency and strategic resource allocation. Serving as the Chair of the IT Steering Committee, I communicated project updates and compliance status to department leaders, fostering a transparent and collaborative work environment.My accomplishments extended to leading a core conversion which included multiple ancillary systems. I led successful negotiations with multiple vendors, resulting in improved contract terms and an average savings of 37%. I drove continuous improvement by conducting monthly checkpoint meetings with business partners, evaluating the quality of the IT department, and identifying enhancement opportunities. Notably, my initiatives rapidly improved department processes, garnering positive assessments from Federal and State bank examiners who adhered to the Federal Financial Institutions Examination Council (FFIEC) framework. Additionally, I contributed to regulatory compliance by creating, updating, and monitoring IT policies. I also established a business resumption hot site with tiered recovery time objectives, ensuring robust disaster recovery preparedness.
    View
  • American Century Investments
    Programming Manager
    American Century Investments Dec 1997 - Feb 2004
    Kansas City, Missouri, Us
    In my leadership role, I successfully managed a team of PeopleSoft developers and project managers, fostering collaboration with business partners to achieve objectives through technology. I worked with a department-wide effort to implement a robust project management methodology. I provided valuable coaching to project managers, focusing on work breakdown structure development, risk and issue mitigation, estimating, and facilitation skills.My efforts significantly impacted project delivery metrics, enhancing on-time delivery from 55% to an impressive 98%, with a maximum project effort of 7,250 hours. As part of my commitment to knowledge sharing, I authored an article in Computerworld, shedding light on the intricacies of annual IT budgeting and project planning cycles. Additionally, I contributed to the field by providing PeopleSoft HR corporate usage models for publications on Human Resource Management strategies and Human Resource Information Systems. Complementing my practical experience, I pursued coursework towards the Project Management Professional (PMP®) certification, further solidifying my commitment to excellence in project management.
    View
  • Deloitte Consulting
    Manager - Technology Consulting Practice
    Deloitte Consulting Jan 1994 - Dec 1997
    I spearheaded impactful initiatives in software implementation and process optimization. Notably, I led the successful Employment Process software implementation for a prominent property & casualty insurer, overseeing a system designed for 70,000+ employees and handling 200,000+ applicants annually. My role included identifying and implementing re-engineering opportunities to enhance the client's hiring process flow.Furthermore, I implemented PeopleSoft Human Resources, Benefits, and Payroll applications for a manufacturing firm's operations in the United States and Canada. In this capacity, I created a comprehensive PeopleSoft Human Resources technical conversion and testing strategy and facilitated business process flow diagramming and visioning sessions. Additionally, my expertise extends to leading software selections for Human Resources, Payroll, and Manufacturing applications for various clients, showcasing my proficiency in managing the RFP process and ensuring optimal software choices.
    View
  • Hill'S Pet Nutrition
    Business Systems Consultant
    Hill'S Pet Nutrition May 1990 - Jan 1994
    Topeka, Ks, Us
    I created user requirements for a sales force automation system, contributing to improved operational processes and enhanced sales functionality. Serving as a network administrator, I ensured the seamless operation of IT infrastructure, providing optimal connectivity and performance.Additionally, I demonstrated proficiency in application development, managing both third-party and in-house applications using RPG. Beyond technical responsibilities, I actively participated in the strategic evolution of the Information Technology department. This included my involvement in the department's redesign, where I evaluated and improved organizational effectiveness in terms of people, information, and reward systems. I also played a key role in shaping the department's strategic vision, and aligning its goals with broader organizational objectives.
    View

Steve Huff Skills

Project Management Business Process Risk Management Vendor Management Management It Management Leadership Business Analysis Program Management Information Technology Banking Business Process Improvement Process Improvement Consulting Business Intelligence Enterprise Software Crm Team Leadership Contract Negotiation Peoplesoft It Strategy Visio It Audit Management Consulting Sdlc Budgets Project Planning Disaster Recovery Sarbanes Oxley Act Executive Management Core Banking Technology Integration Technology Planning Technology Implementation Technology Evaluation Internet Banking Systems Analysis Contract Management Technology Management Managerial Finance Human Resources Recruiting Project Portfolio Management Pmo Banking Technology Project Execution Managerial Experience Big 4 Technical Management Financial Management

Steve Huff Education Details

  • The University Of Kansas
    The University Of Kansas
    Information Technology
  • The University Of Kansas
    The University Of Kansas
    Business And Accounting
  • The George Washington University
    The George Washington University
    It Project Management
  • Graduate School Of Banking At The University Of Wisconsin - Madison
    Graduate School Of Banking At The University Of Wisconsin - Madison
    Bank Technology Management

Frequently Asked Questions about Steve Huff

What company does Steve Huff work for?

Steve Huff works for Capitol Federal® Savings Bank

What is Steve Huff's role at the current company?

Steve Huff's current role is VP, IT Security & Risk @ Capitol Federal | CISM, GSLC, GCCC.

What is Steve Huff's email address?

Steve Huff's email address is st****@****cox.net

What is Steve Huff's direct phone number?

Steve Huff's direct phone number is +178527*****

What schools did Steve Huff attend?

Steve Huff attended The University Of Kansas, The University Of Kansas, The George Washington University, Graduate School Of Banking At The University Of Wisconsin - Madison.

What are some of Steve Huff's interests?

Steve Huff has interest in Education.

What skills is Steve Huff known for?

Steve Huff has skills like Project Management, Business Process, Risk Management, Vendor Management, Management, It Management, Leadership, Business Analysis, Program Management, Information Technology, Banking, Business Process Improvement.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.