As VP of Innovation and Strategy, I drive strategic planning and pioneer new initiatives to support A-LIGN's position as an industry leader in cybersecurity services. Leveraging expertise in emerging tech, I identify and vet innovative offerings and investments to fuel our next phase of transformative growth. My vision and leadership of execution across product, marketing, and operations steer impactful decisions that expand A-LIGN’s market footprint.

A-LIGN is a global compliance and security assessment solutions firm with extensive experience in providing:• SOC 1: SSAE 18 Examinations• SOC 2: AT 101 Services• PCI DSS Assessment Services• FISMA Security Assessments• ISO 27001 Certifications• FedRAMP Security Assessments• HIPAA and HITECH Services• HITRUST Assessments• Penetration Testing and Vulnerability Assessments• EU-U.S. Privacy Shield• General Data Protection Regulation (GDPR)• HIPAA Privacy Rule• SOC for Cybersecurity• Microsoft SSPA Attestation• FFIEC Cybersecurity Assessment Services• Business Continuity and Disaster Recovery ServicesA-LIGN is a licensed CPA firm, QSAC, accredited ISO 27001 certification body, HITRUST Assessor, and accredited FedRAMP 3PAO.Please visit www.A-LIGN.com to learn more about our service offerings and engagement benefits.

As a member of ISO/IEC JTC1/SC42, I contribute to the development and refinement of international standards for Artificial Intelligence. My role focuses on ensuring that AI governance, compliance, and ethical considerations are integrated into these standards, drawing from my expertise in ISO 42001 and AI governance frameworks. I collaborate with global leaders and experts to shape the future of AI regulation and standardization.

During my time at Sword and Shield I’ve been blessed to work with some amazing people, processes and technologies. I’ve led organizations through the process of creating their own internal compliance management programs, in some cases starting with an idea and finishing with fully developed policies and procedures. I’ve assessed organizations and their information systems against industry accepted frameworks like NISTs 800 series and CSF, PCI-DSS, the HIPAA/HITECH Privacy and Security rules and many others. Also, I’ve become an AlienVault Certified Security Engineer and certified instructor, leading training sessions for a global audience. In addition, I've earned the HITrust CCSFP endorsement, the PCI Qualified Security Assessor (QSA) endorsement, and passed the Certified Information System Security Professional (CISSP) certification exam. Most recently, I've been entrusted with leadership of the PCI Directorate and will be serving our staff of QSAs as they perform PCI-DSS and EI3PA assessments.

While at Teklinks/Claris I had the opportunity to serve in the creation of the Technical Account Management Department, also called Virtual CIO (vCIO). Our team’s focus was the development of an environment of mutual purpose and mutual respect with our partners. Building trust was our team’s highest priority. Our activities were modeled after the Enterprise IT Governance processes of CobIT (4.1/5), ITIL and PMBOK standards and were inspired by Covey, Senge and Fritz. In addition, we've been a source of guidance on HIPAA/HITECH/Omnibus for our partners and colleagues. I also had the good fortune to lead our Customer Experience (CX) and Loyalty initiatives and championed the use of the Net Promoter System (NPS) to capture actionable feedback.

At Fountainhead I helped develop and build the college’s flagship eCampus to bring higher education to the underserved in rural areas in upper east Tennessee and Southeast Kentucky. Using the HPL (“How People Learn”) Framework and the STAR Legacy Model as the conceptual learning frameworks and Moodle as the Learning Management System (LMS) allowed us to create a system that was low cost, extremely scalable and highly effective. I taught courses in Project Management, Database Administration and Computer Programming and led the Project Management/Implementation efforts for college’s Virtual Infrastructure. In addition, I was fortunate to become an ISACA Academic Advisor and participated in the formation of the college’s Cyber Defense Team.

In my role as IT Manager I was part of a team that created and led a junior team of IT Technicians in service of our partner community. In addition to my internal leadership/management responsibilities, I served multiple Healthcare organizations, delivering IT leadership and compliance and governance guidance to our business partners. I was also honored to collaborate in the creation of our corporate training and learning organization called Claris University.

Though very short lived, while at LMU I helped create and cast the vision for the management of the overall technology environment at the DeBusk College of Osteopathic Medicine (DCOM). My team implemented Telemedicine and remote learning processes and technologies and I, along with the CIO, managed the budgeting, reporting, and accounting of the college’s information and learning technology. Also, I led the initiative to create comprehensive continuous quality improvement processes for service delivery using ITIL and CobIT best practices.

As a dedicated (onsite) IT Manager, I was inserted full time in to the partner’s environment. While there, I led a small IT Team in support of complex multi-location, multi-state Healthcare IT network. I had the opportunity to train the company’s staff on use of Medical Records / Practice Management systems and HIPAA Compliance and was blessed to create lasting relationships between the IT group and the practice where long-lasting tension previously existed.

As a young instructor I was passionate about creating new experiences for our student community through Web Site Design, Development and Implementation. Few words can describe the sense of accomplishment felt when seeing someone have their first flash of real insight. To supplement our HTML/CSS/Dreamweaver courses, we also opened doors to new interests and ideas via Computer Programming using Visual Basic and Javascripting.