Woody Priester

Woody Priester Email and Phone Number

Cybersecurity Leader | Information Security Professional | CISO / vCISO | Security Program Development | Strategic Direction | Governance, Risk & Controls | InfoSec Dev & Ops @ Shaw Systems Associates, LLC
Woody Priester's Location
Greater Philadelphia, United States, United States
Woody Priester's Contact Details
About Woody Priester

Cybersecurity professional with successful track record (20+ years) of reducing high risks and financial impacts of security breach, fraud, and InfoSec compliance gaps. Knowledgeable of government and regulatory requirements and ensuring compliance. Leader of strategic and tactical security program direction. Developed and implemented innovative security solutions addressing enterprise design, architecture, and governance requirements. Expert in addressing evolving industry risks with targeted risk management, controls and roadmaps. Known for bringing people, process and technology together for proactive defense-in-depth. Passionate leader, successful in creating vision, identifying opportunities, and building awareness through effective communication. Practical in developing and clarifying requirements, performing gap analysis between goals and existing capabilities, auditing for quality, and designing process and performance improvements. Thought leader capable of motivating high-performing teams to maximize benefits.

Woody Priester's Current Company Details
Shaw Systems Associates, LLC

Shaw Systems Associates, Llc

View
Cybersecurity Leader | Information Security Professional | CISO / vCISO | Security Program Development | Strategic Direction | Governance, Risk & Controls | InfoSec Dev & Ops
Woody Priester Work Experience Details
  • Shaw Systems Associates, Llc
    Director, Information Security Officer
    Shaw Systems Associates, Llc Sep 2023 - Present
    Houston, Texas, Us
    View
  • Cenlar Fsb
    Svp & Deputy Chief Information Security Officer (Ciso)
    Cenlar Fsb Jul 2021 - Feb 2023
    Ewing, Nj, Us
    Notable Contributions during the full tenure of my time with Cenlar, include but are not limited to the following:  Instituted and developed a comprehensive Information Security Program. Grew aligned team from 3 to 20+ members and leveraged managed services to ensure effective management of requirements. Avoided physical and privacy breach by developing process and capabilities for Physical Security, Data Loss Prevention (DLP) and Privacy-Safeguards.  Reduced third-party risk by implementing Third-Party Security Assurance.  Implemented managed SOC services for 24x7x365 MDR (monitoring, detection and response). Brought cyber visibility to anomalous events to support threat management action.  Successfully implemented the calendar and program for annual external, internal and application penetration testing. Improved proactive detection and remediation of vulnerabilities and implemented service provider rotation every three years as a best practice.  Improved security of in-house applications through implementation of secure application development testing. Utilized SaaS and on-premised based testing tools in support of OWASP guidance.  Advanced access control through implementation of a rigorous access recertification program and standards, and through oversight of Identity and Access Management processes. Limited occurrence and financial impact of breaches via establishment and implementation of Critical Incident Response Team and cyber incident response process. Successfully managed two concerning breaches resulting in limited financial impact outside of response and forensics investigation expense.  Advanced the technology environment to include a solid security architecture with key toolsets including LogRhythm, Qualys, Carbon Black EDR, Digital Guardian DLP, advanced Microsoft Defender solution sets, Fortigate SASE solutions, Cisco (ISE/security gateways/Umbrella) and others.
    View
  • Cenlar Fsb
    Svp & Ciso
    Cenlar Fsb Oct 2018 - Aug 2021
    Ewing, Nj, Us
    View
  • Cenlar Fsb
    Svp & Chief Technology Risk Officer
    Cenlar Fsb May 2017 - Oct 2018
    Ewing, Nj, Us
    View
  • Cenlar Fsb
    Vp & Ciso
    Cenlar Fsb Nov 2013 - May 2017
    Ewing, Nj, Us
    Responsible for the overall Information Security Program. Providing strategic leadership to accomplish short and long-term objectives. Liaised with executive leadership to drive priorities and align to business strategy. Designed and delivered preventative, detective and corrective security and continuity controls. Drove information protection efforts protecting sensitive and proprietary information. Managed enterprise projects and initiatives for improving data security, security architectures, threat and incident management, compliance, and risk management. Supported access controls, change controls, business continuity, and disaster recovery. Facilitated metrics and reporting frameworks to measure the maturity of the security program. Directed on-going vulnerability assessments, network and application penetration tests, and routine network security scans. Responded to prospective client RFPs and recurring client due diligence requirements for a client base averaging more than 160 clients. Supported external and internal audits and regulator and rating agency examinations.
    View
  • Robert Half International / Protiviti Consulting
    Contract Consultant
    Robert Half International / Protiviti Consulting Apr 2013 - Oct 2013
    • Identified improvement opportunities for the Technology Risk Management Program for the US banking operations of a large global financial services company.• Completed a current state assessment of the existing local Technology Risk Management function.• Identified alignment with other enterprise risk management and governance functions.• Initiated development of program definition and target state operating model.• Conducted day-to-day technology risk management operations.• Performed monthly risk assessments and developed technology risk scorecards.• Coordinated and held monthly working group and quarterly technology risk steering committees.• Evaluated risk appetite and supported local security risk non-compliance / acceptance process.• Provided technology audit support and oversight.
  • Phh Corporation
    Vp & Chief Information Security Officer
    Phh Corporation Jun 2005 - Apr 2013
    • Implemented and directed the corporation’s comprehensive Information Protection Program.• Expanded PHH's Information Protection Program to PHH's Fleet operations in 2010. • Implemented an Identity Management infrastructure.• Implemented Automated Provisioning capabilities to improve security administration turn times and quality.• Directed the implementations of numerous security toolsets and application security frameworks with supporting business based security models.• Implemented an Application Vulnerability Prevention and Remediation program. • Transitioned the annual SAS-70 process to an annual SSAE 16 SOC 1 Type 2 audit process. • Developed and improved the corporations Business Continuity and DR programs. • Expanded the group's charter to Technology Risk Management from an InfoSec emphasis.• Initiated an annual RCSA (Risk Control Self-Assessment) program for Technology. • Participated in and supported the corporation's Information Technology Steering Committee. • Developed a technology/ security/ continuity focused Vendor Due Diligence program overseeing PHH's global service providers.• Managed an annual Technology Risk Management budget varying between $2.5M to $5.0M with additional capital funding for approved initiatives.
  • Phh Mortgage
    Director / Vp Information Protection / Ciso
    Phh Mortgage Dec 1999 - Jun 2005
    Mount Laurel, Nj, Us
    • Developed a comprehensive, multi-disciplined Information Protection Program, from ground up.• Ultimately staffed the function with a team of 21 individuals covering:• Security Policy and Procedure; Information Security risk assessment; • Audit and regulator support; client pre­sales and recurring due diligence / audits; • Security Operations management, User Security Administration;• Strategic planning and technology roadmap development; Security Architecture development; • Security Tools implementation; Identity, Access &Entitlement Management implementation; • Vendor Governance for technology and security due diligence with vendors and suppliers; • Business Continuity and Technical Recovery planning facilitation.• Focal point for coordination of Information Technology internal controls and annual Sarbanes-Oxley and SAS-70 audits.
    View
  • Cendant / Avis Budget Group
    Director It Audits
    Cendant / Avis Budget Group 1996 - 1999
    Brooklyn, New York, Us
    • Conducted annual risk assessment processes to develop the annual audit plan. • Conducted technology related audits across a total of 68 different Cendant subsidiaries. • Participated in the corporation’s Year 2000 readiness planning and implementation efforts.• Conducted Y2K readiness audits across all Cendant Operations.• Developed Technology Audit budgets and staffing.• Supported financial and operation audit staff based in three states.
    View
  • Phh Corporation
    Director Global Security
    Phh Corporation 1996 - Jun 1996
    Mount Laurel, Nj, Us
    • Initiated the development of a Global Information Security Program for PHH.• Managed staff assigned to Information Security Administration and Disaster Recovery Planning.• Conducted mainframe disaster recovery exercises with Comdisco and Sungard.
    View
  • Phh Corporation
    Manager / Director Of It Audits
    Phh Corporation Dec 1992 - Jan 1996
    Mount Laurel, Nj, Us
    • Developed the annual technology audit plan.• Conducted and managed IT audits across the corporation including the Mortgage, Relocation and Vehicle Management Services divisions.• Trained and developed new IT audit staff. • Participated in the Corporate IT Leadership Council.• Developed new corporate policies and procedures, including the company's Computer and E-mail Usage policies.• Developed Distributed Systems control guidelines and policies.• Audited the corporation's European technology operations.• Managed budgets and hiring for the Technology Audit group within Corporate Audit.
    View
  • Pwc (Formerly Price Waterhouse, Llp)
    Senior Information Technology Auditor
    Pwc (Formerly Price Waterhouse, Llp) 1992 - 1992
    Gb
    • Supported clients and client technology audits and consulting in Massachusetts, Maryland and Florida.• Conducted General Information Technology Controls audits.• Supported year-end financial audits for clients.• Developed work papers and evidential materials.
    View
  • Csx Corporation
    Supervisor Information Technology Audits
    Csx Corporation 1988 - 1992
    Jacksonville, Fl, Us
    • Planned and managed Information Technology audits for all company divisions including Rail Transport, Intermodal, Logistics, Barge Lines, International Container shipping. • Performed risk assessments to drive annual audit plans.• Developed systematic audit methods including data retrievals for process anomaly analysis.• Completed Information Security and End User Computing audits.• Supervised more junior staff.• Conducted audits in international locations.• Managed the audit division's technology operations including implementations of new electronic mail systems and structured file repositories.
    View
  • Maryland Casualty, An American General Company
    Information Technology Auditor
    Maryland Casualty, An American General Company 1987 - 1988
    • Planned and conducted Information Systems related audits and assessments including General Information Technology controls, Disaster Recovery and Information Security. • Developed audit programs, audit scope and approach documentation.• Developed system programs to retrieve data to drive effective audits.• Developed working papers and audit evidential matter.• Reviewed auditor work papers and provided feedback and requirements for ensuring adequate audit documentation of audit conclusions.• Wrote and developed audit reports with realistic and actionable recommendations.
  • Monumental Corporation
    Internal Auditor
    Monumental Corporation 1985 - 1987
    • Planned and executed internal financial and operational audits.• Identified opportunities for improvements in company operations, better adherence to policies and standards, and proper accounting treatments.• Developed programmatic solutions to retrieve data from company systems to help make audits more effective.• Assisted in Information Technology focused audits.• Developed audit follow-up automated solution.• Learned the tenets of Information Technology audits and controls.

Woody Priester Skills

It Audit Disaster Recovery Information Security Security Vendor Management Governance Information Technology Business Continuity Process Improvement Risk Management Internal Audit Management Cisa Leadership Sdlc Program Management Risk Assessment Enterprise Risk Management Sarbanes Oxley Act Business Analysis Privacy Law Sas70 Auditing Data Center Information Security Management It Management Business Continuity Planning Security Architecture Design Internal Controls Sarbanes Oxley Software Documentation Policy

Woody Priester Education Details

  • University Of Baltimore
    University Of Baltimore
    Business And Accounting
  • Community College Of Baltimore County
    Community College Of Baltimore County
    Business And Accounting
  • Loyola University Maryland
    Loyola University Maryland
  • Professional Certifications
    Professional Certifications

Frequently Asked Questions about Woody Priester

What company does Woody Priester work for?

Woody Priester works for Shaw Systems Associates, Llc

What is Woody Priester's role at the current company?

Woody Priester's current role is Cybersecurity Leader | Information Security Professional | CISO / vCISO | Security Program Development | Strategic Direction | Governance, Risk & Controls | InfoSec Dev & Ops.

What is Woody Priester's email address?

Woody Priester's email address is wo****@****phh.com

What is Woody Priester's direct phone number?

Woody Priester's direct phone number is +160988*****

What schools did Woody Priester attend?

Woody Priester attended University Of Baltimore, Community College Of Baltimore County, Loyola University Maryland, Professional Certifications.

What are some of Woody Priester's interests?

Woody Priester has interest in Economic Empowerment, Education, Environment, Science And Technology, Disaster And Humanitarian Relief, Animal Welfare.

What skills is Woody Priester known for?

Woody Priester has skills like It Audit, Disaster Recovery, Information Security, Security, Vendor Management, Governance, Information Technology, Business Continuity, Process Improvement, Risk Management, Internal Audit, Management.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.