Work Preference
Summary
Overview
Work History
Education
Skills
Websites
Accomplishments
Certification
Section name
Timeline
Generic
Adam Cardinal
Open To Work

Adam Cardinal

Peoria,AZ

Work Preference

Job Search Status

Open to work
Desired start date: Immediately

Desired Job Title

Technology Risk ConsultantIT Controls and Governance OfficerIT Security OfficerTechnology Risk Management

Work Type

Full TimeContract Work

Location Preference

On-SiteRemoteHybrid
Location: Peoria, AZPhoenix, AZTempe, AZGlendale, AZScottsdale, AZ
Open to relocation: No

Salary Range

$120000/yr - $200000/yr

Important To Me

Company CultureHealthcare benefitsPaid time offPaid sick leave401k match

Summary

Dynamic Information Security Officer and IT Governance leader with extensive management and technical experience in highly regulated industries. Proven ability to drive security and risk management initiatives, including cyber threat intelligence, vendor risk management, cloud computing, and strategic sourcing oversight. Expertise in IT governance and control program management, with a talent for translating complex technical concepts into clear, actionable insights for diverse audiences. Committed to aligning security strategies with business objectives to ensure robust protection while delivering measurable value.

Overview

25
25
years of professional experience
6
6

Certifications

Work History

Technology Risk Consultant

Self Employed
01.2024 - Current
  • Assessed technology risk program components to identify potential vulnerabilities in design and performance.
  • Collaborated with cross-functional teams to prioritize risk mitigation recommendations .
  • Conducted compliance assessments to ensure adherence to industry regulations and standards.
  • Developed and maintained risk assessment documentation for various technology projects.
  • Provided guidance on security best practices to minimize organizational risks.
  • Played a crucial role in streamlining vendor management processes by creating standardized evaluation criteria for assessing third-party security capabilities.
  • Evaluated emerging technologies for potential risks and benefits, presenting findings to executive leadership for informed decision making.
  • Optimized technology risk management practices by developing key performance indicators and tracking progress against established goals.

IT Controls and Governance Officer

Bank of the West
01.2019 - 01.2023
  • Company Overview: $2.75 Billion annual revenue Regional Retail & Commercial Bank Subsidiary of foreign parent BMO Financial Group
  • Vice President - IT Risk Management - 1st Line of Defense.
  • Perform controls assessments of IT functional areas in support of enterprise consolidated risk assessments, risk reporting and findings management.
  • Applied previous industry experience to highlight alignments and variances from programs as implemented by peer organizations.
  • Develop and maintain Key Risk Indicators parameters and associated reporting for technology process areas as supported by identification of key risk areas.
  • Designated IT representative on Enterprise Risk Exception administration committee.
  • IT function lead for Internal Loss Data collection & reporting.

Principal Consultant

Verizon Enterprise Services
01.2010 - 01.2018
  • Company Overview: $108 Billion annual revenue Information Global Telecom, Broadband & Consulting Firm
  • Delivered and lead customized consulting engagements focused on Risk Management, Measurement Security Assessment and Business Value Alignment.
  • Developed prioritized risk register for a global pharmaceuticals/medical device company.
  • Benchmarked high priority technology project against management objectives and industry loss experience for leading national retailer.
  • Designed and Implemented Security Governance program enhancements for high value clients.
  • Supported enterprise sales team in articulating company value proposition for key enterprise clients, resulting in deeper service penetration and increased sales activity.
  • Performed risk assessments, regulatory compliance assessments, and baseline security analysis for enterprise clients with significant exposure to regulatory and external compliance mandates.

Director

IANS
02.2009 - 09.2010
  • Company Overview: $5 Million annual revenue Information Security Industry Advisory, Research & Consulting Firm
  • Defined scope, price, led and delivered customized consulting engagements focused on Information Security, Risk Management, Governance, Risk and Compliance (GRC).
  • Developed consolidated risk assessment program for a global pharmaceuticals company.
  • Defined regulatory compliance strategy for regional health care company.
  • Developed Security Awareness plan and delivery program for large engineering firm.

Director of Consulting Services

IANS
02.2009 - 09.2010
  • Led strategic consulting initiatives to enhance client engagement and satisfaction.
  • Developed comprehensive project plans aligning with client objectives and timelines.
  • Presented findings and recommendations to executive teams, influencing key business decisions.
  • Championed data-driven decision-making across client organizations by implementing robust analytical frameworks and processes.
  • Managed complex engagements for clients in various industries, demonstrating versatility and adaptability in diverse business environments.

Vice President

Fidelity Investments
01.2001 - 01.2008
  • Company Overview: $1 Trillion in assets under management mutual fund/brokerage house.
  • CISO for Retail Brokerage Division of over 7,000 employees in highly regulated industry. Designed organizational security and risk plan, implementation and oversight.
  • Security Architect for of ultra-high net worth asset management business incorporating customer service platform, portfolio accounting and field based encryption for high privacy objectives.
  • Developed business requirements for identity management for customer and rep facing systems incorporating secure single sign-on, SAML, and Liberty Alliance programs for federated identity.

Education

BS - Corporate Relations

Boston University
Boston, MA

Skills

  • Enterprise Security Management
  • Governance, Risk & Compliance
  • Cloud & Strategic Sourcing
  • Risk Assessments, Measurements & Reporting Methodologies
  • Regulatory Compliance
  • Cyber Threat Intelligence
  • Data privacy
  • Industry expertise
  • Security best practices
  • Strategy development
  • Policy development

Websites

Accomplishments

  • Enterprise Risk Management Framework Implementation
  • Security Compliance Assessment – Developed toolkit and methodology to perform Cyber Assessment Toolkit for Financial Institutions required by FFIEC. Developed toolkits for NIST Cyber Security Taskforce Self-Assessment.
  • Security Plan Design – Developed comprehensive multi-year security strategy for Health Insurance Provider mapping security objectives to specific regulatory requirements and industry standards saving over $650,000 in anticipated technology spending in first year while supporting regulatory compliance objectives.
  • Cloud Source Security – Defined security requirements for outsourcing of money movement/cash management products. Launched product on-time and with high ratings of customer satisfaction while reducing costs by over $5 Million vs. cost of internal development and hosting.
  • HIPAA/HITECH – Assessed product specifications and implemented go to market strategy for hosted software solutions to serve health care verticals. Quickly aligned products for fast-track to qualified sales for Health Care Clients increasing qualified lead generation by over 300%.
  • Cyber Threat Intelligence – Created cyber threat briefing program for global critical infrastructure company. Developed risk monitoring program during high-risk organizational change.
  • ASP Sales Support – Developed and delivered security baseline materials for Application Service Provider product to high value clients and prospects. Helped sales team exceed goals by over 50%. Awarded Outstanding Divisional Service Award for client focus and responsiveness.

Certification

  • CISSP – Certified Information Security Services Professional
  • CISA – Certified Information Systems Auditor
  • CRISC – Certified in Risk and Information Systems Control
  • CHPSE – Certified HIPAA Privacy and Security Expert
  • PCI-QSA – Payment Card International – Qualified Security Auditor
  • DB2, XP User Administration, SQL, UNIX Auditing & Security, Intrusion Detection, Network Forensics, Business Continuity/Business Resumption Planning, Incident Response, Archer GRC, HIPAA, HITECH, ISO 27002, NIST 800-53, NIST CSF

Section name

LinkedIn Link: http://www.linkedin.com/pub/adam-cardinal/4/b6b/514

Timeline

Technology Risk Consultant

Self Employed
01.2024 - Current

IT Controls and Governance Officer

Bank of the West
01.2019 - 01.2023

Principal Consultant

Verizon Enterprise Services
01.2010 - 01.2018

Director

IANS
02.2009 - 09.2010

Director of Consulting Services

IANS
02.2009 - 09.2010

Vice President

Fidelity Investments
01.2001 - 01.2008

BS - Corporate Relations

Boston University

Similar Profiles

CREATE PROFILE