Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Websites
Work Availability
Work Preference
Software
Interests
Languages
Timeline
Generic
Adriana Lamar

Adriana Lamar

Brighton,CO

Summary

Results-driven Information Security leader with a career spanning security operations, business development, program and offering strategy development and implementation, with notable success in planning, analysis and implementation of security initiatives. Over 10 years of experience in information security operations with specialty in Governance, Risk, and Compliance (GRC) and passion in efficiency and automation gained from GRC solution implementation. Certified as CISSP and Security +.

Overview

11
11
years of professional experience
2
2

Certifications

Work History

Deputy Information Security Officer

Soconos/GovGRC
Sacramento, CA
05.2024 - Current
  • Company Overview: Cybersecurity Consulting
  • Recommended improvements in security systems and procedures.
  • Developed, reviewed, approved, and deployed organizational security policies and procedures.
  • Provided oversight of project teams on regulatory compliance initiatives.
  • Liaised with external stakeholders on downstream security impacts.
  • Presented security issues and topics to broad, multi-stakeholder audiences.
  • Led complex security projects in a complex and multi-vendor environment.
  • Led a team of GRC and security operations analysts toward team and organizational outcomes.
  • Reviewed and approved security architectures and technology implementations.
  • Provided oversight to the security risk management process across multiple vendors and functional teams.
  • Analyzed, procured, and implemented GRC solutions.

Chief Information Security Officer

Feratus Consulting
01.2024 - Current
  • Company Overview: Cybersecurity Consulting
  • Performed risk analyses to identify appropriate security countermeasures.
  • Conducted security audits to identify vulnerabilities.
  • Recommend improvements in security systems and procedures.
  • Established measures, metrics, thresholds and targets to drive performance in alignment with security and other business strategies.
  • Researched, reviewed and recommended solutions, technologies and architectures to prepare and maintain security expenses within approved budget.
  • Directed security services and functions to align key processes with goals and objectives of organization and regulatory compliance.
  • Researched, reviewed and recommended equipment, materials and supplies to prepare and maintain security expenses within approved budget.

Practice Head - Cyber Advisory

Inspira Enterprise
Remote, TX
09.2022 - 12.2023
  • Company Overview: Pure Play Cybersecurity Consulting
  • Client Advisor and GRC Lead for Americas region.
  • Advised clients on governance, risk, and compliance.
  • Developed third party risk workflows.
  • Consulted clients through attainment and ongoing management of FedRAMP and MARS-E (ARC-AMPE) authority to operate.
  • Developed C-suite information security strategy.
  • Led GRC strategy and offering development.
  • Managed statements of work and proposal development.
  • Guided clients in identifying compliance findings and partnering with technology teams to implement mitigations.
  • Recommended mitigating controls for risk management.
  • Drove GRC across diverse business sectors, including State and local government, healthcare, electronic infrastructure, digital media and technology, and education.
  • Interviewed, hired, and mentored the Cyber Advisory Practice team.
  • Coordinated and managed onsite assessments, ensuring seamless collaboration with internal and external stakeholders.
  • PCI DSS, HIPAA/HITECH, FedRAMP, and MARS-E.

Senior Manager - Cybersecurity

Point B
01.2022 - 09.2022
  • Company Overview: Technology Consulting
  • Cyber advisory consultant and vCISO.
  • Provided cybersecurity project management, threat and vulnerability management, vendor risk management, and security architecture reviews.
  • Guided client team members toward enhancement goals, aligning context and culture to projects.
  • Performed capability assessments resulting in approved new enhancement initiatives.
  • Developed KPI structure for the third-party risk process to establish baseline performance and inform performance goals.
  • Delivered VP level guidance for program enhancement, earning additional scope of work and lasting relationships.

Senior Manager - Cybersecurity

Accenture
06.2014 - 12.2021
  • Company Overview: Technology Consulting
  • Provided security leadership and strategy for large internal and external clients.
  • Guided a team of between 5 and 20 Information security professionals in all information security domains.
  • Acted as cyber security subject matter expert for all IT and Infrastructure teams.
  • Managed organizational security culture and training.
  • Architected and documented security uplift projects.
  • Provided industry recommendations in security best practice.
  • Owned and managed information security policies and procedures.
  • Provided training, guidance, support, and opportunity for advancement to junior security professionals.
  • Reviewed and approved architecture, systems, and other change controlled assets with information security impacts.
  • Developed, implemented, and operated compliance and risk management programs.
  • Performed after incident management.
  • Created and delivered quarterly and annual reporting to government agencies for authorization to operate.
  • Created system security plans and managed Plan of Action and Milestones.
  • Performed research and analysis of federal policy/law changes and impacts to PII, PHI, and FTI processing.
  • Earned trust and investment across each project, creating mutually beneficial relationships for organization-wide growth and maturity.

Education

Bachelor of Business Administration -

Washington State University
Pullman
01.2013

Skills

  • Leadership in strategic IT/IS management
  • Strategy, program and offering development
  • Bid management and statements of work
  • Request for proposal writing and management
  • Deliverable creation, review, and approval
  • Execution of complex IT projects
  • Oversight of vendor relationships and contracts
  • Cybersecurity operations leadership
  • Establishment and oversight of governance policies
  • Risk management and compliance
  • Executive reporting and readout
  • Security roadmap and planning
  • Security metrics & KPI development
  • Security gap analysis and risk assessment

Certification

  • CISSP
  • Security +

Accomplishments

  • Successfully led multiple organizations to ATO (MARS-E and FedRAMP)
  • Effectively managed multi-stakeholder security incidents.
  • Procured solutions with cost-effective outcomes.
  • Led facilitation efforts for external audits.
  • Developed and implemented new and impactful metrics.
  • Achieved vulnerability burndown and reduction through initiatives.
  • Enhanced quality through third-party partnerships and alliances.
  • Led management of security awareness across operations.
  • Managed global operational and consulting teams.
  • Conducted risk assessments and advised and led remediation activities.
  • Led operational transformation and implementation endeavors.

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Work Preference

Work Type

Full TimeContract Work

Work Location

Remote

Important To Me

Work-life balanceCompany CultureFlexible work hoursPersonal development programsWork from home option401k matchCareer advancement

Software

ServiceNow GRC

C1Risk GRC Platform

Archer

Onspring

Interests

People-centered work

AI automation and enhancement

Driving toward outcomes

Personal development

Uplifting environments

Languages

English
Native or Bilingual

Timeline

Deputy Information Security Officer

Soconos/GovGRC
05.2024 - Current

Chief Information Security Officer

Feratus Consulting
01.2024 - Current

Practice Head - Cyber Advisory

Inspira Enterprise
09.2022 - 12.2023

Senior Manager - Cybersecurity

Point B
01.2022 - 09.2022

Senior Manager - Cybersecurity

Accenture
06.2014 - 12.2021

Bachelor of Business Administration -

Washington State University

Similar Profiles

  • Audree Rodabaugh

    Audree RodabaughAudree Rodabaugh

    Office Administrator at Rdi UsaOffice Administrator at Rdi Usa

  • Kayla Reynolds

    Kayla ReynoldsKayla Reynolds

    Human Resources & Operations Manager (Business Manager) at Aspen Ridge Preparatory SchoolHuman Resources & Operations Manager (Business Manager) at Aspen Ridge Preparatory School

  • JAMES COWELL

    JAMES COWELLJAMES COWELL

    SCRUM MASTER (Software Engineering M2) at CACISCRUM MASTER (Software Engineering M2) at CACI

  • Nate Taylor

    Nate TaylorNate Taylor

    Police Officer at Boulder Police DepartmentPolice Officer at Boulder Police Department

  • Julia Nolan

    Julia NolanJulia Nolan

    Deputy Chief Information Security Officer at U.S. BankDeputy Chief Information Security Officer at U.S. Bank

CREATE PROFILE