Summary
Overview
Work History
Education
Skills
Certification
Accomplishments
Websites
Timeline
Generic
Adriana Lamar

Adriana Lamar

Brighton,CO

Summary

Results-driven Information Security leader with notable success in planning, analysis and implementation of security initiatives. Over 10 years of experience in information security operations with specialty in Governance, Risk, and Compliance (GRC).. Certified as CISSP and Security +.

Overview

11
11
years of professional experience
1
1
Certification

Work History

Deputy Information Security Officer

Soconos
05.2024 - Current
  • Recommend improvements in security systems and procedures.
  • Developed, reviewed, approved, and deployed organizational security policies and procedures.
  • Provided oversight of project teams on regulatory compliance initiatives.
  • Liaised with external stakeholders on downstream security impacts.
  • Presented security issues and topics to wide audiences.
  • Led complex security projects in a complex and multi-vendor environment.
  • Led a team of GRC and security operations analysts toward team and organizational outcomes.
  • Reviewed and approved security architectures and technology implementations.
  • Provided oversight to the security risk management process across multiple vendors and functional teams.

Chief Information Security Officer

Feratus Consulting
01.2024 - Current
  • Performed risk analyses to identify appropriate security countermeasures.
  • Conducted security audits to identify vulnerabilities.
  • Recommend improvements in security systems and procedures.
  • Established measures, metrics, thresholds and targets to drive performance in alignment with security and other business strategies.
  • Researched, reviewed and recommended solutions, technologies and architectures to prepare and maintain security expenses within approved budget.
  • Directed security services and functions to align key processes with goals and objectives of organization and regulatory compliance.
  • Researched, reviewed and recommended equipment, materials and supplies to prepare and maintain security expenses within approved budget.

Practice Head - Cyber Advisory

Inspira Enterprise
09.2022 - Current
  • Company Overview: Pure Play Cybersecurity Consulting
  • Advisor and GRC Lead, advising clients on governance, risk, and compliant, perform third-party assessments, delivering certification and authorization, supporting C-suite information security strategy development.
  • Responsible for identifying compliance findings, partnering with technology teams to implement remediations and compliant solutions, recommending alternate course of action and alternate solutions, identifying mitigating controls for risk management and more, across diverse business sectors, including State and local government, healthcare, electronic infrastructure, digital media and technology, and education.
  • Responsible for interviewing, hiring, and mentoring of the Cyber Advisory Practice team. Coordinated and managed onsite assessments, ensuring seamless collaboration with internal and external stakeholders.
  • Experience in PCI DSS, HIPAA/HITECH, FedRAMP, and MARS-E.
  • Building and Operating Governance, Risk, and Compliance programs from scratch to optimized.

Senior Manager - Cybersecurity

Point B
01.2022 - 09.2022
  • Company Overview: Technology Consulting
  • Cyber advisory consultant, providing vCISO category guidance and shifting information security operations programs from ad-hoc through optimized, focused in cybersecurity project management, threat and vulnerability management, vendor risk management, and security architecture management. Guided client team members toward enhancement goals, aligning context and culture to projects.
  • Performed capability assessment resulting in approved new enhancement initiatives
  • Developed KPI structure for the third-party risk process to establish baseline performance and inform performance goals
  • Delivered VP level guidance for program enhancement, earning additional scope of work and lasting relationships.

Senior Manager - Cybersecurity

Accenture
06.2014 - 12.2021
  • Company Overview: Technology Consulting
  • Provide security leadership and strategy for large internal and external clients. Guide a team of between 5 and 20 Information security professionals in all information security domains; act as cyber security SME for all IT and Infrastructure teams. Manage organizational security culture and training.
  • Architect and document security uplift projects.
  • Provide industry recommendations in security best practice. Own and manage information security policies and procedures.
  • Provide training, guidance, support, and opportunity for advancement to junior security professionals.
  • Review and approve architecture, systems, and other change controlled assets with information security impacts.
  • Developed, implemented, and operated compliance and risk management programs
  • After incident management
  • Quarterly and annual reporting to government agencies
  • System security plan creation and management with POA&M tracking
  • Research and analysis of federal policy/law changes and impacts to PII, PHI, and FTI
  • Earned trust and investment across each project, creating mutual relationships for organization-wide growth and maturity.

Education

Bachelor of Business Administration -

Washington State University
Pullman
01.2013

Skills

  • Leadership in strategic IT/IS management
  • Execution of complex IT projects
  • Oversight of vendor relationships and contracts
  • Cybersecurity operations leadership
  • Establishment and oversight of governance policies
  • Expertise in risk management and compliance
  • Reporting and documentation
  • Security roadmap and planning
  • Security metrics & KPI development
  • Security needs and risk assessment

Certification

  • CISSP
  • Security +

Accomplishments

  • Successfully led multiple organizations to ATO (MARS-E and FedRAMP)
  • Effectively managed multi-stakeholder security incidents.
  • Procured solutions with cost-effective outcomes.
  • Led facilitation efforts for external audits.
  • Developed and implemented new and impactful metrics.
  • Achieved vulnerability burndown and reduction through initiatives.
  • Enhanced quality through third-party partnerships and alliances.
  • Led management of security awareness across operations.
  • Managed global operational and consulting teams.
  • Conducted risk assessments and advised and led remediation activities.
  • Led operational transformation and implementation endeavors.

Timeline

Deputy Information Security Officer

Soconos
05.2024 - Current

Chief Information Security Officer

Feratus Consulting
01.2024 - Current

Practice Head - Cyber Advisory

Inspira Enterprise
09.2022 - Current

Senior Manager - Cybersecurity

Point B
01.2022 - 09.2022

Senior Manager - Cybersecurity

Accenture
06.2014 - 12.2021

Bachelor of Business Administration -

Washington State University

Similar Profiles

  • Julia Barron

    Julia BarronJulia Barron

    Janitor at Master KleanJanitor at Master Klean

  • Angela M. Rucker

    Angela M. RuckerAngela M. Rucker

    Senior Accounts Payable Specialist at Offen petroleum IncSenior Accounts Payable Specialist at Offen petroleum Inc

  • Noah Vargas

    Noah VargasNoah Vargas

    Ramp Operator at Menzies AviationRamp Operator at Menzies Aviation

  • Julia Nolan

    Julia NolanJulia Nolan

    Deputy Chief Information Security Officer at U.S. BankDeputy Chief Information Security Officer at U.S. Bank

  • Mostafa Mabrouk

    Mostafa MabroukMostafa Mabrouk

    Corporate Information Security Manager | Chief Information Security Officer at Magrabi Hospitals and CentresCorporate Information Security Manager | Chief Information Security Officer at Magrabi Hospitals and Centres

CREATE PROFILE