Amahdy E. Bradley
Frankfort,IL
Summary
An Information Security & IT subject matter expert, industry veteran in both Enterprise and Cyber Security practices. Security leader positioned to define company’s security focused transformation by aligning with business strategy and compliance drivers. Proven abilities in translating information to diverse audiences. Able to effectively analyze problems/requirements and generate cost-effective long-term solutions. Successful producer and performer who employs past experience, contemporary technology and team knowledge to deliver on multiple strategic initiatives.
Overview
36
36
years of professional experience
1
1
Certification
Work History
Chief Information Security Officer
Berlin Packaging
Chicago, IL
11.2023 - Current
- Developed and implemented comprehensive cybersecurity strategies to protect organizational assets.
- Led incident response efforts, minimizing the impact of security breaches on operations.
- Established and enforced security policies, ensuring compliance with industry regulations and standards.
- Collaborated with cross-functional teams to integrate security measures into business processes.
- Developed and grew staff competencies through team development, implementation and support of specific training for various responsibilities.
- Reduced the risk of data breaches by 70% by implementing robust access control measures, network segmentation, and establishing a zero trust architecture.
- Established measures, metrics, thresholds and targets to drive performance in alignment with security and other business strategies.
- Evaluate emerging technologies to enhance cybersecurity posture and operational efficiency.
Chief Information Security Officer
HAVI
Chicago
02.2018 - Current
- Provided vision and leadership for the complete build out of a cost-effective enterprise risk management and global cybersecurity program.
- Designed compliance & security program based on industry recognized frameworks and regulatory requirements.
- Managed, implemented and maintained a security budget of over $10 million.
- Redesigned and increased mandatory security training standards aligned with an accountability system that increased user awareness reducing the number of security incidents.
- Devised strategy and implemented Managed Detection and Response capability globally on over 12,000 endpoints.
- Developed MSSP strategy and Crisis Management initiative by partnering with best-in-class industry providers to have a fully functional 24/7 SIEM/SOAR platform and monitoring service.
- Led evaluation, selection and implementation of the following tools: governance, risk & compliance, automated vulnerability management, automated penetration testing, application whitelisting, data loss prevention (DLP), intrusion detection & prevention, web filtering, email gateway protection, and mobile device management.
- Chaired threat hunting and hacktivist activities with key suppliers and partners to stay abreast of current threats and attack vectors.
- Developed and executed enterprise IT security strategy and drove the implementation of security controls into business operations globally.
Lieutenant Colonel (Retired)
United States Army Reserve
11.1989 - 12.2019
- Telecommunications Specialist during Operation Desert Shield/Storm.
- Received ROTC Commission as Army Officer in May 1996.
- Served as Platoon Leader for Combat Heavy Engineer Company.
- Served as Executive Officer for Combat Heavy Engineer Company.
- Served as Base Camp Lead Engineer during Operation Iraqi Freedom 2003-2004.
- Served as Company Commander for Headquarters Company, Combat Heavy Engineer Battalion.
- Served as Acting Battalion Commander for Combat Heavy Engineer Battalion in support of Operation Enduring Freedom.
- Served as Assistant Professor of Military Science at Northern Illinois University ROTC’s program.
- Served as Command General Staff College instructor for field grade officer’s career progression.
VP, Deputy Chief Information Security Officer
Publicis Group
Chicago
04.2014 - 02.2018
- Overall responsibility for devising and implementing Information Security program & strategy for Publicis.
- Developed allocation and charge back model for core and non-core security services specifically for Publicis agencies.
- Developed an enterprise information security framework. Ensuring data integrity, confidentiality and availability of information as well as creating controls on how data is processed by the organization.
- Responsible for managing a $7.4 million dollar annual budget.
- Implemented aggressive anti-phishing program that included a 4 hour response mechanism reducing the number of occurrences by over 50% within the past year.
- Designed Publicis’ information security program to align with ISO 27001:2013 framework.
- Spearheaded and led project in successfully achieving ISO27001:2013 certification for Publicis Shared Service Center in the United Kingdom.
- Established metrics, key performance indicators and analytic reporting including Monitoring, Incident Response, Vulnerability Management, and data loss activities.
- Implemented GRC framework to assist Publicis Solution Hubs in achieving and maintaining compliance with client contractual obligations contributing to winning more than $20 million in new business.
- Devised and implemented global Information Security Awareness program.
Director of Security & Compliance
Publicis/ReSources IT
Chicago
10.2007 - 04.2014
- Designed and implemented audit framework in support of Sarbanes-Oxley compliance reporting.
- Coordinated and facilitated both internal and external audits for all Publicis Group agencies in North America.
- Devised Risk Management Assessment program based on COBIT and ITIL frameworks.
- Managed and improved user provisioning and de-provisioning process by establishing an internal offshore IDAM (identity and access management) function.
- Established ReSources Security Operations Center (SOC) by implementing Log monitoring and Intrusion Detection and Prevention services.
- Developed and deployed BCP and DR framework allowing for real-time data replication from local New York offices to co-location data center in Virginia.
Assistant Vice President - Financial Controls
Federal Home Loan Bank of Chicago
Chicago
01.2005 - 10.2007
- Responsible for the implementation of IT controls for financial reporting.
- Designed and implemented control identification and assessment program for Sarbanes-Oxley 404 attestation.
- Devised key controls mapping for all critical business processes and ERP systems.
- Partnered with bank senior management to define control objectives and monitoring compliance efforts.
- Reviewed Internal Audit test findings to facilitate the remediation of control gaps, and escalate critical issues to executive leadership.
Information Security Manager
RR Donnelley
Chicago
12.2004 - 12.2005
- Assisted in developing and managing the RR Donnelley information security program, including devising policies, standards, and procedures based upon ISO 17799 framework.
- Responsible for coordinating and conducting yearly Disaster Recovery testing with customers and vendors.
- Led the development of security architecture for current and future firewall configurations as well as intrusion detection scanning.
- Acted as liaison between internal technology audit and IT department by reviewing all audit reports and response to ensure timeliness and effectiveness of the corrective actions.
- Implemented an incident response team to manage and resolve critical incidents.
Civil Engineer/Contracting Officer
United States Army
08.2003 - 10.2004
- Deployed in support of Operation Iraqi Freedom as lead Civil Engineer for base camp construction and operations in Northern Kuwait and Iraq.
- Initiated contracting procedures with Army Directorate of Contracting and local vendors for construction materials and support.
- Designed Redeployment Operational Stations at Camp Victory in Northern Kuwait.
Software Configuration & Release Manager
RR Donnelley
Chicago
04.2001 - 08.2003
- Managed new application implementation using System Development Life Cycle (SDLC) methodology.
- Worked with project teams to develop functional testing requirements for BPR applications and monitor testing results.
- Designed and implemented Software Distribution Process for all BPR applications using Wise packaging products and enterprise deployment tools.
- Created use cases as well as implementing process modeling methodology to meet application requirement specifications.
- Conducted IT audits for ERP applications at RR Donnelley Manufacturing sites.
- Conducted assessments of high-risk applications or development projects and provide internal control expertise on major projects.
- Developed project plans for integration testing on all manufacturing application platforms.
Senior IT Auditor
RR Donnelley & Sons
Chicago
06.1999 - 04.2001
- Performed date conversion reviews for Infrastructure and Contingency Planning programs at RR Donnelley’s manufacturing divisions for Y2K preparation and compliance.
- Designed and developed a prototype audit database for Internal Audit Department consisting of tracking control measures for audit findings and recommendations.
- Designed and developed Information Technology Audit Plan as well as project plans for yearly IT general controls reviews.
- Performed general controls and systems security audits throughout Europe in order to assess the company’s need for firewall upgrades and financial upgrades.
Senior IT Consultant
Ernst & Young LLP
Chicago
08.1996 - 05.1999
- Lead consultant on Year 2000 Conversion at Ernst & Young’s Accelerated Conversion Center in Chicago for various clients supervising five personnel.
- Worked as a Mainframe Programmer at Ernst & Young’s Accelerated Conversion Center in Costa Mesa, California.
- Created COBOL scripts to convert date fields for Year 2000 compliance, built repositories for conversion, and performed Quality Assurance checks on internal and external sort reports sent to client locations.
Education
Intermediate Level Education (ILE) - Military Leadership
US Army Command General Staff College
FT Leavenworth, Kansas06.2011
MBA - Information Management Systems
Loyola University Chicago
Chicago, IL05.
Bachelor of Science - Computer Science
Northern Illinois University
DeKalb, ILSkills
- Governance Risk & Compliance
- AI Governance
- Cyber Security & Information Assurance
- Cloud Security
- Thought Leadership
- Vulnerability Management
- Data Privacy (GDPR, CCPA)
- Data Loss Prevention (DLP)
- Business Continuity Planning
- Managed Detection and Response
- Threat intelligence analysis
- Identity and Access management
Accomplishments
Named 2026 Chicago CISO Orbie Finalist
Named 2023 Top CyberSecurity Leaders in the midwest by CDO Magazine
Affiliations
- Gartner CISO Coalition
- CISO Society
- ISACA
- EC-Council
- Inspire Chicago CISO
Certification
- June 2005 Certified Information Systems Auditor (CISA)
- May 2008 Certified Governance & Enterprise IT (CGEIT)
- July 2018 Certified Chief Information Security Officer (CCISO)
Timeline
Chief Information Security Officer
Berlin Packaging
11.2023 - Current
Chief Information Security Officer
HAVI
02.2018 - Current
VP, Deputy Chief Information Security Officer
Publicis Group
04.2014 - 02.2018
Director of Security & Compliance
Publicis/ReSources IT
10.2007 - 04.2014
Assistant Vice President - Financial Controls
Federal Home Loan Bank of Chicago
01.2005 - 10.2007
Information Security Manager
RR Donnelley
12.2004 - 12.2005
Civil Engineer/Contracting Officer
United States Army
08.2003 - 10.2004
Software Configuration & Release Manager
RR Donnelley
04.2001 - 08.2003
Senior IT Auditor
RR Donnelley & Sons
06.1999 - 04.2001
Senior IT Consultant
Ernst & Young LLP
08.1996 - 05.1999
Lieutenant Colonel (Retired)
United States Army Reserve
11.1989 - 12.2019
Intermediate Level Education (ILE) - Military Leadership
US Army Command General Staff College
MBA - Information Management Systems
Loyola University Chicago
Bachelor of Science - Computer Science
Northern Illinois University