Summary

Overview

Work History

Education

Skills

Certification

Timeline

Diane Burt

Cybersecurity Risk and Compliance Professional

Herriman,UT

Summary

Dedicated Cybersecurity Risk and Compliance professional with a history of meeting company goals utilizing consistent and organized practices. Skilled in working under pressure and adapting to new situations and challenges. Collaborative leader with dedication to partnering with coworkers to promote an engaged, empowering security culture. Documented strengths in building and maintaining relationships with diverse range of stakeholders in dynamic, fast-paced settings.

Overview

years of professional experience

Certification

Work History

Director Cyber Risk & Compliance

Aspiration

10.2022 - 05.2023

(Laid off)
Ensured compliance with all applicable laws, regulations, and industry standards
Performed risk assessments to identify areas of vulnerability in networks or applications
Created and updated internal information security compliance policies, procedures, and standards.

Director Info Sec Risk and Compliance

Orora Group

10.2020 - 09.2022

Info Sec Risk and Compliance, Maintained compliance frameworks, policies, and documentation to support audits
Maintained and revised policy procedures for general operation of compliance program
Planned and executed compliance audits to check company policies, procedures, and controls.

Senior Security Analyst

Finicity

11.2019 - 08.2020

Evaluated new software products for compliance with corporate security standards prior to deployment in production environment
Assessed vendor provided solutions against established enterprise security policies prior to integration into existing infrastructure.

Senior Director Cybersecurity & GRC

Braintrace

07.2019 - 10.2019

Provided vCISO and GRC services to various clients for maintenance and implementation of their security programs.

Head of Cybersecurity North America

Boral NA

04.2018 - 07.2019

Performed regular system audits of all network resources to ensure compliance with corporate security policies
Updated existing processes and procedures related to cybersecurity best practices regularly
Performed risk assessments designed to identify areas of vulnerability

Risk & Compliance Program Manager

Workfront

04.2017 - 04.2018

Developed and implemented policies and procedures to ensure compliance with applicable laws, regulations, and organizational standards
Provided guidance on best practices for maintaining a compliant environment across departments
Reviewed contracts, agreements, reports, documents
For accuracy of information pertaining to legal and regulatory requirements.

Information Security Manager

EMC

01.2015 - 12.2016

International travel for hybrid cloud implementation for a global financial institution
Performed risk assessment and threat analysis to identify security gaps

Senior Security Analyst

Teleperformance

03.2014 - 01.2015

Responsible for regional (US, India, Philippines) adherence to corporate policy, governance definition, enforcement, and incident management
Provided direction and leadership for RFP, SOW, and other contractual documentation reviews
Performed onsite, fraud and risk assessment for 24 sites.

Senior Controls Monitoring

Royal Bank of Scotland, RBS

05.2013 - 03.2014

Defined and implemented the M&IB Americas Technology strategic plans to facilitate the user entitlement review process and other control monitoring activities.

Cybersecurity Engineer

SAIC

03.2012 - 12.2012

Performed NEI 08-09 gap analysis and developed remediation efforts for Wolf Creek Nuclear Operating Corporation (WCNOC), Burlington, KS
Provided NERC CIP cyber security pre-audit assessment Basin Electric Power Cooperative, Bismarck

NERC CIP Security Auditor

WECC

02.2011 - 01.2012

Conducted comprehensive on-site and off-site audits of registered entities across 14 states in compliance with FERC/NERC CIP standards
Served as audit lead investigating potential violations and determining alleged violations of the standards
Reviewed and evaluated internal control systems to ensure accuracy of information.

Information Assurance Manager & Privacy Officer

US Army

06.2009 - 02.2011

Supported all unclassified, DoD Collateral and Special Access Program for Future Combat Systems Program (FCSP)
Information Assurance and information operations to include coordination with the Lead Systems Integrator and other U.S Agencies for FCSP
Representative for DoD identity management initiatives: Identity, Credential & Access Management (ICAM) and Transglobal Secure Collaboration Program (TSCP).

Information Assurance Manager

Booz Allen Hamilton

03.2008 - 06.2009

Supported all unclassified, DoD Collateral and Special Access Program Information Assurance and information operations to include coordination with Lead Systems Integrator and other U.S Agencies for entire Future Combat Systems Program

Security Controls Champion

Ford Motor Company

05.2007 - 03.2008

Drove security and control certifications (annual and SDLC) of applications and infrastructure for over 1100 systems within Marketing, Sales and Customer Service Division
Provided subject matter expertise on security and control policies, procedures, tools, and standards

Education

Bachelor of Arts - Communications

Madonna University

Livonia

Master of Science - Information Assurance

Walsh College

Troy, MI

Skills

Six Sigma Greenbelt (Design & Lean)
Cybersecurity Frameworks & Regulatory Compliance: COBIT, NIST, ISO2700X, HIPAA, PCI DSS, FedRAMP, NERC CIP, FISMA, ITAR, GDPR, CCPA, SOC2, SOX
Security Team Leadership
GRC tool implementation & administration

Internal/external risk & compliance audits
Security awareness training design and implementation
Third Party Risk Management

Certification

CISSP-ISSMP

CSSLP

CCSP

Timeline

Director Cyber Risk & Compliance

Aspiration

10.2022 - 05.2023

Director Info Sec Risk and Compliance

Orora Group

10.2020 - 09.2022

Senior Security Analyst

Finicity

11.2019 - 08.2020

Senior Director Cybersecurity & GRC

Braintrace

07.2019 - 10.2019

Head of Cybersecurity North America

Boral NA

04.2018 - 07.2019

Risk & Compliance Program Manager

Workfront

04.2017 - 04.2018

Information Security Manager

EMC

01.2015 - 12.2016

Senior Security Analyst

Teleperformance

03.2014 - 01.2015

Senior Controls Monitoring

Royal Bank of Scotland, RBS

05.2013 - 03.2014

Cybersecurity Engineer

SAIC

03.2012 - 12.2012

NERC CIP Security Auditor

WECC

02.2011 - 01.2012

Information Assurance Manager & Privacy Officer

US Army

06.2009 - 02.2011

Information Assurance Manager

Booz Allen Hamilton

03.2008 - 06.2009

Security Controls Champion

Ford Motor Company

05.2007 - 03.2008

Bachelor of Arts - Communications

Madonna University

Master of Science - Information Assurance

Walsh College

Summary

Overview

Work History

Director Cyber Risk & Compliance

Director Info Sec Risk and Compliance

Senior Security Analyst

Senior Director Cybersecurity & GRC

Head of Cybersecurity North America

Risk & Compliance Program Manager

Information Security Manager

Senior Security Analyst

Senior Controls Monitoring

Cybersecurity Engineer

NERC CIP Security Auditor

Information Assurance Manager & Privacy Officer

Information Assurance Manager

Security Controls Champion

Education

Bachelor of Arts - Communications

Master of Science - Information Assurance

Skills

Certification

Timeline

Director Cyber Risk & Compliance

Director Info Sec Risk and Compliance

Senior Security Analyst

Senior Director Cybersecurity & GRC

Head of Cybersecurity North America

Risk & Compliance Program Manager

Information Security Manager

Senior Security Analyst

Senior Controls Monitoring

Cybersecurity Engineer

NERC CIP Security Auditor

Information Assurance Manager & Privacy Officer

Information Assurance Manager

Security Controls Champion

Bachelor of Arts - Communications

Master of Science - Information Assurance

Similar Profiles

Kendall PlunkKendall Plunk

Dhavina PatelDhavina Patel

Nyesha MaldonadoNyesha Maldonado