Don Coffey
Rowland Heights,USA
Summary
Executive consultant with a strong background in information security governance and IT risk management at Fiserv. Achieved a 50% reduction in financial fraud losses through the implementation of advanced security controls. Expertise in business continuity planning and collaboration with executive leadership to align cybersecurity initiatives with organizational goals.
Overview
28
28
years of professional experience
5
5
Certification
Work History
Executive Consultant (CISO)
The IFish Group
Los Angeles, CA
01.2019 - Current
- Developed and executed an information security and governance strategy aligned with regulatory standards and enterprise risk priorities, with a focus on financial data protection.
- Directed SOC operations, including threat intelligence, incident response, and vulnerability management for banking clients.
- Led enterprise architecture design for cloud-based security (AWS, Azure), incorporating Zero Trust and identity/access control.
- Conducted risk assessments across IT systems and third-party vendors; supported audit readiness and compliance efforts under GLBA, FISMA, HIPAA, and GDPR.
- Advised executive leadership and boards on risk posture, control gaps, and program maturity.
- Oversaw change management and configuration reviews tied to IT security policies and access controls.
- Collaborated with operations and IT teams to support business continuity and disaster recovery strategies.
- Provided guidance on physical and digital security alignment across multiple office locations.
- Reduced enterprise security incidents by 30% within one year through enhanced risk management practices.
- Implemented AI-driven threat detection tools that improved response time by 40%.
- Passed regulatory audits with zero significant findings, including GLBA assessments.
- Launched a company-wide security awareness program that improved phishing resilience by 35%.
Managing Director, Architecture, Security
Fiserv
Denver, CO
01.2015 - 01.2019
- Oversaw IT risk and governance functions within a financial services environment, including internal and external audits, regulatory reviews, and client assessments.
- Led enterprise-wide compliance with GLBA, SOC 2, ISO 27001, PCI DSS, IRS 1075 and another financial regulatory standards.
- Partnered with risk, compliance, and legal teams to implement controls across access management, change control, and incident response.
- Directed vendor and third-party risk programs, performing due diligence and contract risk reviews.
- Maintained and tested business continuity and disaster recovery frameworks to meet banking service availability standards.
- Supervised cross-functional teams including engineering, compliance, and audit response personnel.
- Reduced financial fraud losses by 50% with new security controls.
- Drove successful compliance audits with zero significant findings.
- Increased threat detection efficiency by 35% with cloud-based monitoring.
- Established a risk-based roadmap, aligning cybersecurity investments with business strategy.
- Strengthened alignment between cybersecurity and enterprise risk through integrated reporting dashboards.
Global Enterprise Solution Architect
Compassion International
Colorado Spring, Africa, EU, Asia
01.2012 - 01.2015
- Designed enterprise security policies and led global compliance programs for systems managing sensitive financial, health, and aid distribution data.
- Conducted risk and impact assessments across distributed regions, introducing standardized IT governance practices.
- Implemented Zero Trust IAM and cloud security controls across international operations.
- Oversaw business continuity planning and DR readiness in alignment with public sector and nonprofit regulatory expectations.
- Delivered global training programs on cybersecurity awareness, reducing high-risk user behavior.
- Evaluated vendor risk and implemented controls to improve resilience in the supply chain.
- Developed a secure, auditable aid distribution framework adopted in multiple countries.
- Reduced phishing-related incidents by 25% through access control and end-user awareness campaigns.
- Established global IT governance models that improved cross-region compliance tracking and response.
Education
Bachelors - business administration
Western Governors University
Salt Lake City, UT09.2025
Skills
- Information security governance
- IT risk management
- Business continuity planning
- Security architecture design
- Vendor risk management
- Physical security oversight
- Incident response operations
- Security awareness training
- Executive reporting and engagement
- Technology frameworks
Certification
- C-CISO
- CISSP
- COBIT v5
- ITIL v4
- ScrumMaster
- AWS Cloud Practitioner
- Pragmatic Marketing
References
References available upon request.
Timeline
Executive Consultant (CISO)
The IFish Group
01.2019 - Current
Managing Director, Architecture, Security
Fiserv
01.2015 - 01.2019
Global Enterprise Solution Architect
Compassion International
01.2012 - 01.2015
Bachelors - business administration
Western Governors University
Similar Profiles
Aanya WiltonAanya Wilton
Cashier Team Lead at IFish Poke & BBQCashier Team Lead at IFish Poke & BBQ
Obadia MugabirweObadia Mugabirwe
Security Officer | Facilities Protection Unit at Emirates Group Security (Via Transguard Group)Security Officer | Facilities Protection Unit at Emirates Group Security (Via Transguard Group)
Dorina OchoaDorina Ochoa
Medical Administrative Assistant at Evernorth Care Group/Cigna Medical GroupMedical Administrative Assistant at Evernorth Care Group/Cigna Medical Group
Eugene CalvoEugene Calvo
PC Technician/ Builder at Premio, INCPC Technician/ Builder at Premio, INC
Hannah ChungHannah Chung
Shipping Clerk I at H. B. Fuller Construction ProductsShipping Clerk I at H. B. Fuller Construction Products