Summary
Overview
Work History
Education
Skills
Certification
Timeline
CustomerServiceRepresentative
Mark Charles

Mark Charles

Sand Springs,OK

Summary

I excel at IT Governance and Risk Management leader with a proven track record at BANKPROV enhancing compliance and security frameworks. I'm an expert in COBIT and AWS Cloud Infrastructure, I mastered strategic planning, and foster strong collaboration. Additionally, I'm passionate about leveraging emerging technologies to drive organizational success while maintaining a customer-focused approach.

Overview

17
17
years of professional experience
1
1
Certification

Work History

Manager IT Governance Risk and Compliance

BANKPROV
Amesbury, MA
10.2022 - 08.2024
  • Tailored and implemented an IT Governance program focused on maximizing IT benefits while optimizing risk and resource usage
  • The program was based on the COBIT framework, Federal Financial Institution Examination Council (FFIEC) IT handbooks, and NIST guidance
  • Chartered and chaired the IT Steering Committee establishing governance procedures and stakeholder engagement
  • Evaluation of emerging technology risk such as Artificial Intelligence
  • Created AI Usage policy and participated in the American Bankers Association AI Focus Group
  • Enhanced the IT Risk Management program, policies, procedures, and security controls to align with COBIT, FFIEC, and NIST guidance
  • Created the IT Risk Appetite Statement and aligned it with overall Bank risk appetite
  • Instituted the technology risk register and procedures for risk identification, assessment, response, and reporting
  • Performed risk assessments and monitored controls with periodic reporting
  • Served as IT department liaison and primary point of contact for first line of defense, interfacing with auditors and regulators in support of FFIEC, GLBA, SOX, and PCI compliance requirements
  • Collaborated with application owners and managers to arrange timely response for audit and examination requests and ensured timely completion of finding remediation action plans
  • Served as a technology subject matter expert to advise senior management related to new strategic initiatives

Director IT GRC and Data Management

VAST BANK
Tulsa, OK
09.2013 - 10.2022
  • Established the IT Governance program to deliver value and optimize resources and risk
  • Chartered the IT Steering Committee and served as Secretary
  • Enhanced or created policies and procedures including Program/Project Management, Requirements Definition, Incident Response, Change Management, User Acceptance Testing, Asset Management and others based on COBIT, NIST, and FFIEC guidelines
  • Responsible for Information Security Management program to maintain compliance with GLBA, Privacy, PCI, and other regulations
  • Provided oversight for IT Vendor Management including contract negotiation, recurring SOC and security due diligence reviews, and invoice approvals
  • Established identity and application role-based access control procedures
  • Interfaced with federal regulators and external auditors including responding to audit requests and driving resolution for remediation action plans
  • Deployed a complex cloud IT operations infrastructure in Amazon AWS including development, testing, and highly-available production environments, along with the first United States deployment of SAP Banking Services to support fintech partnerships and cryptocurrency app
  • Led Data Management function including internal and third-party analytics and reporting teams
  • Established SAP HANA data warehouse and associated data flows to support ad hoc business user reporting and controlled business reporting

Director of Technology

LEWIS-GOETZ
Pittsburgh, PA
07.2007 - 05.2013
  • Oversight for all IT Operational and Application Development support for approximately 1,200 end users at 95 locations across the United States and Canada
  • Managed technical resources responsible for networking, voice and data communications, service desk, core server infrastructure, ERP systems and application development
  • Definition and administration of IT department policies and procedures
  • IT HR administration, management of IT capital and expense budgets, and oversight of third-party technology consultants and service providers
  • Supported company merger and acquisition strategy with system integration and data conversions for acquired companies

Education

Bachelor of Business Administration - Management Information Systems

Langston University
914 N. Greenwood Ave, Tulsa, OK 74106

Skills

  • IT Governance
  • IT Risk Management
  • Audit Management
  • Data Management
  • Strategic Planning
  • Cybersecurity Management
  • Vendor Risk Management
  • Disaster Recovery
  • Business Continuity
  • Incident Management
  • AWS Cloud Infrastructure
  • COBIT
  • SOX
  • NIST Frameworks
  • Agile and Waterfall Development
  • Identity and Access Management
  • Emerging Technology Research
  • Strategic thinker
  • Great interpersonal skills
  • Strong collaboration
  • Attention to detail
  • Customer focused orientation
  • Analytical ability
  • Self-motivated
  • Dependable and accountable
  • Oral and written communicator

Certification

  • CGEIT, Certified in the Governance of Enterprise IT, ISACA, 09/22
  • CRISC, Certified in Risk and Information Systems Control, ISACA, In Process
  • CDMP, Certified Data Management Professional, DAMA International, 01/21
  • COBIT5 Foundation, ISACA, 09/13

Timeline

Manager IT Governance Risk and Compliance

BANKPROV
10.2022 - 08.2024

Director IT GRC and Data Management

VAST BANK
09.2013 - 10.2022

Director of Technology

LEWIS-GOETZ
07.2007 - 05.2013

Bachelor of Business Administration - Management Information Systems

Langston University

Similar Profiles

CREATE PROFILE