Rachel Bishop
Parker
Summary
Dynamic Executive Director with extensive experience at Wells Fargo, leading information security initiatives and risk assessments. Expert in regulatory compliance and strategic planning, successfully transitioned programs using Agile methodologies. Proven team leader with a strong focus on cybersecurity strategy and training, driving significant improvements in security posture and operational efficiency.
Overview
23
23
years of professional experience
1
1
Certification
Work History
Executive Director – Senior Information Security Manager
Wells Fargo
12.2019 - Current
- Manager of a large team of individuals responsible for conducting information security assessments and overseeing information security initiation and remediation operations
- Using the Agile methodologies, assisted in the transition from the Information Security Risk Assessments (ISRA) to the Information Security Evaluation (ISE) program including the onboarding a new ServiceNow tool for measuring information security compliance
- Established new controls related to the ISE program and maintained evidence
- Created procedural documentation and trained team on ISE program
- Act as a Kanban lead in Jira for multiple projects used to track team’s activities
- Monitors operational metrics to ensure alignment with Program objectives
- Responsible for reviewing and providing credible challenge to Technology and Business teams regarding information security risks and mitigating activities
- Provides subject matter expertise on the Information Security domain as appropriate to technology developers, system owners, and other groups
- Advises and consults with lines of business on new or enhanced mitigating controls
- Provided Tiered Approval Support through status reporting and timely response to questions for the ISRA program
- Supported the onboarding and certification of Third-Parties through the Information Review Questionnaire (IRQ) process
- Ensured ISRA Security Plans were accurate in accordance with the IS Risk Framework through the Subject Matter Review (SME) review process
Technical Managing Director – Security Management
Charles Schwab
11.2014 - 12.2019
- Designed and managed Schwab’s Risk Assessment Governance program
- Performed the Bank’s Cybersecurity assessment used to drive large scale initiatives
- Compiled yearly Information Security Risk Assessment reports, presented to both the Board and regulatory bodies
- Gathered relevant information related to the operational status of security controls
- Created application risk assessments and associated findings using Archer (eGRC tool)
- Determined risk ratings for findings using the DREAD risk assessment model
- Piloted the Factor Analysis of Information Risk (FAIR) risk assessment model
- Drafted and updated information security policies, standards, procedures, and communications
- Monitored, updated and provided consultation on information security risk exceptions and acceptances for all information security technology assets
- Managed the Go Live process for new implementations
- Ran the Firm’s Security Findings Governance Board (SFGB)
Assistant Vice President (AVP) - Operational Risk Manager
Wells Fargo
08.2012 - 11.2014
- Managed Information Security Officers (ISO) risk personnel within the Technology and Operations Group
- Developed critical documentation and conducted train for the ISOs that supported the Enterprise Information Security program
- Monitored performance for cross-team consistency
- Ensured team and customers understood full requirements of IS processed, that proponents were educated on process expectations, and that acknowledgement/approval requirements aligned with enterprise IS roles & responsibilities
- Represented team in development of Wells Fargo’s risk assessment tool by providing requirements, process requirements and testing
Information Security Officer - Operational Risk Consultant
Wells Fargo
10.2006 - 07.2012
- Partnered with clients to ensure IS risks/controls were properly assessed and documented and where needed action plans were established
- Ensured clients are fully engaged in the development and monitoring of risk assessments
- Provided information security support for Enterprise Information Security, including technologies such as Active Directory, Cryptography, PKI, IDS and Access Management and third-party risk
Applications Systems Engineer
Wells Fargo
08.2002 - 10.2006
- Provided technical support for the Endevor Change Management tool including application setups, custom code changes, change migration and problem resolution
- Maintained the JCL Prep tool to standards, define best JCL practices and procedures
Education
Bachelor of Science Degree - Information Systems
University of Phoenix
Skills
- Information security
- Risk assessment
- Regulatory compliance
- Strategic planning
- Team leadership, training, and development
- Agile methodologies
- Cybersecurity strategy
Certification
- CISSP, Certified Information Systems Security Professional, 2011
- CRISC, Certified in Risk and Information Security Controls, 2016
- CISM, Certified Information Security Manager, 2016
Timeline
Executive Director – Senior Information Security Manager
Wells Fargo
12.2019 - Current
Technical Managing Director – Security Management
Charles Schwab
11.2014 - 12.2019
Assistant Vice President (AVP) - Operational Risk Manager
Wells Fargo
08.2012 - 11.2014
Information Security Officer - Operational Risk Consultant
Wells Fargo
10.2006 - 07.2012
Applications Systems Engineer
Wells Fargo
08.2002 - 10.2006
Bachelor of Science Degree - Information Systems
University of Phoenix