Associate Chief Information Security Officer, UW‑Madison
I have been dedicated to developing organizational security and security architecture in Higher Education since 2001. During this time I have developed knowledge and experience in (1) developing and implementing security policies; (2) identifying IT security threats and risks; and (3) identifying and implementing technical and procedural controls. I have assisted several ERPs, such as Oracle|PeopleSoft, in identifying gaps and providing recommendations and leadership in mitigating those gaps. A lot of my work has been based on NIST, HIPAA and ISO standards.