Brad Piatek
Details
Computer Science
Central Michigan University
1985 : 1989
• Lead security metrics analysis, risk remediation, risk exception processing, architecture reviews, vulnerability management, education and awareness efforts for Business Units and their technical teams.
• Provide oversight and risk management of Business Unit compliance with Cyber, Cloud and Risk Management control standards policies, and procedures.
2022 : Present
State Street
Business Information Security Officer
Managed and supported development of corporate risk assessment and control standards policy, and procedures.
•Coordinated annual SOX evaluation reviews with auditors, business partner and technology teams.
•Managed development of risk metrics standards, reporting and CMMI analysis.
•Identified gaps and redesigned vendor, cybersecurity, network and cloud services risk assessment processes.
2021 : 2022
Emergent BioSolutions
SENIOR MANANGER, GLOBAL RISK MANAGEMENT & GOVERNANCE February 2021 to Current
Established the strategic direction, identified gaps and lead remediation efforts supporting security, risk and compliance needs.
•Planned, administered and provided leadership for the adoption of enterprise security framework and controls maturity levels.
•Developed cost justification analysis and project budgets supporting security focused technology initiatives.
2019 : 2021
SERC Reliability Corporation
Program Manager, Information Security
Enhanced existing vendor assessment process to support a more rigorous approach to risk and compliance management.
•Provided consulting services to develop appropriate Security Policies, Procedures, Frameworks and Metrics to support FINRA, GLBA, NYDFS and CCPA risk and compliance requirements.
2019 : 2019
LPL Financial
Consultant LPL Financial
Enhanced and supported vendor compliance and risk management processes to address GDPR, NYDFS, CCPA and similar regulatory requirements.
• Provide education, analysis and review of information security and business continuity controls required to support internal cloud based (AWS) and 3rd party vendor managed technology initiatives.
• Support vendor contract negotiations to ensure information security, business continuity and security related regulatory requirements are included within each contract.
• Supported development of the strategic and operational focus of information security, risk and compliance efforts at AIG.
2014 : 2018
AIG
Senior Information Security Analyst
Skills
Analytical Skills, Auditing, Communication, Consulting, Cost-Benefit Analysis, Cybersecurity, Data Center, Disaster Recovery, Endpoint Security, Enterprise Architecture, Enterprise Risk Management, Information Security, Information Security Management, Internet Protocol Suite (TCP/IP), ISO 27001, ITIL, IT Management, IT Risk Management, IT Strategy, Leadership, Management, Office 365, Payment Card Industry Data Security Standard (PCI DSS), Problem Solving, Project Management, SDLC, Security, Service Delivery, Software Development Life Cycle (SDLC), Time Management, Vendor Management, Vulnerability Assessment
About
An IT professional with 31 years of varied information technology experience, which includes 18 years of focus in the evaluation, design, implementation and leadership of enterprise cybersecurity, risk and compliance management policies and processes. A proactive leader utilizing strong business and technical acumen to create a vision and gain cross-functional consensus in support of stated security awareness and risk management objectives. A problem solver that quickly overcomes obstacles to support business objectives in a mutually supportive, secure manner. An effective communicator across all organizational levels that has developed and motivated teams to achieve top performance.
Profile Photo
