Doug Shin
Details
Columbia University
BBA
Business
Baruch College
Agricultural Bank of China NY
Chief Information Security Officer
Successfully completed an Information Security Governance, Risk and Reporting Project for a Global Fortune 500 Company
2017 : 2017
Russell Tobin
Cybersecurity Governance Consultant
- Specialize in planning, gathering, delivering and follow-ups for Security Reporting and Metrics to provide visibility and progress of the respective Security Functions
- Work closely with the Chief Information Security Officers and other important key stakeholders to translate the produced security metrics into meaningful operational risk measures and enterprise risk implication
- Successfully complete cybersecurity projects and activities
- Prepare, coordinate, manage and follow-up on regulatory exams and reviews
- Design, develop and test RSA Archer modules for Governance, Risk and Compliance (GRC) tracking of important security activities and metrics
2015 : 2017
BNP Paribas
Information Security and Risk Consultant
- Serve as a domain lead for Risk, Information Security and Compliance (RISC) and perform associated responsibilities including risk and issue management and audit and compliance coordination activities
- Lead, manage and control operational and administrative activities across seven domains (global staff of 40+) within the group in accordance with the CISO guidance and best-practices
- Support and advise the CISO and other important stakeholders across the business and FIS
2014 : 2015
Capco
RISC and GRC Operations Officer (Deputy CISO)
Successfully delivered IT Risk Management, ISO 27001, IT Auditing and IT Security consulting services for the following NYC-based clients, respectively :
- DK Partners
- Language Works
- Bank of NY Mellon
- NYC DoITT
2013 : 2013
Independent Consultant
Risk Management, Security and Compliance Consultant
Skills
Application Security, Application Security Architecture, Business Continuity, CISA, CISSP, Computer Forensics, Computer Security, Data Security, Identity Management, Information Security, Information Security Management, Information Technology, ISO 27001, IT Audit, IT Risk Management, Networking, Network Security, Penetration Testing, Program Management, Risk Assessment, Risk Management, Sarbanes-Oxley Act, Security, Security Architecture Design, Security Audits, Security Awareness, Vulnerability Assessment, Vulnerability Management, Security Architecture
About
Accomplished Chief Information Security Officer with a proven industry track record, specializing in technology risk management, cyber security, business and operations acumen and client/stakeholder relationship management. Also renowned as an influential and results-oriented team leader, capable of building and reengineering organizational units for the business, and enabling technology professionals to solve today's complex, specialized and/or global enterprise-impacting challenges. Operated with no surprises mantra, led teams and reports with integrity and resourcefulness and routinely present to Regulators/Examiners C-suite Executive Management and across the technology staff levels. Heavy exposure and background of financial services companies and start-up organizations having worked for the top two online brokerages for more than 5 years and various financial institutions for more than 20 years; recognized for significant contributions for a major US Stock Exchange and also have the highly desirable Big 4 Consulting Services experience.
Specialties:
• Information/IT Security (including Cybersecurity)
• Regulatory Compliance
• IT Governance, Risk Management and Compliance (GRC)
• Strategy, roadmap and project execution
• Security Architecture Reviews
• Pre-Implementation Reviews and Risk Control Assessments
• Reporting, metrics and presentations
• Information Technology Audits
• Integrated/Process Controls Audits
• Incident Response and Computer Forensics
Profile Photo
