Profiles search

Hugh Tower-Pierce

Chief Information Security Officer and business executive
East Burke, VT, United States

Details

Experience: 2023 : Present

Millennium Trust Company

Chief Information Security Officer

Consulting support to companies in need of cybersecurity leadership support, vision, and optimizing execution of a security program.

2022 :

ForenSec Ltd

vCISO and Owner

Executive leadership team position with overall responsibility for information security, and a mandate as a

change agent to stabilize and build the security, privacy, and risk functions to keep pace with business growth. An information security scope embracing both business and consumer facing technology products. Regulatory and standards management across HIPAA, SOX, SOC2, PCI, and HITRUST.

2021 : 2022

Zocdoc

Chief Information Security Officer

Leadership team position with overall responsibility for information and physical security for large individual health insurer and healthcare delivery company, with strong cloud-native engineering culture. Aspects of information security responsibility include product engineering, infrastructure, corporate, privacy, and risk management.

2019 : 2021

Oscar Health

Chief Security Officer

Responsible for information security risk management areas encompassing incident response, forensics, policy development, threat intelligence, logging and monitoring, internal investigations, electronic discovery, security controls testing (pentesting/Red Team), executive reporting, vendor security management, and investor security due diligence reporting.

2016 : 2019

Two Sigma

Senior Vice President, IT Security
Company: Millennium Trust Company

About

Information security risk-management executive with 23 years of technical and people management experience within Fortune 20 financial, asset management, defense contracting, non-profit, and highly regulated health technology enterprises. Demonstrated ability to build and mature information security programs, align risk management with business objectives, advise on strategic and operational solutions to technology risk, lead sensitive internal investigations, and develop high performing teams.



Career focus areas include executive leadership, computer incident response, policy development and governance, computer forensics, threat intelligence, physical security, internal investigations, insider threat, security product selection, data leakage prevention, penetration testing, and eDiscovery. Experience providing information security consulting when establishing new business areas, and representing company interests during security due diligence and regulatory reviews.



I thrive in cybersecurity leadership roles in which I can advance business objectives safely, defend the organization’s operations, and build strong partnerships with stakeholders.



Health-ISAC Content Committee member

Health-ISAC Advisory Panel

FS-ISAC Summit Content Committee member

Certifications:

EC-Council Certified Chief Information Security Officer (C|CISO)

ISC2 CISSP

SANS GIAC Certified Forensic Analyst (Gold)

EnCase Certified Examiner (EnCE)

ASCLD/LAB Inspector - Digital Evidence

Reid Technique of Interviewing and Interrogation



Ultra-distance runner and finisher of some of the hardest endurance races in the world: Spartan Death Race, UTMB, UTMB-TDS, Cruel Jewel 100.