Profiles search

Kambiz Mofrad

Chief Information Security Officer / Managing Director
Woodcliff Lake, NJ, United States

Details

Experience: 2022 : Present

SVAM International Inc.

Chief Information Security Officer

SVP, Global Head of Third-Party Continuous Monitoring, defined Third Party Monitoring and Security Strategy and Methodology that met regulatory mandates and significantly reduced 3rd party cyber risk.

Reduced Citi reputational risk, developed a process that monitored Citi internet-facing devices via Cyber Intelligence Platforms, identified all errors and issues, and worked with Citi Security Operation Center to mitigate or correct accurate reporting.

Created a business advantage to Citi line of businesses to offer new products and generate revenue, developed strategy and process that utilized cyber health check for FastTrack onboarding new suppliers and partners, reduced number of assessments, and reduced cost.

Improved Operational risk reporting, with daily and monthly metrics of Citi third-party cyber activities.

Developed and implemented the third party IS dashboard senior IS management and Business IS leader fully realize the third party risk and engagement that provided an aggregated view of the third party IS risk and dependencies from multiple systems and applications.

Developed and maintained third party assessment tools (iTPAQ), developed a process that accepted SSAE 16 SOC II instead of third-party assessment, and delivered $300K annual savings.

Managed third-party cybersecurity analysts as part of Global Operational Support, application engineers, and IS helpdesk, led the third party IS assessments processes and the team responsible for O&T and North America investment banks.

2009 : 2020

Citi

Senior Vice President

SVP, IT, and Information Security provided subject matter expert support to the global Information Security and Antifraud group and created an improved end-to-end process combining technology, operations, and best practices to meet regulatory commitments.

Meet regulatory commitment, defined security program strategy, and operational management of risk across the firm.

Architected enterprise-wide information security implementation plan that addressed IS deficiencies and met regulatory recommendations and developed IS tool and methodology that provided aggregated view of risk profiles and mapping the risks and issues to existing IS initiatives.

Created a governance model based on SDLC and utilized by information risk offices and built a state-of-the-art secure email solution that met regulatory commitments and saved millions.

Managed Citi PKI infrastructure and developed a new methodology and operational model that worked multiple types of PKI Certificates with different assurance levels.

Managed Citigroup Directory Services, established a roadmap for the design of Citigroup Backbone for standard directory naming and directory synchronization services.

2005 : 2009

Citi

Senior Vice President

First Vice President, O&T Global External Services, led 25+ staff and $20MM budget and led remote access facilities in 175 countries, which facilitated the exchange of $1.1 to $1.3 trillion daily.

Implemented Remote Access Services globally and led vendor contracts and relationships.

Negotiated all capacity planning and forecasting for remote access and critical applications.

Designed state-of-the-art MIS tools that managed end-to-end customer experience over multiple networks and enabled the deployment of reliable, cost-effective network and E-Commerce applications.

Migrated sunset of Citi legacy global X.25 network and applications

1996 : 2005

Citi

First Vice President
Company: SVAM International Inc.
Years of Experience: 27
Spoken Language: English, Persian

Skills

Analytical Skills, Banking, Budgets, Business Continuity, Business Process Improvement, Business Relationship Management, Business Strategy, Capital Markets, Change Management, Consulting, Customer Experience, Cybersecurity, E-commerce, Executive Management, Finance, Financial Risk, Financial Services, Governance, Information Security, Information Security Management, Information Technology, Infrastructure, IT Strategy, Leadership, Management, Networking, Network Security, Operational Risk, Operational Risk Management, Portfolio Management, Process Improvement, Program Management, Risk Management, SDLC, Security, Vendor Management

About

Highly Successful Sr. Executive and Subject Matter Expert in Cybersecurity, IT, and Privacy With Many Years of Leadership and Implementation Experience Focused on Resolving Complex Enterprise and Regulatory Issues. Highly Capable Contributor to Strategic Direction of an Organization



EXPERTISE AREAS:

Leadership, Global Strategy, Cyber Security, Information Security, Information Technology, 3rd Party & Supplier Risk,, Vendor Management, Application Development, and Program Management.



Data Privacy and Security Policy Standards Expertise:

GLBA, COBIT, GDPR, SOX, NIST Cyber Security Frame Work, SSAE 16, and AICPA Trusted Services Principle and AUP Share Assessment.