Katie Ewers, CISSP

Director of Cybersecurity | President InfraGard Atlanta | Gartner CISO Governing Body

Alpharetta, GA, United States

Details

Education: BS

Mathematics

Eckerd College

1990 : 1994

Graduate Courses

Mathematics

Clemson University

1994 : 1995

Graduate Courses

Mathematics Education

University of South Florida

1995 : 1996

Executive Education

Chief Information Security Officer (CISO) Institute

The University of Texas at Austin - Red McCombs School of Business

2015 : 2015

Experience: 2019 : Present

McKesson

Director of Cybersecurity, Community and Partnerships

InfraGard is a partnership between the FBI and members of the private sector. The InfraGard program provides a vehicle for seamless public-private collaboration with government that expedites the timely exchange of information and promotes mutual learning opportunities relevant to the protection of Critical Infrastructure. With thousands of vetted members nationally, InfraGard's membership includes business executives, entrepreneurs, military and government officials, computer professionals, academia and state and local law enforcement; each dedicated to contributing industry specific insight and advancing national security.

2020 :

Infragard Atlanta Members Alliance (IAMA)

President Of The Board Of Directors

· Build and retain a high performing team of security operations analysts. This includes all aspects of management, hiring, retaining, training, growth and advancement of team.

· Ensure all incidents are managed appropriately and per policy and procedure. Effectively communicate threats and incident details to senior technology and business unit leadership.

· Create and maintain program metrics for security events and incidents to be provided to the business unit leadership teams on a quarterly basis.

· Coordinate all requests for audit evidence from the Active Defense organization. This includes responses for internal audit, PCI and SOC reviews.

· Organize and facilitate the periodic business unit engagement sessions for all major business units, including the quarterly BU security event and incident metrics review and the annual cybersecurity table top exercise.

· Engage directly with the business unit leadership to review the metrics for quarterly security events and incidents. This includes sharing trending over time and promoting the Active Defense team to the business unit leadership team.

· Manage the Active Defense financial processes by coordinating investment planning and maintaining the monthly forecasts.

· Serve as an officer on the Board of Directors for the Atlanta Chapter of InfraGard, an FBI sponsored program.

· Serve as a liaison between the ISRM Security Awareness team and the Atlanta FBI and Secret Service organizations.

· Present on cybersecurity topics at industry events, including Gartner CISO Summit.

2017 : 2019

McKesson

Director, Alpharetta SOC and Global Active Defense Program Management

· Design and execute the program to deploy the ISRM WAF solution for priority applications as part of the ISRM Cybersecurity program. This effort includes establishing the critical path items and dependencies for deployment, socializing the project to business application teams, creating customer facing promotional materials, representing the ISRM organization and available technology solutions, implementing individual deployments and providing overall program metrics.

· Design and execute a program to accelerate the adoption of the User Access Review process. This effort included improving the technology, creating a repeatable implementation process, socializing the solution to the business application teams, staffing ISRM roles to support this solution, facilitating the execution of reviews, meeting the customer’s expectations and providing overall program metrics.

· Provide program management, strategy and financial guidance for ISRM initiatives, including the SIEM replacement and the IAM Service.

· Collaborate with McKesson ETS on key enterprise technology projects, provide ISRM requirements and use cases, communicate and escalate project status and potential issues to senior leadership.

· Drive the ISRM strategy, objective planning and periodic reporting of status for ISRM corporate and BU assigned resources, aggregate periodic updates for ISRM leadership.

· Manage the ISRM financial processes, coordinate strategic planning, accruals and capital investments. Provide recommendations to cost center owners and senior leadership members with regards to financial management and investments.

2013 : 2017

McKesson

Director, Cybersecurity Program Management

In her role with RelayHealth, Katie drove the Business Unit Risk Management program and strategy. Enabled Patient Solutions to meet business goals by integrating security into product development lifecycles, business processes through leveraging existing McKesson risk management processes.

Additional accomplishments :

· Documented control exceptions and compensating controls, classify risk based on business impact and control framework, HIPAA, PCI DSS, McKesson corporate controls, etc., assign ownership (RelayHealth Financial Solutions, McKesson ETS, ISRM, RelayAccount) and consistently followed remediation to closure.

· Facilitated annual RelayAccount PCI DSS certification through collaboration with McKesson ETS, ISRM, RelayHealth Financial Solutions and the RelayAccount product and business teams.

· Reduced cost of PCI audit by 50% through collaboration with ISRM and other PCI businesses throughout McKesson Corp.

· Nominated as a RelayHealth President’s Club Achiever in 2012.

2010 : 2013

McKesson

BISO, McKesson RelayHealth

Company: McKesson

Years of Experience: 29

Skills

application security, business analysis, business continuity, change control, CISA, CISM, CISSP, computer security, consulting, disaster recovery, enterprise architecture, enterprise software, glba, governance, hipaa, identity management, Information Security, information security management, information technology, infrastructure, integration, iso 27001, it audit, it management, it strategy, leadership, Management, patch management, payment card industry data security standard (pci dss), pci dss, penetration testing, process improvement, Program Management, project management, risk assessment, risk management, sarbanes-oxley act, Security, security architecture design, security audits, security awareness, Strategy, unix, vendor management, visio, vulnerability assessment, vulnerability management, Security Architecture

About

Katie Ewers is an experienced Cyber Security Executive with over 25 years in the field. Her expertise includes industries such as financial services, consulting, telecommunications and healthcare. She has excelled in leadership roles in Identity and Access Management, Program Management and consulting. Katie is the Board President for the InfraGard Atlanta Member’s Alliance, one of the nation’s largest InfraGard chapters. She holds several industry certifications. Katie is passionate about business enablement, industry collaboration and program execution.

Specialties:

Identity and Access Management/ROI

Public Speaking

Strategic and financial planning

Building and retaining high performing teams

Cybersecurity Program Development

End User Experience

Regulatory/Industry Compliance, PCI DSS, SOX, GLBA, HIPAA

M&A, including pre/post-acquisition evaluation and integration