Nick Lees, CISA
Details
Computer and Information Systems
Ridge Danyers College, Manchester UK
1997 : 1999
Luma Health
Director of Information Security and Compliance
2021 : 2021
Red Canary
Director of Governance, Risk and Compliance
2019 : 2021
Red Canary
Senior Governance, Risk and Compliance Specialist
Manage Convercent's Information Security Compliance and Certification programs including ISO27001 : 2013, HITRUST/HIPAA/HITECH, SOC2, NIST, CCPA and GDPR along with Internal Audit and Data Privacy programs.
Manage Third-Party Risk and Audit functions.
Develop and operationalize security policies, procedures and controls.
Act as an interface between Sales, Customer Success, Legal and Information Security including managing vendor risk profile, external audits and contract reviews.
2018 : 2019
Convercent
Manager, Information Security Compliance and Audit
Developed Policies, Procedures and Controls to guide the company through ISO27001 : 2013 and HITRUST CSF Certification along with first SOC2 Type 2 Attestation Report within 12 months.
Led Information Security Compliance effort, helping develop and implement a company wide strategy.
2017 : 2018
Convercent
Information Security Engineer
Skills
Active Directory, Business Analysis, Checkpoint, Databases, Data Center, Disaster Recovery, EMC Storage, Firewalls, Infrastructure, Management, Microsoft SQL Server, Networking, Operating Systems, Requirements Analysis, Virtualization, VMware, VMware ESX, Windows Server, XML
About
Information Security, Data Privacy, Audit and Infrastructure professional specializing in ISO 27001:2022, ISO 27701:2019, HITRUST/HIPAA/HITECH, GDPR, SOC2, CCPA and NIST
Have almost 2 decades of practical experience in various industries with expertise in Information Security, Data Privacy, Compliance, Third-Party Risk, Cloud Computing (Microsoft Azure / AWS), Data Center Rationalization / Consolidation, Strategic Planning, Virtualization, Networking and Storage.
Hold US, British and Irish Citizenship.
Profile Photo
