Profiles search
Paul Zbaracki
Vice President, Information Security at Prudential Financial
Minneapolis, MN, United States
Details
Education:
BS
Computer Science
University of Iowa
1977 : 1981
Computer Science
University of Iowa
1977 : 1981
Experience:
I lead a team of 30 associates who handle Information Security activity across the Prudential enterprise. There are two groups, one that handles day-to-day operational work and one that provides technical assessment and assistance. The operational group ensures business resources have the appropriate access to private and sensitive data and protect that data properly. The group’s responsibilities include :
• Review and approve privileged access requests, including scheduling and managing regular access recertifications
• Security exception management and approval
• Data Loss Prevention incident review and escalation
• Compliance Monitoring
• Business assistance with Information Security questions and responsibilities
The technical group assists business and technology resources to ensure applications and business solutions are designed and implemented with appropriate information security controls and processes. This group’s responsibilities include :
• Review application risk assessments
• Provide information security guidance for vendor due diligence activity
• Ensure development activity addresses information security requirements
I am also the Business Information Security Officer for all of Prudential’s US Businesses. My responsibilities include :
• Providing information security guidance for business issues and solutions
• Collaboration with business leaders and control partners
• Improving security awareness
• Information security presentations for business leaders, teams, partners, and firms
• Ownership of SOX controls
• Audit and Risk assessments
• Phishing test reviews and escalations
2022 : Present
Prudential Financial
Vice President, Information Security
I built a team of 11 Prudential associates and 11 consultants to centralize Information Security operational activity across ten different business areas. The team standardized disparate security controls and processes and managed enterprise operational work including information security questions and assistance, access approvals and recertification, exception management, data loss prevention and compliance monitoring.
I was also the Business Information Security Officer for four business areas, including Individual Life and Annuities. I was responsible for providing information security direction to business and technology associates. I handled review and approval of non-standard access requests, presentations to business leaders and partners, SOX/Audit/Risk assessments, and escalation of critical issues.
2019 : 2022
Prudential Financial
Vice President, Information Security
I managed a team of 14 associates who handled Information Security activity across Annuities and Individual Life business and technology organizations. The team managed Information Security operational work including information security questions and assistance, access approvals and recertification, exception management, data loss prevention and compliance monitoring.
I was also the Business Information Security Officer for the Individual Life and Annuities business. I provided information security guidance, reviewed non-standard access requests, Information Security presentations to leaders, SOX/Audit/Risk assessments, and escalation of critical issues.
2018 : 2019
Prudential Financial
Vice President, Information Security
I managed a team of six resources responsible for information security for the life insurance division at Prudential. Our responsibilities included data and access control, server and database compliance monitoring, vendor security reviews, and privileged access oversight and approval.
2015 : 2018
Prudential Financial
Information Security Director
I was program director overseeing transition of business resources from Hartford environment to Prudential environment after Prudential’s purchase of Hartford Life Insurance division. My responsibilities included integration of Hartford business activities into the Prudential environment and transitioning Hartford business operations to a third-party administrator. As program director of the Third Party Administrator (TPA) transition I built and managed separate project plans for three workstreams, interacting with business resources, IT resources, TPA vendor resources, and Prudential leadership.
2013 : 2014
Prudential Financial
Program Director
• Review and approve privileged access requests, including scheduling and managing regular access recertifications
• Security exception management and approval
• Data Loss Prevention incident review and escalation
• Compliance Monitoring
• Business assistance with Information Security questions and responsibilities
The technical group assists business and technology resources to ensure applications and business solutions are designed and implemented with appropriate information security controls and processes. This group’s responsibilities include :
• Review application risk assessments
• Provide information security guidance for vendor due diligence activity
• Ensure development activity addresses information security requirements
I am also the Business Information Security Officer for all of Prudential’s US Businesses. My responsibilities include :
• Providing information security guidance for business issues and solutions
• Collaboration with business leaders and control partners
• Improving security awareness
• Information security presentations for business leaders, teams, partners, and firms
• Ownership of SOX controls
• Audit and Risk assessments
• Phishing test reviews and escalations
2022 : Present
Prudential Financial
Vice President, Information Security
I built a team of 11 Prudential associates and 11 consultants to centralize Information Security operational activity across ten different business areas. The team standardized disparate security controls and processes and managed enterprise operational work including information security questions and assistance, access approvals and recertification, exception management, data loss prevention and compliance monitoring.
I was also the Business Information Security Officer for four business areas, including Individual Life and Annuities. I was responsible for providing information security direction to business and technology associates. I handled review and approval of non-standard access requests, presentations to business leaders and partners, SOX/Audit/Risk assessments, and escalation of critical issues.
2019 : 2022
Prudential Financial
Vice President, Information Security
I managed a team of 14 associates who handled Information Security activity across Annuities and Individual Life business and technology organizations. The team managed Information Security operational work including information security questions and assistance, access approvals and recertification, exception management, data loss prevention and compliance monitoring.
I was also the Business Information Security Officer for the Individual Life and Annuities business. I provided information security guidance, reviewed non-standard access requests, Information Security presentations to leaders, SOX/Audit/Risk assessments, and escalation of critical issues.
2018 : 2019
Prudential Financial
Vice President, Information Security
I managed a team of six resources responsible for information security for the life insurance division at Prudential. Our responsibilities included data and access control, server and database compliance monitoring, vendor security reviews, and privileged access oversight and approval.
2015 : 2018
Prudential Financial
Information Security Director
I was program director overseeing transition of business resources from Hartford environment to Prudential environment after Prudential’s purchase of Hartford Life Insurance division. My responsibilities included integration of Hartford business activities into the Prudential environment and transitioning Hartford business operations to a third-party administrator. As program director of the Third Party Administrator (TPA) transition I built and managed separate project plans for three workstreams, interacting with business resources, IT resources, TPA vendor resources, and Prudential leadership.
2013 : 2014
Prudential Financial
Program Director
Company:
Prudential Financial
Years of Experience:
23
Skills
Business Analysis, Business Intelligence, Change Management, Communication, Incident Management, Information Security, ITIL, IT Management, IT Service Management, IT Strategy, Leadership, Lean Six Sigma, Lean Transformation, Management, Operations Management, Outsourcing Management, Process Improvement, Production Support, Program Management, Project Management, Requirements Analysis, Resource Management, SDLC, Six Sigma, Technical Support, Vendor Management
About
I'm a change agent, a team builder and leader, a Six Sigma Black Belt and Lean practitioner, a respected sourcing partner, and a strong problem analyst. I have successfully built teams that protect corporate data, complete complex projects including Six Sigma/Lean solutions, and provide application and systems support. I utilize a structured approach to service, support, and project/program management, which helps my teams succeed at both service/support and solution implementation.
Profile Photo
