Profiles search
Ron Duplessis
First Vice President, Chief Information Security Officer at Federal Home Loan Bank of Indianapolis (FHLBI)
Fishers, IN, United States
Details
Experience:
Responsible for establishing and leading the enterprise-wide information security management program to ensure that information assets are adequately protected. Oversight and reporting on the management and mitigation of information security risks. Works with business units to implement practices that meet defined policies and standards for information security.
2019 : Present
Federal Home Loan Bank of Indianapolis (FHLBI)
First Vice President, Chief Information Security Officer
Provide leadership in the information security operations area. Focused on the effective and efficient implementation of organization’s technical security control portfolio. Responsible for directing Security Operations’ operational activities as well as it strategic priorities. Work closely with Information Technology and Enterprise Risk Management teams on corporate strategy to ensure information security and assurance controls are implemented and compliant for systems, applications, networks, and data. Identify short and long term strategic initiatives and develop, plan and implement the associated projects, including prioritization, budgeting and resource planning. Work to ensure Security Operations’ support and adherence to corporate, regulatory and legal standards. Responsible for program maturity and continuous improvement in the organization’s information security operations model.
2017 : 2019
Federal Home Loan Bank of Indianapolis (FHLBI)
Associate Vice President, Director Security Operations
Provide leadership of the enterprise information security program focusing on security risk management and security strategy. Responsible for the enterprise information security program including operations and strategic planning. Work to ensure the security support and adherence to HIPAA and PCI-DSS standards. Responsible for security maturity model development and implementation. Responsible for ensuring the security of the organizations PHI, PII and payment card data and processing systems. Guide and direct the daily activities of information security analyst team.
Key Contributions :
• Led successful organizational effort in achieving PCI-DSS 3.2 certification.
• Responsible for ensuring secure IT operations, data protection and application development security.
• Partnered with application development organization to create an application security testing and code review program.
• Development, implementation and management of enterprise information security policies, standards and guidelines
• Led executive-level Information Security Committee.
• Implementation of security improvements leveraging industry best practices and frameworks.
• Established enhanced information security awareness and education program focused on phishing awareness.
• Responsible for key HIPAA and PCI-DSS compliance areas.
• Security Program Strategy and Planning
• Led effort to establish information security risk management program
2015 : 2017
Zotec Partners
Vice President Information Security & Information Security Officer
Lead and manage enterprise information security program including both day-to-day security operations and strategic planning support. Design, implement and manage security processes and procedures to protect enterprise information systems and data. Mentor and supervise daily activities of cyber security analyst team. Support IT and business project implementation as well as contribute to long-term strategy and planning efforts.
Key Contributions :
• Responsible for ensuring secure IT operations
• Responsible for operations and capital project definition, planning and execution
• Development, implementation and management of enterprise information security policies, standards and guidelines
• Development and management of information security risk register
• Implementation of security improvements leveraging ISO 27001/27002, NIST 800-53, ES-C2M2, and NIST Cyber Security Framework.
• Designed, developed and managed a three-year information security improvement program covering eleven key security focus areas.
• Implemented enhanced information security awareness and education program.
• Responsible for key NERC/CIP and SSAE-16 compliance areas.
• Security Program Strategy and Planning
• Financial planning and budgeting
• Led effort to enhance information security risk management program
• Liaison with Enterprise Risk Management group for the management and reporting of identified information security risk
2013 : 2015
Midcontinent Independent System Operator
Manager, Cyber Security
Lead and managed the day-to-day operations of information security team in support of effectively meeting organizational goals and initiatives. Management responsibilities include directing, coaching and motivating a seven member team to ensure the on-time delivery of the group’s services, including goals setting, activity prioritization and strategic planning. Responsible for operations and capital project definition, planning and execution. Duties include capital and operations budget planning and management. Personnel management responsibilities include staffing, employee development and human resource planning. Responsible for directing the team’s understanding, implementation of, and adherence to multiple compliance and regulatory standards in direct support of MISO’s organizational regulatory requirements.
2010 : 2013
Midcontinent Independent System Operator
Lead, Cyber Security
2019 : Present
Federal Home Loan Bank of Indianapolis (FHLBI)
First Vice President, Chief Information Security Officer
Provide leadership in the information security operations area. Focused on the effective and efficient implementation of organization’s technical security control portfolio. Responsible for directing Security Operations’ operational activities as well as it strategic priorities. Work closely with Information Technology and Enterprise Risk Management teams on corporate strategy to ensure information security and assurance controls are implemented and compliant for systems, applications, networks, and data. Identify short and long term strategic initiatives and develop, plan and implement the associated projects, including prioritization, budgeting and resource planning. Work to ensure Security Operations’ support and adherence to corporate, regulatory and legal standards. Responsible for program maturity and continuous improvement in the organization’s information security operations model.
2017 : 2019
Federal Home Loan Bank of Indianapolis (FHLBI)
Associate Vice President, Director Security Operations
Provide leadership of the enterprise information security program focusing on security risk management and security strategy. Responsible for the enterprise information security program including operations and strategic planning. Work to ensure the security support and adherence to HIPAA and PCI-DSS standards. Responsible for security maturity model development and implementation. Responsible for ensuring the security of the organizations PHI, PII and payment card data and processing systems. Guide and direct the daily activities of information security analyst team.
Key Contributions :
• Led successful organizational effort in achieving PCI-DSS 3.2 certification.
• Responsible for ensuring secure IT operations, data protection and application development security.
• Partnered with application development organization to create an application security testing and code review program.
• Development, implementation and management of enterprise information security policies, standards and guidelines
• Led executive-level Information Security Committee.
• Implementation of security improvements leveraging industry best practices and frameworks.
• Established enhanced information security awareness and education program focused on phishing awareness.
• Responsible for key HIPAA and PCI-DSS compliance areas.
• Security Program Strategy and Planning
• Led effort to establish information security risk management program
2015 : 2017
Zotec Partners
Vice President Information Security & Information Security Officer
Lead and manage enterprise information security program including both day-to-day security operations and strategic planning support. Design, implement and manage security processes and procedures to protect enterprise information systems and data. Mentor and supervise daily activities of cyber security analyst team. Support IT and business project implementation as well as contribute to long-term strategy and planning efforts.
Key Contributions :
• Responsible for ensuring secure IT operations
• Responsible for operations and capital project definition, planning and execution
• Development, implementation and management of enterprise information security policies, standards and guidelines
• Development and management of information security risk register
• Implementation of security improvements leveraging ISO 27001/27002, NIST 800-53, ES-C2M2, and NIST Cyber Security Framework.
• Designed, developed and managed a three-year information security improvement program covering eleven key security focus areas.
• Implemented enhanced information security awareness and education program.
• Responsible for key NERC/CIP and SSAE-16 compliance areas.
• Security Program Strategy and Planning
• Financial planning and budgeting
• Led effort to enhance information security risk management program
• Liaison with Enterprise Risk Management group for the management and reporting of identified information security risk
2013 : 2015
Midcontinent Independent System Operator
Manager, Cyber Security
Lead and managed the day-to-day operations of information security team in support of effectively meeting organizational goals and initiatives. Management responsibilities include directing, coaching and motivating a seven member team to ensure the on-time delivery of the group’s services, including goals setting, activity prioritization and strategic planning. Responsible for operations and capital project definition, planning and execution. Duties include capital and operations budget planning and management. Personnel management responsibilities include staffing, employee development and human resource planning. Responsible for directing the team’s understanding, implementation of, and adherence to multiple compliance and regulatory standards in direct support of MISO’s organizational regulatory requirements.
2010 : 2013
Midcontinent Independent System Operator
Lead, Cyber Security
Company:
Federal Home Loan Bank of Indianapolis (FHLBI)
About
Proven information security leader with success in driving implementation of technology solutions, process improvements and in building effective teams. Experience in security operations, security risk management, security program development, strategic planning, staff management & development, and project management. Over 20 years of progressive experience in information technology hardware/software and network support, security and information technology solutions implementation.
Key Qualifications
➢ 20+ years information security experience
➢ Security risk management
➢ Security Frameworks: PCI, HIPAA, ISO 27001/27002, NIST 800-53, ES-C2M2, and NIST Cyber Security Framework
➢ Broad experience in research, evaluation, implementation and support of IT and information security solutions
➢ Operations and capital budget planning and management
➢ Strategic planning
➢ Project management
➢ Security program implementation/management
➢ Standards/regulatory compliance: NERC-CIP/SSAE-16, HIPAA, PCI-DSS
➢ Team leadership/building
➢ Strong collaborative skills
➢ Analytical, accurate and detail-oriented
➢ Strong, positive and effective communicator
➢ Excellent problem-solving skills; ability to quickly identify issues and implement solutions
Profile Photo
