Profiles search
Catherine P.
Director, Information Security at Reinsurance Group of America, Incorporated
Gulf Breeze, FL, United States
Details
Experience:
•Member of team responsible for enhancement of Data Classification and Enforcement
•Primary contact for Data Subject Rights Requests
•Assist with implementation of privacy strategy updates
•Maintain RGA's Global Data Protection Statement
•Develop and maintain effective and appropriate policies, procedures, and supporting documentation to demonstrate regulatory compliance
2021 : Present
Reinsurance Group of America, Incorporated
Director, Information Security
•Primary contact for Data Subject Rights Request Process
•Assisted with implementation of PIA/DPIA and Transfer Impact Assessment process
•Built, updated, and distributed monthly and quarterly metrics for Global Security and Privacy Office Data Protection Services
•Developed and maintained RGA’s Global Data Protection Statement
•Administered and implemented OneTrust Assessment, Data Mapping, and VRM modules : built and customized modules, provided training and technical support
•Managed direct reports responsible for privacy policy updates, data maps, process reviews, OneTrust administration, and metrics reporting
2017 : 2021
Reinsurance Group of America, Incorporated
Data Privacy Lead
•Performed third-party security assessments utilizing FAIR quantification methodology
•Completed client questionnaires regarding RGA's security posture, reviewed security contract language, maintained risk registry, and coordinated completion of quarterly CIRC reports
•Maintained Information Security Statement and Data Center Attestation
2016 : 2017
Company name (Withheld)
Security Risk Analyst Lead
•Worked with outside auditors and internal personnel to ensure Sarbanes-Oxley (SOx) compliance through the coordination, monitoring, testing, and tracking of IT controls
•Lead the creation, self-assessment, and maintenance of internal IT controls, policies, standards, and procedures
•Project coordinator of annual access review of approximately 5,000 users on Anheuser-Busch's critical financial systems
•Assisted the Legal Department with preservation, eDiscovery, production, and review of Legal Hold Order events to ensure timely and accurate production
•Advised, consulted, and assisted departments across the organization with the implementation of policies and standardization of processes
•Participated in annual disaster recovery exercise to ensure timely updates to Sr. Managers, monitored recovery progress, and tracked testing success
•Co-owned zone IT Sustainability (Compliance & Risk) Pillar for Global Excellence Program
•Managed and updated security awareness program administered to employees and contractors
2012 : 2016
Anheuser-Busch InBev
Specialist I, IT Security
•Monitored escalation management for IT Systems Access team
•Administered user access to Windows network resources, HP Service Center, Business Objects, SAP, MS Exchange, RSA SecurID, Outlook Universal Messaging, and several custom internal applications
•Provided on-boarding access for new resources
•Acted as risk management and SOX compliance contact for Systems Access team and Customer Resource Group
2010 : 2012
Anheuser-Busch InBev
Sr. Coordinator, IT Services / System Access Administration
•Primary contact for Data Subject Rights Requests
•Assist with implementation of privacy strategy updates
•Maintain RGA's Global Data Protection Statement
•Develop and maintain effective and appropriate policies, procedures, and supporting documentation to demonstrate regulatory compliance
2021 : Present
Reinsurance Group of America, Incorporated
Director, Information Security
•Primary contact for Data Subject Rights Request Process
•Assisted with implementation of PIA/DPIA and Transfer Impact Assessment process
•Built, updated, and distributed monthly and quarterly metrics for Global Security and Privacy Office Data Protection Services
•Developed and maintained RGA’s Global Data Protection Statement
•Administered and implemented OneTrust Assessment, Data Mapping, and VRM modules : built and customized modules, provided training and technical support
•Managed direct reports responsible for privacy policy updates, data maps, process reviews, OneTrust administration, and metrics reporting
2017 : 2021
Reinsurance Group of America, Incorporated
Data Privacy Lead
•Performed third-party security assessments utilizing FAIR quantification methodology
•Completed client questionnaires regarding RGA's security posture, reviewed security contract language, maintained risk registry, and coordinated completion of quarterly CIRC reports
•Maintained Information Security Statement and Data Center Attestation
2016 : 2017
Company name (Withheld)
Security Risk Analyst Lead
•Worked with outside auditors and internal personnel to ensure Sarbanes-Oxley (SOx) compliance through the coordination, monitoring, testing, and tracking of IT controls
•Lead the creation, self-assessment, and maintenance of internal IT controls, policies, standards, and procedures
•Project coordinator of annual access review of approximately 5,000 users on Anheuser-Busch's critical financial systems
•Assisted the Legal Department with preservation, eDiscovery, production, and review of Legal Hold Order events to ensure timely and accurate production
•Advised, consulted, and assisted departments across the organization with the implementation of policies and standardization of processes
•Participated in annual disaster recovery exercise to ensure timely updates to Sr. Managers, monitored recovery progress, and tracked testing success
•Co-owned zone IT Sustainability (Compliance & Risk) Pillar for Global Excellence Program
•Managed and updated security awareness program administered to employees and contractors
2012 : 2016
Anheuser-Busch InBev
Specialist I, IT Security
•Monitored escalation management for IT Systems Access team
•Administered user access to Windows network resources, HP Service Center, Business Objects, SAP, MS Exchange, RSA SecurID, Outlook Universal Messaging, and several custom internal applications
•Provided on-boarding access for new resources
•Acted as risk management and SOX compliance contact for Systems Access team and Customer Resource Group
2010 : 2012
Anheuser-Busch InBev
Sr. Coordinator, IT Services / System Access Administration
Company:
Reinsurance Group of America, Incorporated
Profile Photo
