Profiles search
Daniela Hagen
VP Compliance, Privacy & Internal Audit at League
Chicago, IL, United States
Details
Experience:
Initially hired as Director to establish security and compliance functions for a Series B health tech start-up organization with 50 employees.
Promoted to Vice President, overseeing the growth of the organization to 30 employees with structured teams in security engineering, including Product Security, Cloud Security, and Security Operations, as well as Compliance, Privacy, and Internal Audit.
Successfully guided the company's growth from a Series B to a Series D stage, reaching a significant 800-employee size.
Orchestrated the successful navigation of the company's inaugural external audits, comprising SOC 2 Type II, HITRUST i1, and HITRUST r2 assessments.
Constructing robust security and compliance frameworks aligned with industry regulations, standards, and best practices including HIPAA, PIPEDA, GDPR, US state, and Canadian provincial privacy laws, as well as ISO 27001, NIST, and more.
Acting as a trusted advisor to the executive team, board, and broader senior leadership, spearheading company-wide initiatives and projects. These efforts are focused on cultivating and fortifying the organization's compliance and security framework through the cultivation of a security and privacy-centric culture. This approach ensures the alignment of the organization with best practices while upholding regulatory standards.
Successfully concluded initiatives and projects encompassed the establishment of a shift-left methodology for security and privacy, the implementation of enterprise risk management protocols, enhancement of incident and breach response strategies, fostering an ethics-driven culture, overseeing internal audit functions, ensuring compliance with diverse privacy laws and regulations, and various other strategic endeavors.
Assumed ownership of the comprehensive long-term strategy, encompassing critical aspects such as budget planning, expenditure management, and meticulous headcount planning.
2021 : Present
League
VP Compliance, Privacy & Internal Audit
2020 : 2021
League Inc.
AVP Compliance, Information Security & Internal Audit
2017 : 2020
League Inc.
Director, Compliance, Information Security & Internal Audit
Appointed as Compliance Manager to establish and nurture the company's compliance organization.
Subsequently promoted to Director, overseeing the expansion and strategic planning for both security and fraud prevention departments.
Developed and enforced company policies and procedures to ensure alignment with conduct standards throughout the organization.
Spearheaded the implementation and maintenance of a robust privacy management program, effectively addressing compliance challenges as they arose based on European privacy regulations and later GDPR.
Devised and executed a comprehensive risk management framework, drawing on industry best practices including ISO/IEC 27005, NIST 800-30, and ISO 31000 : 2009.
Pioneered the creation of the company's export compliance screening and monitoring procedures, ensuring adherence to U.S., European, and foreign government regulations.
Directed the preparation and execution of assessments such as PCI DSS, ISAE 3402 Type II, and TRUSTe Trusted Cloud Privacy Certification, reinforcing the organization's commitment to best practices and standards.
Integral member of the leadership team, actively steering and championing the organization's ambitious pursuit of obtaining a banking license in Europe and a Money Transmission Business License in the United States.
2017 : 2017
cleverbridge
Director of Global Compliance, Information Security & Fraud Prevention; Data Protection Officer
2016 : 2016
cleverbridge
Director of Global Compliance & Information Security; Data Protection Officer
Promoted to Vice President, overseeing the growth of the organization to 30 employees with structured teams in security engineering, including Product Security, Cloud Security, and Security Operations, as well as Compliance, Privacy, and Internal Audit.
Successfully guided the company's growth from a Series B to a Series D stage, reaching a significant 800-employee size.
Orchestrated the successful navigation of the company's inaugural external audits, comprising SOC 2 Type II, HITRUST i1, and HITRUST r2 assessments.
Constructing robust security and compliance frameworks aligned with industry regulations, standards, and best practices including HIPAA, PIPEDA, GDPR, US state, and Canadian provincial privacy laws, as well as ISO 27001, NIST, and more.
Acting as a trusted advisor to the executive team, board, and broader senior leadership, spearheading company-wide initiatives and projects. These efforts are focused on cultivating and fortifying the organization's compliance and security framework through the cultivation of a security and privacy-centric culture. This approach ensures the alignment of the organization with best practices while upholding regulatory standards.
Successfully concluded initiatives and projects encompassed the establishment of a shift-left methodology for security and privacy, the implementation of enterprise risk management protocols, enhancement of incident and breach response strategies, fostering an ethics-driven culture, overseeing internal audit functions, ensuring compliance with diverse privacy laws and regulations, and various other strategic endeavors.
Assumed ownership of the comprehensive long-term strategy, encompassing critical aspects such as budget planning, expenditure management, and meticulous headcount planning.
2021 : Present
League
VP Compliance, Privacy & Internal Audit
2020 : 2021
League Inc.
AVP Compliance, Information Security & Internal Audit
2017 : 2020
League Inc.
Director, Compliance, Information Security & Internal Audit
Appointed as Compliance Manager to establish and nurture the company's compliance organization.
Subsequently promoted to Director, overseeing the expansion and strategic planning for both security and fraud prevention departments.
Developed and enforced company policies and procedures to ensure alignment with conduct standards throughout the organization.
Spearheaded the implementation and maintenance of a robust privacy management program, effectively addressing compliance challenges as they arose based on European privacy regulations and later GDPR.
Devised and executed a comprehensive risk management framework, drawing on industry best practices including ISO/IEC 27005, NIST 800-30, and ISO 31000 : 2009.
Pioneered the creation of the company's export compliance screening and monitoring procedures, ensuring adherence to U.S., European, and foreign government regulations.
Directed the preparation and execution of assessments such as PCI DSS, ISAE 3402 Type II, and TRUSTe Trusted Cloud Privacy Certification, reinforcing the organization's commitment to best practices and standards.
Integral member of the leadership team, actively steering and championing the organization's ambitious pursuit of obtaining a banking license in Europe and a Money Transmission Business License in the United States.
2017 : 2017
cleverbridge
Director of Global Compliance, Information Security & Fraud Prevention; Data Protection Officer
2016 : 2016
cleverbridge
Director of Global Compliance & Information Security; Data Protection Officer
Company:
League
Spoken Language:
English, French
About
I am a seasoned professional with 16 years of experience across various industries and jurisdictions. By day, I function as a compliance, privacy, and security superhero, storyteller, and advisor, while by night, I embrace roles as a devoted spouse, nurturing mama, and passionate Olympic Weightlifter.
The silver strands in my hair symbolize the extensive knowledge and insight I've gained throughout my journey. My leadership style is characterized by foresight, authenticity, and perseverance, which has consistently led to surpassing expectations. I thrive on guiding others through risk-taking, fostering growth, and encouraging independent experiences. Ultimately, my goal is to empower individuals to pursue their objectives, always keeping compliance, privacy and security at the forefront.
Profile Photo
