Profiles search
Michael White
Senior Manager, Information Security GRC at PlanSource
Orlando, FL, United States
Details
Experience:
2020 : Present
PlanSource
Senior Manager, Information Security GRC
Works closely with and influences decision makers in technology to identify, recommend, develop, implement, and support a risk informed decision and action framework.
Performs enterprise annual and targeted ad-hoc risk assessments that support regulations and standards such as NYDFS, FFIEC, and NIST CSF.
Identifies and recommends appropriate measures to manage and mitigate risks and reduce potential impacts/losses to the business to an acceptable level.
Identifies and reports on new and emerging security risk and risk trends.
2018 : 2020
LPL Financial
Technology Risk Assessment - Information Security Senior Engineer
Responsible for developing and implementing expectations, strategies, objectives, initiatives and measures pertaining to NERC CIP compliance. Contributed to the on-going strategy of the NERC CIP Compliance program to meet requirements including cyber security compliance controls and regulatory matters.
2014 : 2018
Duke Energy Corporation
CyberSecurity - NERC CIP Lead Compliance Analyst
Responsible for providing analysis of Potential Violations of NERC CIP Compliance and developing, managing, and verifying associated mitigation plans through completion.
2013 : 2014
Duke Energy Corporation
CIP Compliance Analyst/Project Manager
Managing remediation in coordination with Business and performing validation of technology related audit issues within Global Technology and Operations as well as serving as technology subject matter expert on other lines of business IT related audit issues.
2010 : 2013
Bank of America
Senior IT Auditor
PlanSource
Senior Manager, Information Security GRC
Works closely with and influences decision makers in technology to identify, recommend, develop, implement, and support a risk informed decision and action framework.
Performs enterprise annual and targeted ad-hoc risk assessments that support regulations and standards such as NYDFS, FFIEC, and NIST CSF.
Identifies and recommends appropriate measures to manage and mitigate risks and reduce potential impacts/losses to the business to an acceptable level.
Identifies and reports on new and emerging security risk and risk trends.
2018 : 2020
LPL Financial
Technology Risk Assessment - Information Security Senior Engineer
Responsible for developing and implementing expectations, strategies, objectives, initiatives and measures pertaining to NERC CIP compliance. Contributed to the on-going strategy of the NERC CIP Compliance program to meet requirements including cyber security compliance controls and regulatory matters.
2014 : 2018
Duke Energy Corporation
CyberSecurity - NERC CIP Lead Compliance Analyst
Responsible for providing analysis of Potential Violations of NERC CIP Compliance and developing, managing, and verifying associated mitigation plans through completion.
2013 : 2014
Duke Energy Corporation
CIP Compliance Analyst/Project Manager
Managing remediation in coordination with Business and performing validation of technology related audit issues within Global Technology and Operations as well as serving as technology subject matter expert on other lines of business IT related audit issues.
2010 : 2013
Bank of America
Senior IT Auditor
Company:
PlanSource
About
CISSP, CISA, Cisco certified cyber security professional.
Profile Photo
