ANTHONY W. CLEM

Canby, OR – *****– 541-***-**** – ad0dq0@r.postjobfree.com

CHIEF INFORMATION SECURITY OFFICER

COMPLIANCE ~STRATEGIC DEVELOPMENT ~ RISK MANAGEMENT Executive Leadership

Security Operations

Compliance Management

Security As A Service

Incident Response

Security Audits

Intrusion Detection

Security Awareness &

Education

Secure Architecture

Risk Assessments &

Audits

Risk Mitigation

Highly accomplished IT Executive boasting over two decades of proven success in orchestrating multimillion-dollar projects, fortifying security frameworks, and spearheading high-performing teams. Renowned for steering organizations to achieve compliance with federal, state, regional, and industry standards, and delivering sustainable solutions to intricate IT management and security dilemmas.

Esteemed thought-leader, prolific author and eloquent public speaker, with multiple publications under my belt with renowned platforms like the SANs Institute and various Technical White Papers, as well as keynote speaking engagements at both national and international forums. As a transformative business leader, I specialize in fuelling profit and growth acceleration by leading strategic initiatives that enhance corporate security, compliance, and organizational management.

An adept and flexible problem-solver, I bring a wealth of expertise in designing, implementing, and assessing systems aimed at amplifying quality and efficiency across diverse domestic and international business and technology landscapes. Looking forward to contributing my strategic and operational prowess in a forward-thinking, growth-oriented enterprise.

PROFESSIONAL EXPERIENCE

Q5ID INC. BELLEVUE, WA 2021-2023

CHIEF INFORMATION SECURITY OFFICER AND HEAD OF IT

As a senior executive, I spearhead IT, infrastructure, and software development operations that drive business and customer services. I craft and execute the organization's tech strategy, deploying systems to support business goals while safeguarding sensitive data. I enforce security standards in the Software Development Life Cycle and develop strategies to mitigate risks and prevent security incidents. I oversee the protection of organizational assets, data, and staff, while ensuring compliance with regulations and managing incident responses. Collaborating with clients, internal teams, and vendors, I lead efforts to enhance security measures. Renowned as an industry expert, I regularly author and speak on security topics like biometrics, identity verification, and access control. ORACLE CORPORATION. REDWOOD CITY, CA 2017-2021

DIRECTOR, OPERATIONS COMPLIANCE AND INCIDENT MANAGEMENT, ORACLE CLOUD Driving risk management through operational compliance, incident management, business continuity, disaster recovery, communications (RFP, RFI), contracts, and compliance controls. Leading cross functional, global teams of security professionals collaborating with operations, engineering, sales, support, product development, cloud infrastructure, architecture and customers related to security projects, compliance, and security incidents. Focused on strategy and execution of risk identification, mitigation, and tracking for some of the most advanced cloud environments. Enabling security as a sales driver through compliance, assurance and risk management. Compliance audits for PCI DSS, ISO 27001, SSAE 16 SOC1 and SOC2, GDPR, and FedRAMP. ANTHONY CLEM – PAGE 2

CAREER PROGRESSION (CONT.)

POLYCOM, INC. SAN JOSE, CA 2012-2016

DIRECTOR OF INFORMATION SECURITY (CISO)

Served as a strategic executive, managing development of objectives, risk management, product security, and policy implementation for a companywide Information Security Management System (ISMS). Directed budgeting, operational costs, and fostered inter-departmental collaborations for consistent data privacy protocols. Spearheaded security awareness programs and data recovery procedures, facilitating IT risk assessments while defining acceptable residual risk levels. Functioned as a liaison across various departments, generating vital reports for corporate leadership. Guided security aspects of product and infrastructure design, and operational procedures. Executed security tool implementation projects, involving architecture design, vendor reviews, and purchasing. Effectively liaise with vendors and clients to address security concerns. Coordinated with external resources for contract negotiation and program development. Partnered with business units to determine IT risk management processes and overall risk exposure, while ensuring compliance with PCI DSS, HIPAA, EU Privacy, SSAE 16, NIST, CIS, and ISO 27001 standards.

HEWLETT-PACKARD COMPANY Palo Alto, CA 2000-2012

CHIEF SECURITY ARCHITECT, INFORMATION ASSURANCE

Led cross-functional teams collaborating with clients from Fortune 500 companies to conceptualize, develop, and integrate quality security systems. Delivered assignments on time and under budget across varied industries including healthcare, aerospace, and technology.

● Consulting Business Management: Responsible for meeting sales and utilization targets for the team. Respond to RFI and RFP for security projects, develop statements of work for projects, lead delivery teams, and manage customer relations for completion of projects.

● Client Service: Established strong professional relationships with industry leaders and company clients focused on large-scale projects. Developed effective troubleshooting measures to fix existing program issues and aid in development and construction of new Infosec programs. Organized security data and generated reports delivered to company executives.

● Security Project Experience: Collaborated with global company executives to orchestrate the design and implementation of security budget allocation, modernization, and metric planning. Led efforts to modernize corporate security compliance. Served as point of contact providing technical product leadership for security executive hiring, and product vendors on behalf of the company (acting CISO). Developed compliance mapping and assessing for ISO 27001, NIST 800-53, GLB, SOX, NERC CIP, PCI DSS, HIPAA, CIS Critical Security Controls, and FedRAMP. Provide leadership in development of security product development (encryption product) through the development of requirements, design, development using secure development practices, implementation, and lifecycle management.

EDUCATION, CERTIFICATIONS, AND PROFESSIONAL MEMBERSHIPS NEW YORK INSTITUTE OF TECHNOLOGY, New York, NY

MASTER OF BUSINESS ADMINISTRATION

OREGON STATE UNIVERSITY, Corvallis, OR

BACHELOR OF SCIENCE IN COMPUTER SCIENCE

CERTIFICATIONS

C CISO Certified Chief Information Security Officer, EC Council, 2012 OPST- OSSTMM Professional Security Tester, ISECOM, 2003 CISSP- Certified Information Systems Security Professional, ISC2, 2001 PROFESSIONAL MEMBERSHIPS

Information Systems Security Association (ISSA), CISCO Executive Forum Member CISO Executive Network, Bay Area Member

Contact this candidate