DONNA
WILSON
ad4zj5@r.postjobfree.com
Gulfport, FL 33707
CONTACT
SKILLS
Skilled in effective communication
and consultation with senior
management and internal subject
matter experts.
•
Display a strong grasp of business
acumen, facilitating an in-depth
understanding of overarching
business concerns.
•
Acquiring proficiency in various
technologies and coding languages
including Machine Learning, Python,
Artificial Intelligence, and business
analytics.
•
Skilled in Microsoft PowerPoint with a
talent for strong writing.
•
• Compliance Management
• Regulatory Frameworks
• Vendor Risk Management
Seasoned Cybersecurity Manager with a proven track record at CBIZ, leading cross-functional teams and orchestrating comprehensive assessments to fortify data security. Expert in regulatory frameworks and compliance management, with a strong command of Python and articulate communication. Spearheaded risk management initiatives, ensuring GDPR and HIPAA compliance.
PROFESSIONAL SUMMARY
Information Technology/Cybersecurity Manager
CBIZ, Florida
Managing Consultant
Control Logics, Florida
EXPERIENCE
August 2019 - April 2024
Conduct comprehensive cybersecurity assessments, examinations and attestations utilizing industry-standard frameworks such as NIST 800's, ISO 27001 and 27701, GDPR, HIPAA, and SOC
•
Lead cross-functional teams in the identification and remediation of control gaps in systems and processes, developing plans of actions and overseeing implemented resolutions
•
Extensive exposure to North American and European Union (EU) regions, demonstrating proficiency in navigating complex regulatory landscapes, particularly in GDPR (General Data Protection Regulation) compliance and addressing regulatory concerns
•
Effectively project-manage client internal and external assessments, leveraging extensive business analysis and process improvement proficiency to ensure strict compliance with security standards and regulatory mandates
•
Partner with diverse security, privacy, and information technology teams to develop and execute privacy programs aligned with industry standards and regulatory frameworks
•
Lead the development and training of teams on security and privacy protocols, tailored to client contractual obligations, government regulations (both domestic and international), and data handling protocols encompassing transit, storage, retention, and disposal
•
Designated subject matter expert (SME) overseeing Cyber Risk, ISO, and GDPR assessments and engagements
•
Lead risk management projects for clients, encompassing creation of risk assessments, compliance monitoring, regulatory oversight, and spearheading Business Continuity and Disaster Recovery initiatives.
•
November 2018 - January 2019
Director of TPA Audit
Teil Limited, Florida
Audit Managing Consultant
Auditwerx, Florida
Audit Manager
Shinn & Company, LLC, Florida
Internal Audit Director
Managed engagements with international partners, demonstrating adeptness in navigating GDPR compliance and resolving regulatory challenges
•
Collaborated with clients to develop and implement HIPAA-HITRUST, COSO,
• COBIT, and regulatory agreed-upon procedures
Managed engagements surrounding Third Party Risk Management (TPRM) or data center operations
•
Remained current with industry trends, privacy regulations, and emerging threats, taking initiative-taking measures to enhance privacy and security protocols.
•
March 2018 - October 2018
Led SOC 1 and SOC 2 Type 2 engagements, collaborating closely with TPA
• clients and external auditors to ensure successful completion Collaborated with IT, operations, and compliance teams to facilitate the transition to a new TPA platform for processing insurance products and services, spanning from applications to claims processing
•
• Led the data governance program from a compliance perspective. Transferred position to Trans America's Corporate Offices in Des Moines, Iowa,
• in November 2018.
January 2016 - March 2018
• Oversaw multiple engagements and coordinated diverse teams Engaged actively in industries including healthcare, third-party administrative groups, collection agencies, and business associate groups, focusing on compliance with HIPAA and Hi-Tech regulations
•
Functioned as the Qualified Security Assessor (QSA) for PCI DSS readiness
• assessments and engagements
• Generated concise and informative reports for senior management. October 2014 - December 2015
Pioneered the establishment of the company's internal audit function from inception
•
Lead comprehensive risk management initiatives across the company, encompassing the development of risk assessments, oversight of compliance monitoring, regulatory adherence, and spearheading Business Continuity and Disaster Recovery strategies
•
Strategized and implemented operational, compliance, and investigative audits across diverse business sectors, employing a risk-based audit methodology.
•
September 2011 - October 2014
Amerilife Group, LLC, Florida
Established departmental methodologies, including SOX and COSO frameworks, alongside robust quality processes
•
Implemented a comprehensive risk assessment model for evaluating and prioritizing corporate-wide risks
•
Provided direct quarterly updates to the Audit Committee regarding annual planning, scheduling, risk assessments, staffing, and presentation of audit reports
•
• Accountable for the management and leadership of teams of up to 15 members Engaged participant in financial and IT project teams, offering recommendations and support in project planning and implementation
•
Lead comprehensive risk management initiatives across the entire company, encompassing the creation of risk assessments, oversight of compliance and regulatory matters, and spearheading Business Continuity and Disaster Recovery endeavors.
•
Master of Information Systems Management (MISM)
DeVry – Keller Graduate School of Management
Minor in Project Management
Bachelor of Science (BS) in Accounting
University of South Florida
Master of Business Administration (MBA)
Tampa College
Bachelor of Arts (BA) in Finance
University of South Florida
EDUCATION
June 2015
US
June 1991
January 1988
June 1986
CERTIFICATIONS
• CPA - Active, FL and GA
• CISA – Active
• CDSPE – Active
• ISO 27001 2022 – Active
• CIPP/E – 2024
• CIPM – 2025
References available upon request
REFERENCES