Information Security Executive
Resume:
JOHN P. O'DONNELL
Long Island, NY
www.linkedin.com/in/john-p-odonnell
************@*****.*** 917-***-****
Innovative IT, Risk & Cyber executive facilitating Strategy Enablement IT, Risk & Cyber executive in the Financial Services industry driving change with proven leadership and communication skills in dynamic environments at top tier firms including MUFG, Citi Bank, Deutsche Bank, Salomon Brothers, CS First Boston and PricewaterhouseCoopers. Leader of Global and Regional teams covering Internal / External Audit, Cyber, Operational Risk, Resiliency, IT Management, Governance, Information Security, Project & Program Management, Data Privacy and Consulting. Areas of expertise include:
IT Risk & Cyber Regulatory Compliance
IT Transformation & Change Mgmt IT Resiliency & Operational Risk Control
Project & Program Management Internal Audit
Board of Directors/Audit Committee Meetings Agile/ Cloud/ DevSecOps/ FinTech PROFESSIONAL EXPERIENCE
Point Lookout Risk Advisors, NY 2019 to Present
Chief Executive Officer (CEO)
Confidential Risk Advisory covering: Cyber Strategy, IT Risk assessments, Cloud Migration, IT Transformation and Change Management, Regulatory Compliance, Operational Resiliency, Fraud Investigations, Internal Audit MUFG, New York, NY 2017 to 2019
Managing Director, IT Risk Executive (reporting to CIO)
Improved and modernized all IT & Cyber core processes (e.g., Identity and Access, Network Security, Data Encryption, Secure Development, Incident Mgmt, Business Continuity and Change Mgmt) and validated operational execution and ongoing compliance.
Established a comprehensive 1st Line Risk team to address longstanding Regulatory Enforcement Action
Empowered the Banks Transformation Program with well-defined control definitions.
Achieved consensus across all three Lines of defense, bank leadership and the board of directors to begin use of the public cloud.
Created risk transparency using IT/IS risk metrics ensuring leadership decisions are risk informed.
Prioritized and structured the remediation of thousands of Cyber issues/gaps.
Achieved and maintained highest number and percentage of risk self-identified issues, reduced open IT related regulatory issues by 75%.
CITI BANK, New York, NY 2014 to 2017
Managing Director, IT Risk Control Executive, Consumer Bank (reporting to CIO) Managing Director, Governance Risk Control Lead, FinTech division
Developed IT Risk Strategic plan and provided leadership and direction across the Consumer Bank while managing 100+ IT risk professionals.
Dramatically improved all KPI / KRIs including Cyber, IS compliance, vulnerability management, SDLC quality control, system availability, issue management and business continuity. JOHN P. O’DONNELL www.linkedin.com/in/john-p-odonnell PAGE 2 OF 2 Citi BANK (cont’d) 2014 to 2017
Built the 1st Agile Governance Risk and Control team in Citi’s newly established FinTech division. Implemented a “Digital Governance Scrum Team” ensuring proactive risk management throughout the entire delivery journey.
Ensured the Consumer Bank Operational risks and concerns covering Cyber, Resiliency, IT compliance and Regulatory issues were completely and accurately disclosed to executive management and remediation prioritize by risk.
Partnered with Internal Audit, External Audit and Regulators driving consistent risk understanding and treatment.
Designed and implemented online Risk Portal, which provides management with structured risk views covering IT, Operations, Information Security, Vendor Management and Business Continuity.
Defined clear team competency and achievement goals, resulting in increased performance and dramatically higher employee satisfaction and retention.
Defined a Global Digital Risk Governance Architecture designed to increase control and speed-to-market while achieving dramatic cost efficiencies.
DEUTSCHE BANK, New York, NY 1997 to 2014
Senior Director, Coverage: Internal Audit, Operational Risk, Information Security, Risk Analytics, Data Privacy, IT Datacenter
Established strong Regional IT Audit presence in North and South America. Developed leading edge Global IT Audit approach with an emphasis on integrated audits. Built regional staff from 3 to 11 prior to Bankers Trust acquisition.
Successfully managed the integration and synchronization of Deutsche Bank and Bankers Trust audit staff, methodologies, coverage and tools. Managed all aspects of regional IT audit plan (over 50K hours), regional IT audit staff (27) and successfully issued over 100 audit reports annually.
Designed, developed and implemented the Group Sarbanes-Oxley compliance program covering IT General Controls and an Account Recertification program.
Created Comprehensive Risk Management program translating numerous control exceptions into meaningful risk views empowering management to make well informed risk based decisions and perform structured root cause analysis resulting in a $4M reduction in remediation costs in the 1st year. Program focused remediation efforts on the areas of highest risk, which resulted in efficient risk reduction and positive impacts on Regulatory Capital Requirements.
Global Data Privacy Lead; Regional Information Security Officer; Global Divisional Operational Risk Officer.
Managed all IT Vendor and Intra-company outsourcing risk reviews.
Coordination and remediation of all Internal Audit, External Audit and Regulatory issues. Other accomplishments, roles and highlights:
Received Security Architect of the year award – 2010 Oracle magazine,
Selected by IBM for a First of a Kind (FOAK) study in predictive Risk Analytics
Past member of PMI Global Executive Council.
Other positions:
Salomon Brothers Vice President – IT Audit
CS First Boston Vice President – IT Audit
PricewaterhouseCoopers Manager – Financial Services Practice Prior experience includes leadership roles in Technology Audit and Financial Services Practice with Salomon Brothers, Inc., CS First Boston Corporation, and Coopers & Lybrand. EDUCATION / CERTIFICATES / LICENSES
BA, Computer Science, State University College of Arts and Science, Potsdam, NY CISA General Securities Registered Representative (Series 7)
Contact this candidate