Software Development Data Analytics

Douglas Lichorwic

*************@*****.*** 919-***-**** https://www.linkedin.com/in/lichorwic/

PROFILE

● Cybersecurity executive specializing in Strategic Transformations, Identity & Access Management (IAM), Governance, Risk, and Compliance (GRC), and Program Delivery.

● Proven leader with a track record of delivering transformational solutions that enable users while ensuring security, privacy, and compliance for critical assets and data. Successfully managed large-scale identity programs for 80k internal and 400k external users. Skilled at building high-performing teams and fostering strong stakeholder relationships. Strong believer in zero-trust architecture, leveraging data-driven insights, and minimizing friction while increasing security.

● Experienced in navigating regulated environments (e.g. financial services and healthcare); familiar with multiple cyber & compliance frameworks: NIST, ISO, SOC, GDPR, HIPAA, PCI-DSS, FFIEC, SOX.

● CISSP (Certified Information Systems Security Professional, ISC2, #1884616). CAREER HIGHLIGHTS

Leadership:

● Developed Strategic Vision: Created strategy and roadmaps for identity transformation programs. Collaborated with key stakeholders to obtain buy-in and secure ~$6M USD in funding for IAM technologies. Chaired Steering Committees with executives across business divisions, risk, and technology.

● Built & Led High-Performing Teams: Attracted, coached, and mentored top talent. Led diverse teams across Architecture & Strategy, IAM, GRC, Data Analytics, Software Development, and Program Delivery (max team: 12 directs, 55 staff, 9 cities, 3 continents).

● Thought Leader & Innovator: Participant in multiple industry working groups. Invited speaker at 15 conferences. Received CSO50 Security Award. Veteran of 4 M&A/Divestiture activities. Delivery & Regulatory Impacts:

● Delivered Secure & Compliant Identity Solutions: Built-out the first-ever centralized IAM capability at IQVIA establishing the foundational enterprise identity framework.

● Developed Customer Identity Solutions: Delivered custom-developed, automated, solutions for identity vetting, access provisioning, and auditing/reporting. Implemented authentication & password self-service capabilities that reduced customer support tickets by ~70%.

● Transformed Regulatory Posture: Led two, multi-year, enterprise-wide, critical remediation programs to mitigate access risks and address regulator findings; outcomes included reducing access risk to AWS resources by over 91%. Led compliance engagements with risk partners, auditors, and regulators.

● Enhanced Monitoring and Governance: Implemented metrics and reporting to drive 90%+ effectiveness for 215 centralized and federated controls. Delivered solution to provide access transparency for machines and humans in AWS. Created monitoring to detect unused access for cloud resources. Automated monitoring and revocation of unused human access to AWS cloud.

Douglas Lichorwic

*************@*****.*** 919-***-**** https://www.linkedin.com/in/lichorwic/ EXPERIENCE

D&A Endeavors LLC, Richmond, VA 2024 – 2025

Small Business Owner

● Founded to provide IAM subject matter expert (SME) consulting services:

Transformation, strategy, & roadmap proposals

Identity program impact quantification (e.g. risk reduction, breach likelihood, and recovery costs)

Steering committee structure and guidelines

Capital One, Richmond, VA 2019 – 2023

Senior Director, Cyber Engineering Identity & Access Management

● Directed multiple IAM teams, including: Architecture & Strategy, Data Analytics, GRC, and Program Delivery

Developed and socialized IAM strategy, target state, and delivery roadmaps

Chaired IAM Steering Committee comprising executive stakeholders from business, tech, risk, and audit

Delivered data-driven solutions for application risk quantification, user behavior analytics, and data enrichment for improved human decision making

Managed the IAM centralized control portfolio (~155 controls) and led compliance engagements

● Led two, 100+ person, multi-year, enterprise-wide IAM transformations in response to a major data breach and regulator findings. Leveraging partnerships, collaboration, transparent communication, and skillful influence, drove completion of 28 Board-approved milestones that both reduced risk and strengthened monitoring, governance, and oversight:

Reduced access risk to AWS resources by 91%

Harmonized 60 controls across 10 divisions for ~300 non-centrally managed applications (95% effective)

Implemented time-bound, restrictive patterns for human access to the AWS production environment

Standardized application role reviews to address least privilege and SOD risks across 2200 applications

Created reporting to provide access transparency to human & machine roles within AWS

Built monitoring to detect drift & unused access; automated removal of unused access for humans

Codified restrictive access requirements in Cybersecurity Standards

Developed metrics reporting to track/govern the adoption of IAM services (e.g. SSO, MFA, IGA, etc.) IQVIA, Research Triangle Park, NC 2005 – 2019

Director, Information Security – Global Head of Identity & Access Management

● Pioneered IQVIA's IAM practice, building and leading the first-ever IAM team. Developed a multi-year strategy and roadmap, securing stakeholder buy-in and funding

● Led global, cross-functional initiatives to evaluate, acquire, and implement IAM solutions for 50k internal users spanning IGA, PAM, and Virtual Directory, establishing the foundational enterprise identity framework

● Implemented Sailpoint IdentityIQ, automating provisioning and native change detection, resulting in increased efficiency for new hire onboarding. Unified disparate processes from mergers and acquisitions

● Developed custom-automated solutions for customer identity vetting, authentication (including Federated SSO & IdP Discovery), access provisioning, and auditing/reporting

● Implemented an external authentication & password self-service solution, reducing support tickets by ~70%

● Received CSO50 Security Award for an innovative "rules engine" solution for client identity vetting Douglas Lichorwic

*************@*****.*** 919-***-**** https://www.linkedin.com/in/lichorwic/ Director, IT Service Delivery Management

● Hand-selected to pioneer the first-ever “IT Service Owner” role, which grew into a 50+ person organization

● Accountable for multiple, mission-critical, customer-facing services and applications, including the flagship offering, Quintiles Infosario, impacting ~100 customers and ~400k users

● Strengthened relationships by providing product management expertise to internal and external stakeholders

● Championed innovation by developing and introducing the first-ever Quintiles Release Management capability, resulting in ~50% improvement in release outage durations Director, IT Security – Global Compliance & Identity Lifecycle Management

● Assembled and led 2 global teams to provide Global Identity Lifecycle and IT Compliance services

● Created a global provisioning/deprovisioning capability for internal employees and external customers

● Instituted global Sarbanes-Oxley (SOX) controls & testing program for IT infrastructure

● Led divestiture with ThermoFisher Scientific (Cenduit), ensuring no disruption to business continuity operations ADDITIONAL EXPERIENCE

Northrop Grumman IT (via Logicon), Colorado Springs, CO

● Hand-selected to lead the multi-million dollar Medical Software Services Program, accountable for the strategy and delivery of custom software development & validation services to the Medical Device & Biotech industries

● Led organization to a repeated CMMI Level 5 rating (the first organization in the world to re-appraise at Level 5) St. Jude Medical (via Telectronics Pacing Systems), Miami Lakes, FL

● Pioneered the role of Software Quality Engineer at the Miami Lakes facility, successfully implementing rigorous quality assurance processes and establishing discipline within a previously unstructured environment. Overcame the challenges of being the first dedicated quality resource to ensure successful implementation EDUCATION

● Master of Science, Biomedical Engineering, Ohio State University, Columbus, OH

● Bachelor of Science, Bioengineering, Syracuse University, Syracuse, NY PROFESSIONAL CERTIFICATIONS

● CISSP (Certified Information Systems Security Professional, ISC2, #1884616) SKILLS SUMMARY

● Team leadership: build, lead, and retain high-performing teams spanning multiple geographies; leader of leaders

● Leading change: strategic leadership, solution alignment with stakeholders, transparent communication, build consensus and identify win-win outcomes, lean-in to reduce friction via automation and self-service options

● Identity concepts: zero trust, multi-factor authentication, risk-based authentication, identity provider discovery, identity lifecycle management, centralized methods, federated (non-centralized) environment, user provisioning

(joiner/mover/leaver), attestation/certification, least privilege, segregation of duties, privileged access, secrets management,; metrics / data-centric (e.g. KPI, KRI, or OKR) monitoring, reporting and governance

● Identity technologies: Sailpoint IIQ, CyberArk Vault & Session Management, PingFederate, Active Directory/Azure, Radiant Logic Virtual Directory, AWS Cloud

Contact this candidate