Third-Party Risk Management
Resume:
J. Read Smith III
Senior Cybersecurity & GRC Specialist Third-Party Risk Security Compliance Leader Greater NYC Region 631-***-**** ************@*******.*** www.linkedin.com/in/readsmith SUMMARY:
Cybersecurity and risk management professional with over 12 years of experience in Governance, Risk, and Compliance (GRC), Third-Party Risk Management (TPRM), and security compliance leadership. Skilled in risk assessments, policy development, vulnerability testing, and aligning security programs with standards such as NIST, ISO 27001, and PCI DSS. Since August 2023, I have been managing a physical disability that required time away from the workforce. I am now cleared and prepared to return and contribute my experience and dedication to strengthening enterprise security and risk programs. EXPERTISE:
Solution Development & Coordination Pre-Sales & Solution Engineering Business Analysis & Workflow Optimization Governance, Risk & Compliance (GRC) Third-Party Risk Management (TPRM) Cybersecurity & Compliance Frameworks
(NIST, ISO 27001, PCI DSS) SaaS, Cloud-Based Solutions (AWS, Azure, GCP) RFP, RFI, RFQ, SOW Development & Response Proposal Writing & Content Development Project Management & Process Improvement Stakeholder Engagement
& Cross-Functional Collaboration Technical Presentations & Proof of Concepts (POC) RFPs, RFIs, and Security Audits PROFESSIONAL EXPERIENCE:
JRBQ, New York, NY, Oct 2013 – Present
Senior Cybersecurity & GRC Specialist / Solutions Lead Consultant
- Provided cybersecurity consulting focused on risk assessments, security policy development, and compliance alignment
(HIPAA, NIST, ISO 27001, PCI DSS).
- Conducted vulnerability assessments and security reviews to identify and mitigate risks in enterprise applications.
- Advised clients on secure coding best practices and third-party risk management (TPRM) to strengthen security postures.
- Researched and implemented emerging cybersecurity trends, ensuring continuous security improvements. Tevora, Long Island, NY, Oct 2022 – Sep 2023
Solutions Lead / Pre-Sales Architect
- Led solution development efforts, coordinating technical and sales teams to create high-quality proposals and presentations.
- Engaged with senior technical experts and stakeholders to align solutions with business and compliance requirements.
- Developed evaluation recommendations for cybersecurity and compliance products to enhance client decision-making.
- Streamlined proposal processes, improving productivity by 93% and generating $1M in additional revenue. TalkDesk, Long Island, NY, Oct 2021 – Aug 2022
Enterprise Solution Engineer
- Coordinated and delivered compelling solution presentations to enterprise customers, conducting discovery sessions & demos.
- Secured four $120k+ deals within four months, directly contributing to company revenue growth.
- Worked with development teams to implement secure coding practices and vulnerability mitigation strategies.
- Reviewed RFPs, structured responses, and aligned solutions with client needs. Lynx Tech Partners, Long Island, NY, Oct 2020 – Apr 2021 Senior Solutions Engineer Consultant
- Managed the development and presentation of complex cybersecurity solutions, working with stakeholders to align offerings.
- Led sales proposals, technical demonstrations, and proof-of-concept (POC) development.
- Coordinated internal teams to ensure timely and high-quality solution delivery. Supply Wisdom, Long Island, NY, Apr 2020 – Oct 2020 Director of Strategic Accounts Consultant
- Conducted product demonstrations and serviced/expanded existing customer accounts in Third-Party Risk.
- Led relationships with one or more clients aligning with their TPRM strategic plan. Frank’s Plumbing, Long Island, NY, Aug 2019 – Aug 2021 Assistant Plumber
- Interacted with customers, managed scheduling, billing, and warehouse receiving.
- Performed plumbing tasks including copper, PVC, PEX, and water main relocations. Prevalent, Inc., Long Island, NY, Oct 2016 – Mar 2019 Sales Engineer
- Contributed to solution development and proposal creation for a $36M sales quota, ensuring alignment with client risk and compliance needs.
- Conducted solution presentations, vendor risk assessments, and compliance strategy alignment.
- Trained enterprise security teams on risk mitigation strategies and incident response planning. Syzygy Solutions, Exton, PA, Sep 2015 – Oct 2016
Senior Business Analyst / Consultant
- Scoped and documented business requirements, workflows, and solution architecture for enterprise risk and compliance implementations.
- Developed and refined proposal content to support security and compliance engagements.
- Assisted in implementing GRC platforms to automate risk monitoring and compliance workflows. MetricStream, Long Island, NY, Feb 2014 – Sep 2015 Senior Sales Engineer
- Managed enterprise client engagements, tailoring risk management solutions to business challenges.
- Led content development for proposals and RFP responses, working with internal teams to refine messaging. Novius Group, Jersey City, NJ, Jun 2012 – Feb 2014 Senior Business Analyst Consultant
- Served as AIG’s on-site technical representative, scoping engagements and documenting workflows.
- Managed 2 developers to create technical requirement documents and specialized code.
- Deployed the Vendor Gateway platform for Third-Party Risk. Citibank North America, New York, NY, Jun 2004 – Mar 2007 VP, Business Information Security Officer (BISO)
- Led governance and risk management projects, ensuring compliance with enterprise security policies.
- Managed a $15.7M identity management project, engaging cross-functional teams to align on strategic objectives. EDUCATION:
BS, Business Management
State University of New York (SUNY) Plattsburgh, Plattsburgh, NY AS, Business Management
Farmingdale State College, Farmingdale, NY
CERTIFICATIONS:
- Certified Third-Party Risk Professional (CTPRP)
- CISSP (In Progress)
TECHNICAL SKILLS:
- Cybersecurity & Compliance: NIST, ISO 27001, PCI DSS, HIPAA
- Cloud Platforms: AWS, Azure, GCP
- Risk & Compliance Tools: Archer GRC, MetricStream, Prevalent
- CRM & Sales Tools: Salesforce, HubSpot, LinkedIn Sales Navigator
- Scripting & Automation: No-Code Workflows, API Integrations
Contact this candidate