Principal Architect

Daniel Giacomelli, PMP, MCP, CC

Langhorne, PA (Greater Philadelphia Area) 215-***-**** ***@**********.*** linkedin.com/in/giacomelli Principal Enterprise Architect GRC and Cybersecurity Director Modernization and Program Leader Architecture-first leader with deep experience in Enterprise Architecture, GRC and Cybersecurity, and large-scale modernization and program strategy. I translate complex systems into clear models that unify people, data, and technology into predictable, executable outcomes.

Grounded in Business Architecture, I structure organizations into architectural viewpoints by mapping business entities into People Process Technology requirements supported by conceptual, logical, and physical models. I lead architecture, governance programs, evidence cycles, modernization roadmaps, and multi-team delivery structures across business, technology, security, and compliance, including Responsible AI governance and AI platform architecture that remain compliant, segmented, identity-centered, and audit-ready. Core Competencies

Enterprise Architecture (Solutions, Technical, Infrastructure, Application) • Conceptual to Logical to Physical Modeling • Process Engineering • Systems Mapping and Modernization • People Process Technology Alignment • Governance and Security Architecture • GRC (ISC2 CC, PCI, NIST, AI RMF, HIPAA, SOC 2, TX-RAMP) • Risk Modeling and Remediation • Continuous Assurance and Audit Readiness • IAM, SIEM, SOAR Alignment • Cloud and Infrastructure Transformation • Program and Portfolio Strategy • Hybrid Agile / Waterfall Delivery • Operational Maturity Improvement • Incident Preparedness, BCP/DR • AI Architecture, Compliance, and Prompt Engineering. Professional Experience

Ruffalo Noel Levitz (RNL), Security and GRC Manager (acting CISO) / Enterprise Architect 6/2023 to 10/2025

• Acting CISO driving enterprise risk reduction, audit strategy, vendor risk management, and client and regulator assurance; built repeatable evidence cycles, compliance scorecards, governance cadence, and centralized risk register, reducing client assurance timelines by 30% and improving audit predictability.

• Led enterprise architecture and governance across security, compliance, cloud, identity, infrastructure, and product, converting complex ecosystems into executive-ready models accelerating alignment and decisions.

• Assisted in establishing Responsible AI governance for RNL AI initiatives, using NIST AI RMF as a baseline and operationalizing EU AI Act-aligned risk concepts to better map to FERPA and PHI-adjacent constraints.

• Authored RNL Edge Logical Reference Model (segmentation, scalability, TitanML, DataGPT, microservices, chatbot engine, custom APIs, and MongoDB Atlas) used across teams for AI platform integration.

• Designed AI and CHD platform segmentation and isolation of core RNL platforms while leveraging shared enterprise identity (Entra ID) integrated across AWS, on-prem, IBM Cloud, and Azure.

• Use Entra ID MFA SSO expanded alignment positioning identity architecture as repeatable audit evidence.

• Built conceptual, logical, and physical architectures for cloud, identity, segmentation, and data flows; integrated MXDR, SIEM/SOAR, IAM/PAM, ITOps, SecOps, DevOps, and DevSecOps into unified operational and audit cycles with dashboards for vulnerability trends, remediation velocity, and control effectiveness.

• Designed Product Baseline Security Controls (PBSC) framework mapped to PCI, NIST, HIPAA, and TX-RAMP, unifying control ownership and strengthening governance across Product, Infrastructure, and ClientOps.

• Designed and governed enterprise DLP controls using Microsoft Purview, Fortinet, Rubrik, SentinelOne, MXDR, Amazon GuardDuty and endpoint agents to prevent data exfiltration enforcing compliance standards.

• Advanced security operations and control effectiveness deploying AI-assisted detection and response capabilities with MXDR workflows, embedding outcomes into GRC cadence and incident response processes.

• Created runbooks, diagrams, and process flows that improved operational maturity and continuity planning; used AI-assisted analysis to accelerate audit documentation, evidence preparation, and risk summaries. South Jersey Industries (SJI), Infrastructure & Security Manager 7/2022 to 2/2023

• Modernized IT and OT infrastructure across 100+ locations and 240+ circuits, improving SCADA, telemetry, and field operations; Led modernization, delivery, vendor oversight, and operational governance for Cisco, Fortinet, VMware, Rubrik, Citrix, Linux, Windows/SQL, Azure, and M365.

• Directed Sev1 incident response and RCA across IT/OT; converted reactive operations to proactive support by optimizing SolarWinds and ServiceNow and restructuring the infrastructure team into focused pillars, aligning workloads across internal staff, MSPs, with shared accountability and responsibilities using new RACI model.

• Coordinated Infrastructure, Security, and PMO resources for capital and operational programs including facilities, TSA/TCIP pipeline compliance, LNG/RNG initiatives, upgrades, and cross-team enhancements. LIO Insurance, AVP Program Delivery 11/2021 to 05/2022

• Led program delivery for data-science and actuarial-driven risk and loss modeling plus portal initiatives, aligning Underwriting, Actuarial, Data, Engineering, Sales, Ops, and IT to phased milestones (4D).

• Operationalized the data-science workflow: defined workstreams, governance cadence, and artifacts including hypothesis bank, dataset and data lake tracking, and “signal” sourcing (crime, proximity, semantics, property-level signals) to support scoring and pricing model iterations including data normalization and QA.

• Created flow diagrams and process models for portal scoring integration, data refresh and ingestion patterns, and runbooks that improved supportability and reduced rework during handoffs to IT.

• Built solution architecture flow diagrams and process models that improved SOP quality, completion times, and support readiness for portal and analytics workflows. Talkiatry, VP Infrastructure / Director Product Management 11/2020 to 11/2021

• Built a 100 percent cloud-based infrastructure supporting rapid growth from 21 to 100+ staff; improved the security score from 25 to 80 percent in 60 days through SSO/SAML, MDM/EDR, hardened M365/Azure and Domain (DNS) configurations, and Azure AD policies; enabled full remote telepsychiatry operations and achieved PCI compliance with HIPAA/HITECH safeguards mapped to NIST.

• Migrated the organization from Google Workspace to M365/Azure, established scalable identity and application governance, built and mentored the technical support team, and standardized incident, change, and support workflows across Jira, Zendesk, Teams, and eClinicalWorks.

• Implemented HL7 interfaces (DFT/ADT/SIU/ORU) and SFTP workflows to strengthen clinical interoperability. PMHCC (City of Philadelphia, Dept Public Health), Infrastructure & Security Architect 10/2012 to 6/2020

• Led security, infrastructure, and compliance for EHR across Ambulatory (HIPAA), Lab (LIMS), and Prisons

(CJIS), producing Security Risk Analyses, audit artifacts, and monthly risk dashboards.

• Delivered conceptual, logical, and physical enterprise architectures for City OIT and established standardized support and operational patterns across clinical and correctional environments.

• Re-architected ADT/ORM/ORU interfaces supporting radiology, mammography, pharmacy, and lab systems.

• Implemented a governing SharePoint intranet for outages, PMO, audit evidence, and Metrics reports.

• Extended security leadership to Air Management, Police, Fire, OEM, and the Medical Examiner’s Office, strengthening multi-agency operational readiness and aligning IT, security, and compliance practices across city agencies to ensure continuity of services.

Earlier Career Highlights

CIO, FirstLab/Genomind/RID Ventures: hybrid-cloud infra, PCI/HIPAA compliance, delivering $300K annual savings. Solutions Architect and Program Management roles (CIGNA, Canon, CDI, CSC, Comcast): delivered SOA initiatives, SharePoint modernization, outsourcing programs (~$15M new business), and BSS/OSS program support for large-scale service delivery. Senior Technical Architect/Instructor (Micro Endeavors/CSC): Microsoft.NET; business, technical and solutions architecture; security auditing, smart card tracking. Education & Certifications

• Bachelor of Science, Business Administration (Operations Management) - West Virginia University

• Certifications: PMI PMP, ITIL, MCSE, AZ-900, HIPAA/HITECH, PCI DSS, ISC2 CC (CISSP in progress), TX-RAMP Community Leadership and Non-profit

• Board Member: Middletown Township Parks & Recreation; Efasce di Philadelphia; eCWusers.com Admin.

• Certified: USSF Official, Assignor; AAHA Ice Hockey Official; USABH Official; advocate for youth sports.

• 3rd Degree Master Mason, F.&A.M — committed to integrity, service, and lifelong learning.

Contact this candidate