image
Robert Svenson

What I Do

Senior IT Professional
Senior Security & Risk Professional
Network & Server Architect/Engineer
Governance Compliance & Risk Professional

Robert Svenson

With over 25 years of experience, I specialize in guiding organizations through complex technology challenges and identifying opportunities to resolve inefficiencies. My approach is hands-on and transformational, focused on aligning IT strategy with business goals, optimizing operations, and delivering solutions that make a real impact.

I’m passionate about mentoring and challenging associates, helping them grow their skills and advance to the next level. Whether it’s security, risk management, infrastructure, or digital transformation, I believe in fostering a culture where people and technology thrive together.

Download CV Contact

Shape IT Strategy and Leadership

I partner with business leaders to develop and execute technology roadmaps that align IT with organizational goals. I enjoy building high-performing teams and ensuring technology always adds real value.

Architect Reliable Infrastructure

I build and optimize network and server environments that are secure, scalable, and resilient. Whether it’s cloud, on-premises, or hybrid, I make sure infrastructure supports business needs today and in the future.

Establish Governance and Compliance

I create and maintain IT policies, controls, and frameworks that meet industry standards and regulatory requirements. My focus is on making compliance a natural part of everyday operations.

Lead Cybersecurity and Risk Management

I design and implement security programs that protect sensitive data and ensure compliance. My approach includes risk assessments, security awareness training, and proactive incident response planning.

Optimize Costs and Processes

I identify inefficiencies and find smart ways to streamline IT operations, reduce unnecessary spending, and improve service delivery—all while supporting growth and innovation.

Mentor and Develop Talent

I’m passionate about mentoring and challenging associates, helping them expand their skills and advance their careers. I believe that when people thrive, so does the entire organization.

Testimonials

Tech Stack

Resume

25+ Years of Experience

General Information

Certifications

2025
Palo Alto

PA Certified Cybersecurity Practitioner

2024
ISC2

CISSP

Expired
Microsoft

MCSE

Expired
Microsoft

MCP

Education

Northern Illinois University

Computer Science

Northern Illinois University – College of Computer Science
Studied core areas including systems analysis, programming, networks, and security. 

Harper College

Harper College

Associates in the arts with a  with a focus on mathematics, science, and technology.

Experience

Jan 2024 - Current
365 IT Support

Principal Consultant / Fractional CIO & CISO

Lead IT, security, and compliance strategy for multiple SMB and mid-market clients. Deliver hands-on transformation, IT governance, process efficiency, cybersecurity roadmaps, and operational improvements.

Sept 2014 - Dec 2023
Alera Group

SVP, Head of IT, Security & GRC

Built and led a 45-person IT and security team supporting 180 sites. Delivered $1.5M in annual cost savings, successfully integrated 150+ acquisitions, and strengthened security operations, compliance, and risk oversight for 6,000 endpoints

Jan 1999 - Sept 2014
Svenson Consulting

Principal Consultant / Owner

Designed and implemented secure networks, server environments, and risk management programs for a diverse client base in Government, Manufacturing, Legal, Healthcare and Insurance.

Certifications

2025
Palo Alto

PA Certified Cybersecurity Practitioner

2024
ISC2

CISSP

Expired
Microsoft

MCSE

Expired
Microsoft

MCP

Education

Northern Illinois University

Computer Science

Northern Illinois University – College of Computer Science
Studied core areas including systems analysis, programming, networks, and security. 

Harper College

Harper College

Associates in the arts with a  with a focus on mathematics, science, and technology.

Experience

Jan 2024 - Current
365 IT Support

Principal Consultant / Fractional CIO & CISO

Lead IT, security, and compliance strategy for multiple SMB and mid-market clients. Deliver hands-on transformation, IT governance, process efficiency, cybersecurity roadmaps, and operational improvements.

Sept 2014 - Dec 2023
Alera Group

SVP, Head of IT, Security & GRC

Built and led a 45-person IT and security team supporting 180 sites. Delivered $1.5M in annual cost savings, successfully integrated 150+ acquisitions, and strengthened security operations, compliance, and risk oversight for 6,000 endpoints

Jan 1999 - Sept 2014
Svenson Consulting

Principal Consultant / Owner

Designed and implemented secure networks, server environments, and risk management programs for a diverse client base in Government, Manufacturing, Legal, Healthcare and Insurance.

Role Specific Experience

Professional Summary

Strategic and hands-on CISO with over 25 years of experience designing, building, and leading small to enterprise level security programs. Proven expertise in Governance, Risk and Compliance, incident response, and aligning security architecture with business and organizational goals. Recognized for implementing enterprise-wide security frameworks, maturing security postures, and driving security awareness across global teams. Adept at translating complex risks into actionable strategies, mentoring security talent, and fostering a proactive security culture that supports business growth.

Role Specific Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Serve as fractional CISO for multiple organizations, leading security strategy, risk management, and cybersecurity program development.

  • Conduct comprehensive risk assessments and vulnerability analyses, aligning with NIST 800-53 and ISO 27001 frameworks.

  • Develop security roadmaps and incident response plans tailored to business priorities.

  • Oversee policy creation, regulatory compliance (HIPAA, GLBA, CCPA), and vendor risk management.

  • Implement Zero Trust principles, security awareness training, and security operations (EDR, XDR, SIEM).

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Designed and implemented enterprise security architecture for a $1.4B, 180 site organization with 6,000 endpoints.

  • Built and managed a 45-person IT and security team, overseeing all cybersecurity operations, compliance, and incident response.

  • Led successful SOC 2 Type II certification and managed 120+ security controls (NIST, ISO 27001, HIPAA, PCI, GLBA, NYDFS, CCPA).

  • Developed and maintained 20+ security policies and procedures; conducted 8 annual enterprise risk assessments.

  • Directed deployment of SIEM (Alienvault), XDR (Palo Alto Cortex), and automated security playbooks, reducing incident response time by 70%.

  • Instituted security awareness programs, reducing phishing risk by 40% and increasing training completion to 98%.

  • Oversaw vendor security reviews and compliance assessments for 100+ partners annually.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Advised SMB and government agencies on security architecture, compliance, and risk mitigation.

  • Delivered vulnerability assessments, policy development, and security awareness programs across diverse industries.

  • Designed and implemented network and endpoint security solutions to protect client assets.

Role Specific Competencies

Enterprise Risk Management

Security Architecture & Operations

Incident Response & Crisis Management

Regulatory Compliance (SOC2, HIPAA, PCI, GLBA, NYDFS, CCPA, NIST, ISO 27001)

GRC Program Development

Zero Trust & Identity Management (IAM, SSO, MFA)

Security Awareness & Training

Vendor Risk Management

Policy & Procedure Development

Executive Communication

Team Building & Transformational Leadership

SIEM, XDR, Endpoint & Network Security

AI & Process Automation

Audit Management

Business Continuity & Disaster Recovery

Role Specific Toolbox

Firewalls: Palo Alto (PA-220/820/440/3200), Cisco ASA, FortiOS

90%

SIEM & SOAR: Alienvault, XSOAR, Microsoft Sentinel

85%

EDR/XDR: Palo Alto Cortex XDR, CrowdStrike Falcon, Huntress, Microsoft Defender

85%

Server Security: Windows Server

100%

Cloud Security: Microsoft 365/Azure Security

80%

Email Security: KnowBe4, Mimecast, Ironport, DKIM, SPF, DMarc, Exchange

100%

Endpoint & Network Monitoring: Huntress, Auvik, NetFlow, SNMP, Panorama

85%

IAM: Azure AD, Okta, Duo, LDAP, SAML, RADIUS

70%

MDM: Microsoft Intune, Workspace One

80%

Compliance & GRC Tools: StandardFusion

80%

Backup & Data Protection: Veeam, Barracuda, Unitrends

100%

DNS Protection - Cisco Umbrella, Constellix

100%

Professional Summary

Transformational IT executive with 25+ years’ success building and scaling high-performing teams, optimizing $7M+ budgets, and leading digital transformation in high-growth, acquisitive organizations. Proven leader in M&A integration (150+ acquisitions), enterprise infrastructure, cloud strategy, and cost control—delivering $1.5M annual OPEX savings while aligning IT with business goals.

Role Specific Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Serve as fractional CIO for SMBs, leading IT strategy, cloud migrations, and infrastructure modernization.

  • Advise on IT governance, vendor selection, and technology roadmaps, reducing client IT costs and risk.

  • Delivered a 3-year IT modernization roadmap and improved uptime, user experience, and security posture for multiple organizations.

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Built IT teams from 2 to 45 across 5 departments, supporting 180 locations and 6,000 endpoints.

  • Integrated IT operations for 150+ acquisitions, scaling company revenue from $240M to $1.4B.

  • Managed $7M IT budget, delivering $1.5M in annual OPEX savings via process automation and vendor consolidation.

  • Led data center moves, Azure cloud migrations, and business-critical systems upgrades for high-availability environments (400+ servers, 900+ remote desktops).

  • Negotiated multimillion-dollar IT contracts and reduced technology costs by $1.5M/year.

  • Collaborated with executive team to align IT with business goals, legal, and regulatory requirements.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Led IT strategy, infrastructure design, and modernization projects for SMB clients, ensuring scalable, secure growth.

  • Delivered network and server solutions to improve reliability and business performance.

Role Specific Competencies

IT Strategy & Roadmapping

Digital Transformation

Cloud Adoption (Azure/M365, AWS, etc.)

Enterprise Architecture

Budget & Vendor Management

IT Operations & Service Delivery

Risk Management & Cybersecurity Oversight

M&A Integration

Change Management

Executive Communication

Team Building & Transformational Leadership

Data Analytics / Business Intelligence

AI & Process Automation

Governance, Risk, and Compliance (GRC)

Policy and Procedure Development

Role Specific Toolbox

Network Architecture

95%

Security Architecture

90%

Cloud Platforms (Azure, M365)

70%

Virtualization (VMware, Hyper-V)

90%

Server Admin (Windows)

95%

Server Admin (Linux

55%

Endpoint Protection & XDR

80%

Backup & DR Solutions

95%

Professional Summary

Hands-on and results-driven IT executive with a proven record of transforming operations, enhancing security, and driving technology projects from strategy to execution. Expert problem solver and analytical thinker, adept at bridging business and technical needs, identifying root causes, and implementing effective solutions. Skilled in developing and optimizing procedures, ensuring robust monitoring and governance, and building high-performance teams. Committed to operational excellence, risk reduction, and sustained business growth through continuous improvement and data-driven decision making.

Role Specific Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Directed end-to-end delivery of security and network projects, from scoping to post-implementation monitoring.

  • Built and standardized IT operational runbooks, incident response plans, and security procedures for clients.

  • Implemented real-time security monitoring and incident detection, driving rapid response to potential threats.

  • Developed and documented step-by-step operational workflows, ensuring consistent service and regulatory compliance.

  • Delivered successful cloud migrations, VoIP transitions, and data center upgrades, always focusing on operational continuity and security.

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Managed a multi-disciplinary IT team, executing enterprise projects across 180 locations and integrating 150+ acquisitions.

  • Developed comprehensive IT policies, SOPs, and operational playbooks, improving incident response times and audit readiness.

  • Led implementation of SIEM, XDR, and automated monitoring solutions, reducing security incidents and unplanned downtime.

  • Oversaw change management, project delivery, and ongoing system monitoring, achieving 99.99% uptime for critical business systems.

  • Championed continual process optimization—automating patch management, onboarding, and compliance workflows.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Oversaw IT and security projects for SMB clients, from initial planning through execution, monitoring, and support.

  • Authored and refined client procedures, runbooks, and best practices for repeatable and secure operations.

  • Implemented security monitoring, risk assessments, and process documentation for clients across diverse industries.

Role Specific Competencies

IT Project Management & Execution

Security Monitoring & Incident Detection

Runbook, Policy & Procedure Development

Change Management

Real-Time Systems Monitoring

Regulatory Compliance & Audit Readiness

Team Leadership & Talent Development

Process Optimization & Automation

Vendor & Stakeholder Management

Incident Response & Crisis Management

Cloud & Data Center Operations

Policy & Governance Development

Metrics-Driven Operations

Role Specific Toolbox

Network Architecture

95%

Security Architecture

90%

Cloud Platforms (Azure, M365)

70%

Virtualization (VMware, Hyper-V)

90%

Server Admin (Windows)

95%

Server Admin (Linux

55%

Endpoint Protection & XDR

80%

Backup & DR Solutions

95%

Firewalls & Network Security: Palo Alto, Cisco ASA, FortiOS

90%

Process Automation: PowerShell, RMM (ConnectWise, Kaseya, NinjaOne)

70%

Documentation: IT Glue

70%

Compliance Tools: StandardFusion, ServiceNow

80%

Backup & DR: Veeam, Barracuda, Unitrends

95%

Professional Summary

Hands-on and results-driven IT executive with a proven record of transforming operations, enhancing security, and driving technology projects from strategy to execution. Expert problem solver and analytical thinker, adept at bridging business and technical needs, identifying root causes, and implementing effective solutions. Skilled in developing and optimizing procedures, ensuring robust monitoring and governance, and building high-performance teams. Committed to operational excellence, risk reduction, and sustained business growth through continuous improvement and data-driven decision making.

Relevant Role Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Designed and implemented next-generation firewall solutions, segmented network architectures, and Zero Trust access controls.

  • Deployed and fine-tuned EDR/XDR, SIEM, and automated security monitoring, reducing response time and improving incident detection.

  • Conducted vulnerability assessments and remediation, aligning findings to compliance standards (NIST, ISO 27001).

  • Automated server patching, configuration management, and security policy enforcement across diverse platforms.

  • Built and maintained secure cloud environments, managing Azure security and Microsoft 365 protections.

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Architected and managed enterprise-wide security infrastructure supporting 6,000 endpoints across 180 sites.

  • Led deployment of SIEM (Alienvault), XSOAR, and EDR platforms, establishing real-time monitoring and automated response.

  • Developed and implemented security policies, procedures, and technical controls for SOC2, HIPAA, PCI, and other regulatory requirements.

  • Oversaw DNS security, email filtering, and endpoint hardening for high-resilience operations.

  • Conducted risk assessments, penetration testing, and security awareness programs.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Delivered tailored security solutions for SMB and enterprise clients, including network design, endpoint security, and policy development.

  • Provided incident response support, forensic investigations, and remediation planning.

  • Designed secure remote access solutions, leveraging VPN, MFA, and layered authentication.

Role Specific Competencies

Security Monitoring & Incident Detection

Real-Time Systems Monitoring

Regulatory Compliance & Audit Readiness

Process Optimization & Automation

Incident Response & Crisis Management

Policy & Governance Development

Security Architecture & Solution Design

Firewall & Network Security Engineering

Endpoint Security (EDR/XDR) Deployment

SIEM & Security Monitoring Implementation

Identity & Access Management (IAM, SSO, MFA)

Cloud Security (Azure, Microsoft 365, VMware)

Forensics

Automation (PowerShell, RMM Tools)

Risk Assessment & Compliance Alignment

Network Segmentation & Zero Trust Controls

Role Specific Technical Toolbox

SIEM & SOAR: Alienvault, XSOAR, Microsoft Sentinel

95%

EDR/XDR: Palo Alto Cortex XDR, CrowdStrike Falcon, Huntress, Microsoft Defender

%

Firewalls: Palo Alto (PA-220/820/440/3200), Cisco ASA, FortiOS

%

IAM: Azure AD, Okta, Duo, LDAP, SAML, RADIUS

%

MDM: Microsoft Intune, Workspace One

%

Cloud Security: Microsoft 365, Azure Security, VMware

%

Vulnerability Management: Nessus

%

DNS & Email Security: Cisco Umbrella, Constellix, Mimecast, Ironport, DKIM, SPF, DMARC

%

Backup & DR: Veeam, Barracuda, Unitrends

%

Scripting & Automation: PowerShell, RMM platforms (ConnectWise, Kaseya, NinjaOne)

%

Server Security: Windows Server, (add Linux if applicable)

%

Documentation: IT Glue

%

Professional Summary

Accomplished Network Engineer/Architect with over 25 years of hands-on experience designing, securing, and optimizing complex LAN/WAN environments for organizations of all sizes. Renowned for expert problem-solving, analytical thinking, and delivering highly available, scalable, and resilient network solutions. Proven record of leading network transformations, integrating multi-site architectures, and driving automation to improve performance and reliability. Adept at implementing advanced routing, segmentation, firewall policies, VPNs, and supporting secure cloud and remote access.

Role Specific Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Designed and deployed multi-site LAN/WAN architectures, including VLAN segmentation, OSPF, BGP, and redundant failover solutions.

  • Implemented next-generation firewall clusters, secure VPNs, and high-availability networking for enterprise and SMB clients.

  • Led cloud migrations, integrating on-premises and cloud networks (Azure, Microsoft 365) with seamless connectivity.

  • Automated network monitoring, documentation, and alerting using SNMP, NetFlow, and RMM platforms.

  • Troubleshot and resolved complex networking issues, ensuring uptime, security, and compliance.

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Architected and managed a 180-site WAN, supporting 6,000 endpoints and 400+ servers.

  • Designed and implemented 3-tier core data center networks, BGP peering, VPN backhaul, and QoS for VoIP.

  • Led migrations and integrations for 150+ acquisitions, unifying network infrastructure and policies.

  • Deployed and maintained Cisco Catalyst/Nexus, HP ProCurve/Aruba, Ubiquiti, and Palo Alto firewalls.

  • Created and maintained detailed network diagrams, documentation, and change management processes.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Delivered custom network designs for SMB and mid-market clients, emphasizing security, scalability, and performance.

  • Implemented secure remote access, VPN tunnels, VLANs, and wireless solutions.

  • Provided ongoing network troubleshooting, optimization, and client training.

Role Specific Competencies

Enterprise LAN/WAN Architecture

VLAN & Network Segmentation

Advanced Routing (BGP, OSPF, EIGRP)

Firewall & Perimeter Security Engineering

VPN & Remote Access Solutions

High-Availability & Redundant Networking

Network Performance Optimization

Wireless Network Design (WLAN)

Network Troubleshooting & Diagnostics

Network Automation & Monitoring (SNMP, NetFlow, RMM)

Documentation & Network Diagramming

Change Management & Compliance

Segmentation VLAN

Remote Access - VPN

Role Specific Toolbox

Firewalls: Palo Alto Networks (PAN-OS), Cisco ASA, FortiOS

%

MDM: Microsoft Intune, Workspace One

%

DNS & Email Security: Cisco Umbrella, Constellix, Mimecast, Ironport, DKIM, SPF, DMARC

%

Scripting & Automation: PowerShell, RMM platforms (ConnectWise, Kaseya, NinjaOne)

%

Server Security: Windows Server, (add Linux if applicable)

%

Documentation: IT Glue, Visio

%

Switches: Cisco Catalyst, Cisco Nexus, HP ProCurve, HPE Aruba, Ubiquiti

%

Network Monitoring: Auvik, NetFlow, SNMP, Panorama

%

VPN Technologies: IPSec, SSL VPN, Site-to-Site & Client VPN

%

Wireless: Cisco WLAN, Aruba, Ubiquiti UniFi

%

Cloud Networking: Azure Virtual Networks, Microsoft 365 integration

%

Automation: PowerShell, scripting for network management

%

Remote Monitoring: ConnectWise, Kaseya, NinjaOne

%

Professional Summary

Experienced Server Architect/Engineer with over 25 years of expertise designing, deploying, and optimizing enterprise server environments. Highly skilled in Windows and Linux administration, virtualization, cloud integration, and automating server management for maximum efficiency and security. Proven track record of building high-availability infrastructure, leading large-scale migrations, and implementing best practices for performance, compliance, and disaster recovery. Analytical and solutions-focused, with a passion for delivering stable, scalable, and secure IT ecosystems.

Role Specific Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Designed, built, and maintained Windows Server and Linux (Ubuntu, CentOS) environments for SMB and enterprise clients.

  • Implemented virtualization solutions (VMware vSphere, Hyper-V) for server consolidation, redundancy, and cost savings.

  • Automated server provisioning, patch management, and configuration using PowerShell, scripting, and RMM platforms.

  • Led cloud integrations (Azure, Microsoft 365), enabling secure hybrid deployments and seamless identity management.

  • Conducted performance tuning, troubleshooting, and capacity planning to ensure optimal uptime and responsiveness.

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Managed 400+ physical and virtual servers across 180 locations, supporting business-critical applications and services.

  • Architected high-availability clusters, disaster recovery solutions, and enterprise backup strategies.

  • Migrated legacy systems to modern server platforms and cloud environments with zero data loss.

  • Designed and managed Active Directory, DNS, DHCP, Exchange, and group policy for robust access control and identity management.

  • Ensured compliance and security through patch automation, system hardening, and regular audits.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Delivered server design, implementation, and ongoing support for a range of clients.

  • Installed and secured mail servers (Exchange), databases (SQL Server, MariaDB/MySQL), and web/application servers.

  • Developed documentation, maintenance procedures, and recovery playbooks for clients to ensure reliability and compliance.

Role Specific Competencies

Windows & Linux Server Architecture

Virtualization (VMware vSphere, Hyper-V)

Server Provisioning & Automation (PowerShell, RMM)

Active Directory, DNS, DHCP, Group Policy

Cloud Integration (Azure, Microsoft 365)

Backup & Disaster Recovery Solutions

High-Availability & Clustering

Patch Management & System Hardening

Performance Tuning & Troubleshooting

Mail Server Administration (Exchange)

Database Server Management (SQL Server, MariaDB/MySQL)

Documentation & Procedure Development

Role Specific Toolbox

Windows Server 2012–2022, Active Directory, DNS, DHCP, GPO

%

Linux (Ubuntu, CentOS)

%

Virtualization: VMware vSphere, ESXi, VMware Horizon, Hyper-V

%

Cloud Platforms: Microsoft Azure, Microsoft 365

%

Backup & DR: Veeam, Barracuda, Unitrends, NetBackup

%

Automation: PowerShell, RMM tools (ConnectWise, Kaseya, NinjaOne)

%

Mail: Microsoft Exchange, Mimecast

%

Database: MS SQL Server, MariaDB/MySQL

%

Security: Patch automation, system hardening, MFA integration

%

Documentation: IT Glue

%

SAN -Storage Area Networks: Pure Power Vault, Storage, Dell Vault, Nimble

%

Redundancy - Raid

%

Professional Summary

Accomplished GRC Specialist with extensive experience building, maturing, and operationalizing governance, risk, and compliance programs in complex, multi-site environments. Skilled at translating regulatory requirements into actionable controls, leading risk assessments, and preparing organizations for audits. Proven ability to develop and enforce policies, automate compliance workflows, and support cross-functional teams through security certifications and regulatory change. Analytical, detail-oriented, and proactive in driving a culture of security, privacy, and operational excellence.

Role Specific Accomplishments

Jan 2024 – Present

Senior IT Consultant / Fractional CIO

365 IT Support

  • Lead risk assessments and control gap analyses for clients, mapping findings to frameworks like NIST 800-53 and ISO 27001.

  • Developed and updated policies, procedures, and security training to support audit readiness and regulatory compliance (SOC 2, HIPAA, PCI DSS, GLBA, CCPA).

  • Implemented and automated compliance management processes using GRC platforms and reporting tools.

  • Assisted with vendor risk assessments, due diligence, and ongoing monitoring for third-party compliance.

  • Provided audit support and guidance, ensuring evidence collection, documentation, and attestation success.

Sept 2014 – Dec 2023

SVP, Head of IT, Security & GRC

Alera Group

  • Managed GRC operations for a $1.4B company across 180 sites and 6,000 endpoints.

  • Authored, maintained, and enforced 200+ IT security and privacy policies, covering data protection, access control, incident response, and more.

  • Oversaw successful completion of SOC 2 Type II certification and annual audits; implemented 120+ controls and managed 5 annual attestations.

  • Led 12+ annual enterprise risk assessments, tracking remediation and aligning to multiple frameworks (NIST, ISO 27001, PCI, HIPAA, NYDFS, CCPA, GLBA).

  • Automated compliance tracking, offboarding, and policy attestation using StandardFusion and ServiceNow.

  • Supported regulatory reviews, client assessments, and cross-industry audits.

Jan 1999 – Sept 2014

Principal IT Consultant

Svenson Consulting

  • Developed compliance programs and risk management practices for SMB clients.

  • Authored policies, procedures, and training materials aligned to industry and regulatory standards.

  • Assisted with vendor risk reviews, audit preparation, and remediation planning.

Role Specific Competencies

Governance, Risk & Compliance (GRC) Program Management

Policy & Procedure Development

Regulatory & Framework Compliance (SOC2, HIPAA, PCI, NIST, ISO 27001, GLBA, CCPA)

Enterprise Risk Assessment & Management

Control Design & Implementation

Audit Preparation & Support

Vendor & Third-Party Risk Management

Compliance Automation & Workflow

Evidence Collection & Documentation

Security Awareness & Training

Remediation Tracking & Reporting

Cross-Functional Communication

Role Specific Toolbox

GRC Platforms: Standard Fusion, ServiceNow

%

Compliance & Audit Tools: Policy automation, attestation tracking

%

Risk Assessment: NIST 800-53, ISO 27001, PCI DSS, HIPAA, GLBA, CCPA, NYDFS frameworks

%

Documentation: IT Glue, policy repositories

%

Security Awareness: KnowBe4, Mimecast, PhishMe

%

Vendor Management: Vendor due diligence, risk reviews

%

Incident & Event Tracking: SIEM (Alienvault, Microsoft Sentinel), ServiceNow

%

Automation: Policy attestations, offboarding, workflow management

%

Nulla nulla nisl, sodales ac nulla ac, consequat vulputate purus. Curabitur tincidunt ipsum vel nibh rutrum accumsan. Nunc ullamcorper posuere leo, vitae aliquet risus pharetra in. Integer turpis eros, iaculis et mi non, pulvinar egestas leo. Etiam sagittis ex turpis, vitae cursus tortor interdum eu. Quisque ultrices nunc eget erat vestibulum euismod. Ut mauris nisi, facilisis at arcu nec, facilisis porttitor lorem.

Vivamus vitae neque molestie, porta libero sed, tincidunt leo. In nec posuere odio, id rhoncus lorem. Proin id erat ut dolor condimentum viverra. Praesent viverra sed dolor ac luctus. Praesent placerat id lorem quis lacinia.

Maecenas id finibus felis. Etiam vitae nibh et felis efficitur pellentesque. Mauris suscipit sapien nunc, a lacinia nibh feugiat ut. In hac habitasse platea dictumst.
Larry L. Johnson

Etiam interdum vulputate risus, vitae elementum neque consectetur sed. Donec at risus dui. Ut in suscipit neque. Vestibulum sit amet lobortis magna, commodo venenatis ante. Cras molestie, ex a auctor lacinia, risus est aliquam risus, sit amet semper purus tortor id ante. Donec lacus ipsum, porttitor et libero a, fringilla auctor quam. Sed in nisl id libero tincidunt aliquet. Aenean dui ipsum, auctor ut leo ut, semper dignissim lacus. Suspendisse faucibus viverra consequat. Maecenas efficitur massa vel eros sagittis dapibus. Nam lobortis mi in turpis hendrerit eleifend. Nulla non massa felis.

Donec sit amet dolor ante. Vivamus vel massa accumsan, faucibus quam quis, convallis velit. Aliquam erat volutpat. Integer imperdiet diam quis arcu venenatis, quis sagittis nibh rhoncus. Donec non nisi scelerisque, sodales metus quis, accumsan mauris. Curabitur volutpat risus rutrum erat condimentum tristique. Nullam at felis diam. Quisque dictum felis non ante pretium mollis. Aliquam turpis neque, varius nec diam a, aliquam pulvinar diam. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed ipsum libero, aliquet sed bibendum faucibus, semper a dui.

In non arcu turpis. Pellentesque ornare tortor at condimentum pulvinar. Vivamus ultrices nisi sed est scelerisque, vel suscipit libero luctus. Cras magna nulla, suscipit in vulputate a, consequat egestas sem. Ut commodo eget velit nec egestas. Donec porta lorem vel neque varius aliquet. Nam convallis lacus ac lectus posuere bibendum. Sed sollicitudin nulla vel urna efficitur tempus. In et vehicula velit. Interdum et malesuada fames ac ante ipsum primis in faucibus. Duis feugiat, urna in ultricies vulputate, massa odio finibus justo, non luctus leo ligula at sem. Etiam lobortis leo eu efficitur ultrices. In sollicitudin nisi non ante consequat porttitor. Phasellus ornare dignissim nisi sed consectetur.

Integer semper leo velit, ac accumsan diam sollicitudin in. Etiam feugiat faucibus rhoncus. Vivamus mollis vitae purus in malesuada. Donec at nibh metus.
Chester J. Albin

Pellentesque iaculis eget justo semper posuere. Duis vitae felis sed odio faucibus pulvinar vel eu est. Fusce pretium eu mauris eu ultricies. Curabitur hendrerit, risus sit amet ullamcorper sollicitudin, ex urna auctor quam, in tincidunt sapien justo sit amet ante. Donec enim lacus, pulvinar eu nulla rhoncus, porttitor volutpat nunc. Morbi ac dignissim orci, nec iaculis magna. Ut commodo nisi tellus, quis lacinia metus viverra vel. Vivamus ut neque elementum diam tempor mattis.

Integer dapibus sapien massa, in mattis magna commodo id. Vivamus tempor ullamcorper auctor. Aenean non bibendum magna, quis tempor ligula. Donec viverra lobortis libero, non feugiat nulla vehicula id. Ut posuere tellus in gravida ullamcorper. Nulla ut pellentesque velit. Mauris scelerisque auctor convallis. Sed tincidunt finibus est, nec convallis sem placerat eget. Donec tempor mauris vitae libero ultrices, a porta ex commodo. Quisque quis magna elit. Proin semper tellus quis orci tempor, porttitor lobortis nisi auctor. Phasellus turpis diam, commodo vel sagittis ac, lacinia vitae ex. Integer lacinia dapibus euismod. Integer bibendum nulla nec tincidunt consequat. Sed vel gravida risus. Cras lacinia tortor purus, vel vulputate velit rhoncus sed.

Maecenas id finibus felis. Etiam vitae nibh et felis efficitur pellentesque. Mauris suscipit sapien nunc, a lacinia nibh feugiat ut. In hac habitasse platea dictumst. Fusce eu finibus urna, sit amet ornare enim. Vivamus consectetur ex urna, sit amet venenatis risus tincidunt eu. In eu dapibus justo. Suspendisse pulvinar fringilla ante non vehicula. Suspendisse nec cursus orci. Donec enim augue, ultrices ornare laoreet sed, facilisis sit amet nunc. Vestibulum fringilla orci eu enim porttitor facilisis. Donec dapibus malesuada tortor, imperdiet dapibus quam tempor eu. Vivamus sed viverra augue.

Ut vel tincidunt felis. Morbi semper ullamcorper quam, mollis elementum velit. Quisque quis mauris vitae sapien malesuada fermentum et ac neque. Mauris vulputate ut urna eu molestie. Proin id cursus turpis. Aenean ullamcorper urna a quam finibus porta. Praesent scelerisque sagittis lectus. Sed imperdiet lectus eget ex pellentesque aliquet. Aenean pellentesque magna sit amet diam rhoncus tempus. Vestibulum quis augue eu elit suscipit accumsan eu mattis ligula. Vivamus venenatis lacus at ultricies vulputate. Aliquam auctor pretium purus varius feugiat. Fusce sit amet urna leo. Vestibulum nec arcu id enim laoreet venenatis vel quis purus. Nulla congue, leo id semper sollicitudin, metus nulla mollis ex, id volutpat lorem eros et nunc. Suspendisse potenti.

Etiam rutrum diam mi, eu tempor urna feugiat a. Maecenas luctus sem nec nisl congue, eget finibus justo bibendum. In id commodo enim.
Craig W. Grant

Class aptent taciti sociosqu ad litora torquent per conubia nostra, per inceptos himenaeos. Interdum et malesuada fames ac ante ipsum primis in faucibus. Curabitur mi ligula, sagittis et metus eu, scelerisque consequat lectus.

Etiam interdum vulputate risus, vitae elementum neque consectetur sed. Donec at risus dui. Ut in suscipit neque. Vestibulum sit amet lobortis magna, commodo venenatis ante. Cras molestie, ex a auctor lacinia, risus est aliquam risus, sit amet semper purus tortor id ante. Donec lacus ipsum, porttitor et libero a, fringilla auctor quam. Sed in nisl id libero tincidunt aliquet. Aenean dui ipsum, auctor ut leo ut, semper dignissim lacus. Suspendisse faucibus viverra consequat. Maecenas efficitur massa vel eros sagittis dapibus. Nam lobortis mi in turpis hendrerit eleifend. Nulla non massa felis.

Donec sit amet dolor ante. Vivamus vel massa accumsan, faucibus quam quis, convallis velit. Aliquam erat volutpat. Integer imperdiet diam quis arcu venenatis, quis sagittis nibh rhoncus. Donec non nisi scelerisque, sodales metus quis, accumsan mauris. Curabitur volutpat risus rutrum erat condimentum tristique. Nullam at felis diam. Quisque dictum felis non ante pretium mollis. Aliquam turpis neque, varius nec diam a, aliquam pulvinar diam. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed ipsum libero, aliquet sed bibendum faucibus, semper a dui.

Integer dapibus sapien massa, in mattis magna commodo id. Vivamus tempor ullamcorper auctor. Aenean non bibendum magna, quis tempor ligula. Donec viverra lobortis libero, non feugiat nulla vehicula id. Ut posuere tellus in gravida ullamcorper. Nulla ut pellentesque velit. Mauris scelerisque auctor convallis. Sed tincidunt finibus est, nec convallis sem placerat eget. Donec tempor mauris vitae libero ultrices, a porta ex commodo. Quisque quis magna elit. Proin semper tellus quis orci tempor, porttitor lobortis nisi auctor. Phasellus turpis diam, commodo vel sagittis ac, lacinia vitae ex. Integer lacinia dapibus euismod. Integer bibendum nulla nec tincidunt consequat. Sed vel gravida risus. Cras lacinia tortor purus, vel vulputate velit rhoncus sed.

Maecenas id finibus felis. Etiam vitae nibh et felis efficitur pellentesque. Mauris suscipit sapien nunc, a lacinia nibh feugiat ut. In hac habitasse platea dictumst. Fusce eu finibus urna, sit amet ornare enim. Vivamus consectetur ex urna, sit amet venenatis risus tincidunt eu. In eu dapibus justo. Suspendisse pulvinar fringilla ante non vehicula. Suspendisse nec cursus orci. Donec enim augue, ultrices ornare laoreet sed, facilisis sit amet nunc. Vestibulum fringilla orci eu enim porttitor facilisis. Donec dapibus malesuada tortor, imperdiet dapibus quam tempor eu. Vivamus sed viverra augue.

Etiam ante dolor, imperdiet vitae eros at, varius euismod metus. Fusce augue magna, tincidunt sed viverra quis, ultrices sed urna. Etiam nec sodales lorem. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Maecenas vitae finibus purus, vel porttitor nunc. Nunc massa enim, dignissim ac erat suscipit, maximus malesuada augue.
Jeffery K. Perkins

Nulla nulla nisl, sodales ac nulla ac, consequat vulputate purus. Curabitur tincidunt ipsum vel nibh rutrum accumsan. Nunc ullamcorper posuere leo, vitae aliquet risus pharetra in. Integer turpis eros, iaculis et mi non, pulvinar egestas leo. Etiam sagittis ex turpis, vitae cursus tortor interdum eu. Quisque ultrices nunc eget erat vestibulum euismod. Ut mauris nisi, facilisis at arcu nec, facilisis porttitor lorem. Vivamus vitae neque molestie, porta libero sed, tincidunt leo. In nec posuere odio, id rhoncus lorem. Proin id erat ut dolor condimentum viverra. Praesent viverra sed dolor ac luctus. Praesent placerat id lorem quis lacinia.

Etiam interdum vulputate risus, vitae elementum neque consectetur sed. Donec at risus dui. Ut in suscipit neque. Vestibulum sit amet lobortis magna, commodo venenatis ante. Cras molestie, ex a auctor lacinia, risus est aliquam risus, sit amet semper purus tortor id ante. Donec lacus ipsum, porttitor et libero a, fringilla auctor quam. Sed in nisl id libero tincidunt aliquet. Aenean dui ipsum, auctor ut leo ut, semper dignissim lacus. Suspendisse faucibus viverra consequat. Maecenas efficitur massa vel eros sagittis dapibus. Nam lobortis mi in turpis hendrerit eleifend. Nulla non massa felis.

Donec sit amet dolor ante. Vivamus vel massa accumsan, faucibus quam quis, convallis velit. Aliquam erat volutpat. Integer imperdiet diam quis arcu venenatis, quis sagittis nibh rhoncus. Donec non nisi scelerisque, sodales metus quis, accumsan mauris. Curabitur volutpat risus rutrum erat condimentum tristique. Nullam at felis diam. Quisque dictum felis non ante pretium mollis. Aliquam turpis neque, varius nec diam a, aliquam pulvinar diam. Interdum et malesuada fames ac ante ipsum primis in faucibus. Sed ipsum libero, aliquet sed bibendum faucibus, semper a dui.

Cras commodo, nulla a commodo sodales, nisl mauris interdum lectus, ac mattis lacus purus ut nunc. Fusce volutpat aliquam euismod. Aliquam pulvinar neque turpis, in tincidunt mi varius et. Curabitur vitae tempus mauris, porta dictum ante. Nam pellentesque et mauris a suscipit. Vivamus gravida erat nec elit ullamcorper, quis laoreet metus efficitur. Duis vulputate, mauris a auctor pretium, elit nisl eleifend nulla, non accumsan augue massa quis tellus. Aliquam at justo libero. Orci varius natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Sed vestibulum mauris condimentum ultrices scelerisque. Fusce pulvinar cursus luctus. Cras dapibus placerat magna, quis euismod nisi consequat euismod. Curabitur finibus nisi at justo ultricies, nec congue metus rutrum. Quisque vulputate sollicitudin aliquam. Curabitur posuere auctor dapibus.

Mauris lectus dolor, varius ut imperdiet nec, dignissim nec ligula. Cras posuere odio et finibus accumsan. Mauris in sem non arcu consectetur posuere sed quis justo. Sed turpis mauris, aliquet ac lacus nec, tempor condimentum justo. Praesent tristique enim et augue tincidunt, in accumsan nisi egestas. Cras bibendum elit eget volutpat consectetur. Vestibulum sit amet posuere velit, ut rhoncus lorem. Mauris sit amet ultricies justo. Curabitur ut placerat libero, ut tempus eros. Quisque venenatis eu mi eget imperdiet. Fusce vitae tellus dui. Curabitur tristique pharetra justo, vel posuere dolor luctus vel. Quisque in arcu sagittis, sollicitudin nulla in, aliquet turpis. Vestibulum ante ipsum primis in faucibus orci luctus et ultrices posuere cubilia Curae; Donec eros lorem, euismod ut nulla ut, congue molestie elit. Quisque ex augue, finibus ut fermentum vel, molestie eget nulla.

Phasellus volutpat congue augue, a tincidunt velit consequat pulvinar. Proin pharetra, tortor sed efficitur egestas, massa lorem eleifend tortor, eget interdum dolor neque vitae dui. Etiam vitae pharetra justo. Sed dictum vulputate cursus. Nulla consectetur purus in interdum interdum.
John T. Talley

Integer dapibus sapien massa, in mattis magna commodo id. Vivamus tempor ullamcorper auctor. Aenean non bibendum magna, quis tempor ligula. Donec viverra lobortis libero, non feugiat nulla vehicula id. Ut posuere tellus in gravida ullamcorper. Nulla ut pellentesque velit. Mauris scelerisque auctor convallis. Sed tincidunt finibus est, nec convallis sem placerat eget. Donec tempor mauris vitae libero ultrices, a porta ex commodo. Quisque quis magna elit. Proin semper tellus quis orci tempor, porttitor lobortis nisi auctor. Phasellus turpis diam, commodo vel sagittis ac, lacinia vitae ex. Integer lacinia dapibus euismod. Integer bibendum nulla nec tincidunt consequat. Sed vel gravida risus. Cras lacinia tortor purus, vel vulputate velit rhoncus sed.

 

Phasellus volutpat congue augue, a tincidunt velit consequat pulvinar. Proin pharetra, tortor sed efficitur egestas, massa lorem eleifend tortor, eget interdum dolor neque vitae dui. Etiam vitae pharetra justo. Sed dictum vulputate cursus. Nulla consectetur purus in interdum interdum. Donec ornare dui mi, vitae consectetur ex tempor ut. Aliquam ultricies tristique arcu, laoreet elementum nunc tristique ac. Mauris condimentum hendrerit neque sit amet egestas. Vivamus lacus ante, pharetra in placerat eget, vehicula eget turpis. Quisque auctor leo tortor, quis porttitor metus condimentum nec.

Pellentesque semper orci enim, at dapibus arcu fringilla vitae. Praesent sit amet consequat lorem. Sed elit odio, aliquet eget elementum sit amet, sodales ut massa. Phasellus eget velit facilisis, viverra urna id, finibus est. Pellentesque convallis et elit a faucibus. Suspendisse luctus mollis porta. Morbi hendrerit ex turpis, sed consectetur nunc lacinia nec. Praesent vitae viverra tellus, a pretium velit.

In non arcu turpis. Pellentesque ornare tortor at condimentum pulvinar. Vivamus ultrices nisi sed est scelerisque, vel suscipit libero luctus. Cras magna nulla, suscipit in vulputate a, consequat egestas sem. Ut commodo eget velit nec egestas. Donec porta lorem vel neque varius aliquet. Nam convallis lacus ac lectus posuere bibendum.
John G. Koss

Ut vel tincidunt felis. Morbi semper ullamcorper quam, mollis elementum velit. Quisque quis mauris vitae sapien malesuada fermentum et ac neque. Mauris vulputate ut urna eu molestie. Proin id cursus turpis. Aenean ullamcorper urna a quam finibus porta. Praesent scelerisque sagittis lectus. Sed imperdiet lectus eget ex pellentesque aliquet. Aenean pellentesque magna sit amet diam rhoncus tempus. Vestibulum quis augue eu elit suscipit accumsan eu mattis ligula. Vivamus venenatis lacus at ultricies vulputate. Aliquam auctor pretium purus varius feugiat. Fusce sit amet urna leo. Vestibulum nec arcu id enim laoreet venenatis vel quis purus. Nulla congue, leo id semper sollicitudin, metus nulla mollis ex, id volutpat lorem eros et nunc. Suspendisse potenti.

Donec elementum dui vitae vulputate congue. Sed sed semper erat. Mauris molestie, sem et imperdiet sodales, tellus massa mattis mauris, sit amet facilisis dolor lacus sed orci. Sed aliquam placerat viverra. Etiam commodo libero felis, eget hendrerit nibh pharetra ac. Vestibulum turpis est, vestibulum at neque id, interdum vulputate lorem. Phasellus lobortis vulputate varius. Donec tincidunt massa id tempus interdum. Etiam id sem sit amet mauris consectetur vulputate quis in libero. In interdum enim tempus, egestas dolor bibendum, condimentum dui. Pellentesque nec erat orci. Duis neque dui, posuere mattis risus eu, dictum hendrerit velit. Vivamus iaculis lectus ut consectetur fringilla.

Etiam rutrum diam mi, eu tempor urna feugiat a. Maecenas luctus sem nec nisl congue, eget finibus justo bibendum. In id commodo enim. Donec vehicula interdum tortor, laoreet pretium erat ultrices sed. Donec id aliquam tortor. Etiam pellentesque diam a magna rutrum placerat. Class aptent taciti sociosqu ad litora torquent per conubia nostra, per inceptos himenaeos. Interdum et malesuada fames ac ante ipsum primis in faucibus. Curabitur mi ligula, sagittis et metus eu, scelerisque consequat lectus.

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Nam cursus lorem a turpis feugiat, et porttitor leo dapibus. In ut tincidunt lectus, id hendrerit enim. Maecenas at nibh eu nulla dignissim posuere. Nullam viverra vitae elit a tempus. Donec quis eleifend eros. Donec imperdiet nisi mi, in ultricies risus porta ac. Nullam laoreet convallis nibh sed congue. Donec nulla ipsum, tincidunt a augue maximus, pellentesque imperdiet lectus. Aenean posuere consequat libero, id efficitur quam dictum volutpat.

Donec mollis a lacus a pharetra. Nam facilisis enim erat, in scelerisque eros mollis quis. Aliquam erat volutpat. Nam vel nibh justo. Nunc vestibulum leo a ultricies malesuada. Proin quis volutpat sem. Morbi consequat lacinia pulvinar.

Mauris lectus dolor, varius ut imperdiet nec, dignissim nec ligula. Cras posuere odio et finibus accumsan. Mauris in sem non arcu consectetur posuere sed quis justo. Sed turpis mauris, aliquet ac lacus nec, tempor condimentum justo.
Edgar D. Wang

Cras commodo, nulla a commodo sodales, nisl mauris interdum lectus, ac mattis lacus purus ut nunc. Fusce volutpat aliquam euismod. Aliquam pulvinar neque turpis, in tincidunt mi varius et. Curabitur vitae tempus mauris, porta dictum ante. Nam pellentesque et mauris a suscipit. Vivamus gravida erat nec elit ullamcorper, quis laoreet metus efficitur. Duis vulputate, mauris a auctor pretium, elit nisl eleifend nulla, non accumsan augue massa quis tellus. Aliquam at justo libero. Orci varius natoque penatibus et magnis dis parturient montes, nascetur ridiculus mus. Sed vestibulum mauris condimentum ultrices scelerisque. Fusce pulvinar cursus luctus. Cras dapibus placerat magna, quis euismod nisi consequat euismod. Curabitur finibus nisi at justo ultricies, nec congue metus rutrum. Quisque vulputate sollicitudin aliquam. Curabitur posuere auctor dapibus.

Contact

Get in Touch

415-832-2000

San Francisco

hello@example.com

Freelance Available

How Can I Help You?