Christopher Grillo
Education:
BA
Accounting and Management Science
University of Minnesota Duluth
Experience:
2022 : Present
Jostens
Sr. Director Information Security
2021 : 2022
Wells Fargo
Business Risk & Control Sr. Officer - Technology/Cybersecurity Policy Strategy and Development
2019 : 2021
Wells Fargo
Business Risk and Control Officer - Technology Process, Risk and Controls
Responsible for Global Information Security Strategy and Services reporting to the SVP/CIO.
2016 : 2019
Deluxe Corporation
VP & Chief Information Security Officer (CISO)
Responsible for Global Information Security Strategy and Services reporting to the SVP/CIO. Merged Orbital Sciences and ATK Security Programs into one cohesive program and team.
2015 : 2016
Orbital ATK
Chief Information Security Officer (CISO)
Company: Jostens
Years of Experience: 28
Driven to safeguard brand protection, ensuring regulatory compliance and minimize business risk through effective policy, risk management, building trust, collaborating cross-functionally, designing high impact programs, controls, tools and developing and leading teams to successfully execute.
Areas of Expertise:
• Program strategic planning, development, execution
• Policy & procedures management
• Risk management & metrics
• Security operations management
• Incident management & response
• Audits and assessments
• Security compliance management
• Business continuity planning & DR coordination
• Mergers and Acquisition (M&A) Integration
• Workforce training, awareness, education
• Matrix organization collaboration
• Documentation and communication
• Team leadership, mentoring, and coaching
• Board of Director communications
Chris maintains professional certification in the following areas: Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Privacy Professional (CIPP), Information Technology Infrastructure Library (ITIL v2/v3) certified, ISO 20000 (IT Service Management), and Certified in Risk and Information Systems Control (CRISC).