Mark Vahlkamp
Education:
MS
Computer Science
Pace University
1994 : 1997
BS
Economics
Carnegie Mellon University
1980 : 1984
Experience:
Responsible for all aspects of information security and compliance including external audits, PCI compliance, policy development.
2015 : Present
Financial Services
Director of Information Security and Compliance
• Responsible for IT operational risk management including risk governance, risk-assessments, SOX compliance, information security and risk deep dives.
2013 : 2014
UBS
Executive Director
Information Security and IT Risk professional.
• Responsible for Institutional Clients Group (ICG) GLBA compliance attestation.
• Responsible for FS-ISAC cyber security exercises testing technical and administrative responses to potential cyber terrorism events.
• Responsible for IT Risk strategic project oversight including Broadridge, liquidity, FX, and prime finance over information security, business continuity, records management, and supplier management.
2010 : 2013
Citi
Director
• Led the IT Risk department to achieved first-time SOX compliance.
• Rebuilt the IT Risk Department using a business-aligned model. Hired 22 full-time professionals and 25 consultants.
• Designed and implemented the Firm’s IT Controls Rationalization project significantly reducing SOX controls
2009 : 2010
Freddie Mac
Senior Director IT Risk
• Manager IT Governance responsible for compliance key performance indicators.
• Confidentiality, controls baseline and risk assessments project manager
• IT Audit Manager for Lehman Brothers Inc. (broker-dealer) and Lehman Brothers Bank, FSB (savings bank)
• Global Technology Project Manager Sarbanes-Oxley 404
• Established the Architecture Steering Committee (ASC) program on Application Change Management (ACM).
1994 : 2008
Barclay Capital / Lehman Brothers
Senior Vice President
Company: Financial Services
Years of Experience: 37
Demonstrated project management ability in large-scale, cross-functional, global initiatives. Managed the IT implementation of the Firm’s most significant regulatory driven initiatives. Effective senior management communicator, able to explain complex IT and compliance issues to both business and technical management.