Lee Bieneman
Company
IHS Markit
Title
Director, Information Security
Biographical Info
Enthusiastic and influential technology professional with 25 years of consistent accomplishments. Extensive experience in assessing, planning, developing and implementing a broad range of technical solutions to meet business demands. Solid leadership skills include leading cross-functional, geographically diverse teams while achieving extraordinary results and immense productivity. Ability to draw upon proven experience to recommend and gain executive sponsorship of security posture strengthening programs while aligning with the overall company’s objectives. Keen and versatile aptitude for implementing standards, procedures and processes that improve business functionality. Driven, confident, results oriented and extremely motivated individual with exceptional analytical and communication skills with a spirited commitment to evolving successful strategies that lower costs and maximize results. Key Recent Accomplishments • Led directive from the Board of Directors for a third-party network compromise assessment review • Principal lead in a highly successful containment of a cybersecurity network and data attack • Instrumental in the establishment of an Information Security function in a highly complex technical environment • Launched the Information Security Program implementing core frameworks while adopting NIST and SANS Top 20 critical controls • Shaped strategic approach to addressing the overall company’s IT technical debt while reducing the cybersecurity attack surface • Key contributor of re-write/creation of corporate Security Policies and Standards – ISO 27001 • Essential developer of the corporate Business Cyber Response playbook • Defined methodologies and back-end process for the EU General Data Protection Regulation (GDPR) in relation to data subjects invoking personal data rights • Developed an application security action plan (ASAP) based on OWASP proactive controls
City
Englewood
State
Colorado
Areas of Specialty
Information Security Governance and Risk Management