Vice President, Information Security & Technology Risk @ Comerica Bank
IT Control Professional at Comerica Bank @ w3r Consulting
Director IT Governance @ WageWorks
Multifaceted, performance-focused, and concept-to-execution professional, offering comprehensive experience in information technology, program and project management, and personnel supervision across various industries. Armed with solid reputation for spearheading growth and creating long-term company value. Known for expertise in determining and overseeing project budget, schedule, and scope as well as in aligning organizational goals with management needs. Recognized for
Multifaceted, performance-focused, and concept-to-execution professional, offering comprehensive experience in information technology, program and project management, and personnel supervision across various industries. Armed with solid reputation for spearheading growth and creating long-term company value. Known for expertise in determining and overseeing project budget, schedule, and scope as well as in aligning organizational goals with management needs. Recognized for integrity, unparalleled work ethic, and organizational aptitude to effectively manage priorities and tasks under competitive and fast-paced settings. Areas of expertise include:
Program and Project Risks Resolution ~ Strategic Budgeting and Forecasting ~ Training Plans Development and Execution
Audit Documentation and Assessment ~ Systems Integration and Optimization ~ Cross-Functional Leadership and Collaboration
Continuous Growth and Improvements ~ Rapid Conflict Resolution
IT Control Professional at Comerica BankBank @ Examine information technology in all areas of the Corporation to determine the extent of compliance with policy, plans, procedures, and rules of regulatory agencies.
Evaluate results of COBIT 5 self-assessments within the IS department.
Evaluate IT management’s effectiveness in the attainment of IT controls and control objectives.
Develop and document controls over information systems relevant to COBIT 5, Service Organization Control Reporting and Sarbanes-Oxley compliance.
Develop policy, standards, procedures and techniques related to internal controls over systems and technology to enhance the information systems control environment. From March 2015 to Present (8 months) Auburn Hills, MichiganDirector IT Risk and Compliance @ Effectively manage risk by coordinating ITRC compliance-related programs, such as compliance audits, confidential information protection, contingency planning, disaster recovery, guidelines and procedures implementation, reporting, testing, and training.
Maintain strict compliance with federal regulations and requirements through coordination of IT and business units initiatives.
Closely collaborate with internal teams and external vendors to support the company’s IT GRC and Business Continuity and Disaster Recovery (BC/DR) programs throughout various sites.
Administer the evaluation and selection of software technology for the audit and business continuity and disaster recovery planning purposes.
Take charge of operational risk management assessment on the existing continuity and recovery solutions, which include risk mitigation and management strategy.
Design the current view of the company’s business continuity and disaster recovery solutions and roadmap for future enhancements, in collaboration with IT and business teams
Played an instrumental role in conceptualizing and implementing the following initiatives:
Integration of IT strategic plan into overall company’s plan.
Policies, procedures standards, and guidelines by supporting IT Risk and Compliance (ITRC) related-programs, including ISO/IEC 27000:2012 Information Security Management System (ISMS), Federal Information Security Management Act (FISMA), and Health Insurance Portability and Accountability Act (HIPAA).
Provided tactical oversight to IT organization and all aspects of ITRC; implemented improvements to high-risk business processes; internal security audits and reviews; and external assurance-related engagements. From March 2002 to March 2015 (13 years 1 month) Toledo, Ohio AreaQuality Assurance Manager @ Guaranteed the alignment of testing program with the defined requirement for quality assurance and testing guidelines by collaborating with business unit leads, internal business users, partners, system users.
Led the creation and execution of quality assurance test practices and tools and processes, while also leading a core team of quality assurance practitioners.
Performed human resources functions, such as recruitment, staff evaluation, comprehensive training for performance improvement; along with scheduling project management resources, estimating activities and resources-related for product quality and reliability.
Drove efforts in developing a comprehensive metrics program, which provided information to evaluate level of proficiency and corrective decisions.
Played an integral role as the subject matter expert in the quality assurance disciplined for the development and application of tools, techniques, and methodologies to optimize quality assurance process.
Assumed key role in implementing and directing the corporate software development quality assurance testing program. From March 2002 to March 2007 (5 years 1 month) Toledo, Ohio AreaExecutive Assistant to Senior Vice President @ Orchestrated the direct sales and marketing of voluntary health and life products.
Directed the recruitment, administration and sales for the general agent sales program working with independent brokers to market nationally known individual health plans.
Customized, trained and supported Symantec ACT, Microsoft Access, and Corex Database Programs in the agency sales and marketing systems.
Managed new and lost business information for property and casualty lines, as well as group health and life sales.
Planned and coordinated agency sales meetings, training seminars and individual producer sales plans. From January 1999 to March 2002 (3 years 3 months) Toledo, Ohio Area
Bachelor of Science (B.S.), Administrative Services @ The University of Toledo From 1994 to 1997 Kelly Pawlowski is skilled in: Information Security..., Business Continuity..., IT Change Management, Physical/Technical..., IT Business Process..., Document Control..., Regulatory & Compliance, Audit & Remediation, Management/Project..., SDLC, Governance, SQL, Business Continuity..., Health Insurance, Quality Assurance, Risk Management, Project Management, Management, IT Service Management, Process Improvement, Disaster Recovery, Leadership, Analysis, Testing, Vendor Management, Business Analysis, Information Technology, Program Management
Looking for a different
Get an email address for anyone on LinkedIn with the ContactOut Chrome extension