Diane Kissel
Details
Computer Information Systems
Bellarmine University
Associate’s Degree
Legal Assistant/Paralegal
Sullivan University
Elverado High School, Elkville, IL
2017 : Present
Humana
Lead, Information Security
Highlighted Accomplishments : 1) Set strategy and directed Company’s ISO 27001 security certification initiative including development and implementation of the Company’s Information Security Management System. 2) Established Enterprise Data Privacy & Security Steering Committee that identified areas of risk across the organization and oversaw development and implementation of controls to manage risks. 3) Hired, managed and developed top talent in areas of third-party risk management, security and compliance risk assessments, security awareness and training, and ISO audit readiness.
2005 : 2016
Kindred Healthcare
Director, IS Risk & Compliance
Streamlined Sarbanes-Oxley (SOX) 404 audits by integrating IT controls/test plan with financial controls/test plan. As part of SOX audits, advised clients on technical controls and remediation requirements.
2004 : 2005
Ernst & Young
Senior Staff - Technology, Security & Risk Services
IT Systems Engineer - specialized in change and configuration management
Litigation Paralegal - specialized in working with expert witnesses, developing trial notebooks, assisting at trial, and creating litigation models, policies and procedures for tracking and reporting legal case data
1985 : 2005
Brown & Williamson Tobacco Corporation | Franklin & Hance | Wyatt, Tarrant & Combs
Early Career Experiences : IT Systems Engineer and Litigation Paralegal
Skills
Application Security Assessments, auditing, business analysis, business continuity, business process improvement, cisa, cissp, compliance management, disaster recovery, enterprise risk management, financial risk, Governance, Healthcare, healthcare information technology, hipaa, Information Analysis, Information Risk, Information Security, information security management, Information Technology, internal audit, it audit, IT GRC, itil, it management, it strategy, pmp, Process Improvement, Project Management, Regulatory Requirements, Risk Management, sarbanes-oxley act, sdlc, Security Controls, software development life cycle (sdlc), software documentation, Technology Leadership, u.s. health insurance portability and accountability act (hipaa), vendor management, visio, Enterprise Risk, Healthcare Information, Business Process
About
Visionary leader with many years of experience developing comprehensive strategic plans and creative solutions to business problems, building high-performing teams, translating complicated concepts to non-technical audiences, and leading executive-level initiatives in the areas of data privacy and security, IT governance and compliance, and litigation support.
Certifications: PMP | CISA | CGEIT | CISSP | ISO 27001:2013 Lead Auditor
*Supplementing certifications with cloud training.
Core Competencies:
• Strategic business planning • Process redesign and change management • Relationship management
• Regulatory Compliance • Risk Management • Litigation support/eDiscovery • Vendor management