Career

Career Summary

Published author, MBA, draws from International business experience across the US, EU and Asia.

Wall St: Negotiated contract and payment disputes with Board members, CEO, CFO, etc. Created customer profiling to monetize intelligence drawn from news, SEC filings, Credit & Collections, Sales, Marketing, and IT. Improved contract compliance, generated significant decreases in billing errors, and increased recovery of outstanding debts.

MBA Organizational Leadership consults across corporate and international borders on Leadership programs (e.g. Kotter). Provide mechanisms to communicate critical implementation elements, including details on services, budgets, development costs, and advertising for customer and employee engagement. Incorporate flexibility to adjust for ramifications of the power shift, driven by the information age, enabling customers to affect business in ways outside corporate control via non-company-owned channels.

Response to Financial, Terrorist, Business, Technical crises.  For more details, read about my talent for being in the wrong place at the right time.

Development of product offerings; Mergers, Advisor in aerospace, financial services, nuclear/energy, manufacturing & others while integrating IT Governance and legal requirements during creation of commercial product offerings and corporate programs accessing PII and sensitive data.

CIPP – Certified Privacy Professional, CISA, CISSP, and CISM monitors compliance with applicable laws. Represent clients seeking to balance business and compliance need for collection and access to personal / sensitive data with customer interests. Incorporate flexibility to adjust for ramifications of increased public awareness of privacy and information usage, tracking; stricter enforcement of existing legislation, expected passage of additional regulation.

Incorporate behavioral psychology and Organizational Leadership theory based on work by Kotter, Black & Gregersen, Kubler-Ross and others with IT Governance, Risk and Compliance programs, corporate business, audit and, security experience.

Developed governance methodology; training includes coverage for International, US laws and governance frameworks including:

  • Generally Accepted Privacy Principles (GAPP); as a methodology that can be tuned to attain and maintain compliance with: OECD Privacy Principles; FTC Fair Information Practices; FTC Act Unfair/Deceptive Trade Practices; EU Data Directives 95/46/EC; APEC – Asia Pacific Privacy Principles;
  • FTC Behavioral Advertising Guidelines and Behavioral Advertising Self-Regulatory Programs;
  • COPPA – Children’s Online Privacy & Protection Act;
  • Fair Credit Reporting Act- FCRA;
  • State Data Breach reporting;
  • ISO 27002, and NIST Risk Management Framework / FISMA security for government information systems;
  • US government regulation: NISPOM industrial security and International Traffic in Arms Regulations (ITAR);
  • HIPAA Privacy & Security Rules, Identity Theft – Red Flag Rules, GLBA Privacy Notice & Safeguards;
  • Financial Reporting legislation Sarbanes-Oxley, using CobiT for IT, and COSO.

Organizational leadership targeting culture change related to:

  • Privacy as a business & legal issue
  • Monetization of personal or confidential data
  • Rights and obligations of individuals and organizations with respect to the collection, use, retention, disclosure and disposal of personal information
  • AICPA GAPP: Management; Notice, Choice & Consent; Collection; Use, Retention & Disposal; Access; Disclosure to Third Parties; Security for Privacy; Quality; Monitoring & Enforcement
  • Rights and obligations to secure confidential data through customization of appropriate governance frameworks, lost opportunity and risk from behavioral, demographic & transactional data held in silos
  • Unrecognized value of data for tracking and targeting audiences across internal departments, outsourcing, and vendors
  • Corporate and Business Unit strategy, Corporate Social Responsibility, Transparency, Compliance, Audit Programs, Resource Allocation, Business Impact Assessments; IT Architecture, Monitoring, Security, Application Development, Business Continuity, Disaster Recovery ramifications for the firm, partners, and customers.

Education

  • Masters Business Administration Organizational Leadership; with Honors, Norwich University, VT
  • Bachelor of Arts, Social Sciences, psychology concentration. State University of New York, Stony Brook

Certifications

  • Certified Information Privacy Professional (CIPP – IAPP)
  • Certified Information Systems Security Professional (CISSP – ISC2)
  • Certified Information Systems Manager (CISM – ISACA)
  • Certified Information Systems Auditor (CISA – ISACA)

Publications

  • Contributor, CRM at the Speed of Light, Social CRM 2.0 (McGraw-Hill Osborne Media; 4th edition, 2009), Author section on Information Privacy best practices, history, overview of privacy principles and program recommendations. (Available for download here).
  • Contributor, CRM at the Speed of Light, (McGraw-Hill Osborne Media; 3rd edition, 2004), Privacy and security risks related to GMail use and storage of other parties’ confidential information
  • Author, Public Officials Guide to eGovernment, (Thompson Publishing, 2001), Privacy and security issues affecting Federal, State and Local government
  • Author, CLP Fast Track: Lotus Notes/Domino 5 System Administration, (New Riders, 2000); monitoring, maintaining and troubleshooting tasks required to pass Certified Lotus Professional exam
  • Author / Technical Editor, Administering Domino for Lotus Notes & The Internet, (New Riders, 1999); Client maintenance, integration of Domino server and operating system monitoring and performance tuning
  • Author / Technical Editor, Special Edition: Using Lotus Notes 4, (Que, 1995), automation of database functions.

If I can be of assistance, or you would like to connect on LinkedIn, please contact me at karl@outsideofthebox.net

Comments are closed.