Dani A.

Experience

• 

  CSM Corporation

  Mar 2005 - Feb 2011

  Operations Project Manager

  • Apartment Inventory: Ensure that apartments are cleaned and turned in a sufficient manner to be re-rented according to the business needs.• Cost Control: Manage expenses to maximize profitability. Responsible for effective labor management, follows CSM procurement guidelines and applies good business judgment.• Permanent Units: Work with Procurement Manager, and the apartment managers to implement permanent units at select apartment communities. Track and maintain furniture & amenities in these units using an approved CSM tracking system.• Vendor Management: Works closely with Account Manager to coordinate vendor meets onsite, budgets, negotiations, and troubleshooting. Show less

• 

  Target

  Aug 2011 - Apr 2016

  • Directed and let a team of ~150 through organizational changes, ensuring compliance throughout transitions.• Implemented and maintained security policies, standards, and guidelines, including disaster recovery, risk management, and incident response.• Partnered with executives, assisting in the preparation of financial forecasts and budgets for security operations.• Oversaw a budget of $1M+, ensuring compliance and distribution.• Created and implemented process improvements, resulting in a budget savings of $50k, increased scope coverage, and decreased onboarding SLAs by 50%.• Executed work to maintain compliance in PCI, SOX, SOC 1, SOC 2, GLBA, HIPAA and FFIEC exam.• Monitored cybersecurity threats and directed teams to develop appropriate response and mitigation strategies. • Contractor tracking, including onboarding, budget management, project execution and offboarding• Led governance meetings, presenting improvements, risks, and changes.• Point of contact and subject matter expert, handling 500+ contracts, improving business relationships. Show less

  • Executive IT Compliance Support, Information Risk Management

    Oct 2012 - Apr 2016

  • Emergency Alarm Dispatcher

    Aug 2011 - Oct 2012
• 

  Deluxe

  Apr 2016 - now

  • Hires, trains, leads 10+ direct reports, managing 2500+ client requests and 65+ onsite assessments annually.• Oversees SOC 1, SOC 2, ISO, Sarbanes-Oxley Act (SOX), NACHA, OFAC, FedLine/FedRamp, and additional audits.• Manages full life cycle of day-to-day security integration activities including coordination of detailed functional plans, communication with key stakeholders, and issue resolution.• Creates and implements solutions balancing business requirements with information and cybersecurity requirements that align with business vision and goals.• Partners with key stakeholders, overseeing formulation of stress test plans, identification, assessment and documentation of risks and controls.• Develops, improves, and executes training building information security awareness, covering phishing training, ethics, and compliance trainings.• Develops long-term, risk-informed cybersecurity strategies in partnership with senior leadership and internal and external partners, handling, building, and growing key relationships. • Establishes and manages architecture governance to enable timely and effective decision making, reducing risk and maintaining regulatory compliance.• Managed threat and vulnerability management programs including threat andvulnerability analysis, remediation and vulnerability reporting.• ISO 27001/2, NIST, COSO, COBIT frameworks, and HIPAA requirements• Key Achievements:o Created “Test Once, Comply Many” (TOCM) program, utilizing custom security control framework, collecting evidence to use across multiple audits simultaneously, resulting in a savings of $500K.o Managed FFIEC examination with no MRAs for 5 consecutive years,simultaneously increasing rating to highest (best) rating in 2 of 4 areas.o Completed 60+ acquisitions and ~5 divestures as lead for Information Security & Compliance.o Implemented ServiceNow for all client audit requests, resulting in a streamlined process and a decrease in SLAs by 500%+. Show less • Created External Assurance Program SOC 1, SOC 2, NACHA, FedLine, ISO, SOX, resulting in successful external audits that were shared with clients, eliminating the need for 1,000+ clients to audit the company individually.• Standardized and improved existing due diligence and security integration methods.• Developed Merger and Acquisition integration process for Compliance and Information Security resulting in a consistent, risk based approach to integrating new businesses in to the current risk management program.• Manages, facilitates, and reports on Compliance by Design Program, assigning policy requirements to new projects across the enterprise.• Created and implemented policies, procedures and practices to ensure compliance with all laws and regulations.• Evaluated cyber security threats, risks, vulnerabilities, and processes to determine relative risk to the product, system, and organization. Show less

  • Director Information Security

    Mar 2025 - now

  • Sr. Manager, Information Security

    Sept 2017 - Mar 2025

  • Principal Governance Risk and Compliance Program Manager

    Apr 2016 - Sept 2017