NETBankAudit Staff
NETBankAudit selects only the very best employees to serve your financial institution. Our senior team of auditors and engineers are our greatest assets:- All NETBankAudit engineers and auditors are full time employees (no subcontracting)
- All NETBankAudit employees have applicable certifications (CISSP, CISA, etc.)
- All NETBankAudit employees have background checks
Auditors and Engineers - Alphabetical:
Alan
Borack CISA, CISSP, NSA-IAM
Senior Information Systems Auditor
Fords (Woodbridge), NJ
Alan is a Certified Information Systems Auditor (CISA), Certified
Information Systems Security Professional (CISSP) and Certified
Information Security Assessment Methodology by the National Security
Agency (NSA-IAM).
Alan has over 20 years of experience in the technology and information
security field. Prior to joining NETBankAudit, Alan specialized in the
delivery of IT vulnerability and risk assessment services to banks and
credit unions. Alan also has held positions of Senior Security
Consultant for Bristol-Myers Squib, Vice President and Information
Security Officer for Merrill Lynch, where he was responsible for all
aspects of information security within the business units, and Senior
Technical manager for AT&T. In addition, Alan's credentials
include; Technical Advisory Member of the United States Secret
Service's (USSS) NY Electronic Crimes Task Force (NYECTF), Technical
Member of the Federal Bureau of Investigation's (FBI) InfraGard, a
former member of the High Technology Crime Investigation Association
(HTCIA) and current member of Information System Security Association
(ISSA) and Information Systems Audit and Control Association (ISACA).
Alan has a BS in Computer Science with a Major in Business and MIS and
a minor in History from Century University, Albuquerque.
Mike
Ford, CISA, CISSP, MCSE
Senior Information Systems Auditor
Richmond, VA
Mike Ford is a Certified Information Systems Auditor (CISA), a
Certified Information Systems Security Professional (CISSP) a Microsoft
Certified Systems Engineer NT 4.0 (MCSE) and a leading expert in
information security for banks. Mike has over ten (10) years in
Information Technology and Information Security, experienced Manager,
Administrator, Compliance, Audit, Risk Management, Project Management,
Policy Development, Incident Response, and Budgeting within the within
the Community Banking and Health Care Industries. Prior to NETBankAudit
Mike was with the Federal Reserve Bank of Richmond as an Examiner -
Information Technology and Operational Risk. Mike was also with First
Market Bank in Richmond VA where he held positions of Information
Security Officer, Bank Security Officer and Technology Leader. Prior to
First Market Bank, Mike worked as an IT consultant to clients including
First North American National Bank where he provided network audit
support and also network and systems long term planning. Mike has a
Master of Engineering and Systems Engineering and a Bachelor of Science
with University of VA and also a Master of Business Administration at
University of Richmond. Mike is also a member of the Board of Directors
of the Richmond Chapter of ISACA, including President of the Chapter in
2008.
Wayne
Gourley, CISA, CRCM, CISSP, CBAP
Senior Regulatory Auditor
Surgoinsville, TN
Wayne is a Certified Information Systems Auditor (CISA), a Certified
Regulatory Compliance Manager (CRCM), a Certified Information System
Security Professional (CISSP) and a Certified BSA/AML Professional
(CBAP). As Senior Regulatory Auditor, Wayne focuses on Regulatory
Compliance and IT assessments and audits. Formally with Integrated
Compliance Solutions (ICS), Andrew Johnson Bank and Greenville Federal
Bank, Wayne is a highly experienced community banking professional with
a diverse background in banking, information systems, audit,
compliance, security, management, and operations. Having played a major
role in the recovery and relocation to Dallas, TX of a Santa Monica
data center after the 1994 Northridge earthquake, Wayne also has a
unique background in disaster recovery and business continuity
planning. Wayne has managed core processing conversions, established
and managed compliance, risk and information security programs,
developed training programs (BSA, GLBA, Reg CC, etc.) including
organizing a 35 bank Compliance Network. Wayne has worked with the
Federal Reserve and the Internal Revenue Service on financial
institution related projects and also developed financial software for
Kirchman Inc., Broadway & Seymour, EDS, Jack Henry, and Alltel
Information Systems. Wayne has a BS in Business and Information Systems
from East Tennessee State University, including studies at South
College and the South East Bankers School at Vanderbilt University and
attended and participated in numerous banking, security, compliance,
and information technology seminars and schools.
Robert
Hill, CISA
Director of Engagement Delivery Automation
Senior Information Systems Auditor
Springfield (Nixa), MO
Robert is a Certified Information Systems Auditor (CISA) and a leading
expert in information security risk assessments for banks. He is a
former banking branch manager with Commercial Federal Bank in
Springfield MO and former network administrator with Mid-Missouri Bank
in Springfield, MO. Mr. Hill was also an implementation specialist at
Jack Henry and network security auditor and consultant at an accounting
firm in Springfield, MO prior to coming to NETBankAudit. Mr. Hill is a
CompTIA Certified Network Professional (CNP), a Certified Citrix
Metaframe Software (CCSP) engineer, a Microsoft Certified Professional
(MCP), Certified in Cisco Network Infrastructure Design and is a
trained vulnerability testing engineer. He holds a degree in Business
and Finance from Southwest Missouri State University.
Peggy
Hinshaw
Director of NETBankAudit Management Consulting
Alexandria, VA
As Director of NETBankAudit Management Consulting, Peggy heads
NETBankAudit's regulatory consulting services for our clients.
NETBankAudit Management Consulting focuses on helping clients develop
and implement such as programs as Enterprise-wide Risk Assessment
(ERM), Business Continuity (BC/DR) and Compliance and Regulatory Policy
and Procedure work as well as high level IT and Operations consulting.
Peggy is the former Director of Information Technology and Information
Security Officer for Cardinal Bank VA, a $1.9 billion Community Bank
with a mortgage subsidiary originating over $3 billion in mortgage
loans per year, and a Trust Department that managed over $4 billion in
assets where she managed all aspects of IT operations and information
security for the bank. Prior to Cardinal Bank, Peggy was Audit Officer
responsible for planning and conducting IT, operations, and financial
audits while supervising seven auditors for First Virginia Banks Inc. a
$10 billion holding company and one of the 50 largest banking companies
in the country. Later Peggy became the Applications Manager at First
Virginia Banks, Inc, and coordinated the technical and analyst
resources for the entire IT Division. Peggy began her professional
career as a Bank Examiner with the Federal Deposit Insurance
Corporation (FDIC) auditing banks in Indiana, Maryland, and the
District of Columbia. Peggy has a B.A., Business Administration with an
emphasis in Accounting from Hanover Collage, Hanover IN and is also a
graduate of the Virginia Bankers School of Bank Management from the
University of Virginia.
Robert
Jenkins, CISA, CISSP
Senior Auditor
Raleigh, NC
Robert is a Certified Information Systems Auditor (CISA) and Certified
Information Systems Security Professional (CISSP) and has over 20 years
of experience as an IT auditor and FRB bank examiner. Prior to
NETBankAudit, Robert was an Information Systems Auditor with
NetStandard Inc., Kansas City, KS where he provided IT audit services
to banks, law firms, healthcare providers, and other organizations
using ISACA/COBIT audit methodology. Robert provided network
infrastructure security program design and assessment support involving
the use of vulnerability scanning tools and the analysis of network
infrastructure security and proposed and implemented security
solutions. Robert also performed information security policy reviews,
assisted with the development of information security programs,
provided advice on regulatory compliance, and helped design business
continuity and disaster recovery plans. Robert was a Bank Examiner with
the Federal Reserve Bank of Kansas City, conducting bank IT
examinations from 2002 to 2007. Prior to 2002, Robert conducted bank
financial (Safety and Soundness) examinations for the FRB. Robert has a
B.S. Finance and Banking and a B.A. History from Missouri State
University.
Mark Lohman, CISSP, C|EH, MCITP
Information Security Systems Engineer
Richmond, VA
Mark is a network professional with over 13 years experience in network design, security, and project management. Prior to NETBankAudit,
he was a Network Engineering Consultant where he served customers in a variety of industries including financial services.
He has a proven record implementing technology best practices resulting in increased uptime and reduced costs within the corporate
and client infrastructures. He is well versed in a variety of network types including Windows, Linux, and Novell. Mr. Lohman is a Certified
Information Systems Security Professional (CISSP), Certified Ethical Hacker (C|EH), and Microsoft Certified IT Professional, Enterprise Administrator in Server 2008 (MCITP). He is also a Microsoft Certified Technical Specialist in Server 2008 Network Infrastructure,
Server 2008 Application Infrastructure, Windows Vista, and Server 2008 Active Directory. He holds a Bachelor of Business Administration from Strayer University.
Kathy
Rogers, CISA
Senior Information Systems Auditor
Marion, IN
Kathy is a Certified Information Systems Auditor (CISA) with over 14
years of experience as a banking IT and internal auditor. Kathy is an
expert in IT audits, SAS70's and SOX compliance. She is experienced in
COBIT audit and NIST assessment methodologies as well as GLBA and FFIEC
guidelines. Kathy has held the position of AVP and Senior Auditor as
well as Chief Technology Officer (CTO) with First National Bank and
Trust Kokomo, IN, where she developed, planned, organized and performed
audit programs for the following functions: Loan Operations; Deposit
Operations; Accounting Department Reconciliations; and Retail Branches.
Prior, Ms Rogers was Senior IT Auditor with Irwin Financial Corporation
Columbus, IN, IT Audit Project Leader with American Express, Senior IT
Auditor with Ernst & Young, LLP and Lead IT Auditor with Star
Financial Group, Marion, IN. Kathy started her career as a programmer
analyst and has also held the position of corporate security officer in
the banking industry. Kathy has a BS in Business Administration and
Operations Management from Indiana University
David S.
St Laurent, CISA, CISSP, CISM
Senior Information Systems Auditor
Orange, MA
Dave is a Certified Information Systems Auditor (CISA), a Certified
Information Systems Security Professional (CISSP) and Certified
Information Security Manager (CISM). He is an expert in network and
security technology, banking technology, GLBA/FFIEC information
security requirements, penetration testing, IT security assessments and
audits. He is a former Senior IT Security Engineer providing GLBA/FFIEC
compliant vulnerability assessment and risk assessment services to
community financial institutions. Previously, Mr. St Laurent was head
of IT for The Village Bank in Auburndale, MA. Prior, he was a Senior
Network Engineer with SYNON Corporation in Framingham, MA providing
network and network security consulting to community banks. Early in
his career, Mr. St Laurent was a Corporate Network Engineer and
Facility IT Manager for Thomas & Betts a world wide provider of
products for commercial and industrial construction.
Randall
Wagner, CISSP, C|EH
Senior Information Security Assessment Engineer
Trenton (Hamilton), NJ
Randall is a Certified Information Systems Security Professional
(CISSP) and Certified Ethical Hacker (C|EH) sanctioned by the
E-Commerce Council. Randall is an expert in performing External and
Internal vulnerability assessments and penetration testing, GLBA GAP
analysis and Risk assessments according to FFIEC and NCUA standards.
Prior to NETBankAudit, Randall was a Senior Information Security
Technical Engineer consultant performing information security
assessments for the financial industry. Prior, Randall was a Senior
Technical Staff member I and II with AT&T Laboratories - Shannon
Labs where he was a key member of the AT&T Computer Security
Incident Response Team (ACSIRT) dealing with network forensics, IDS/IPS
policy and support as well as incident mitigation. Randall was a Senior
IS staff member with Hong Kong - Shanghai Banking Corp. where he
developed expertise in internal vulnerability assessment and
penetration testing. He is also Certified Advanced Administration -
Intel-Tactics Network Security Management, Microsoft Certified
Professional (MCP), Certified Novell NetWare Engineer 3.s (CNE),
Certified Novell IntraNetWare Engineer 4.11 (CNE) and Certified A+.
Randall is a graduate of the New Jersey Institute of Technology with a
major in Network Engineering.
Michael
Young, CISA, CISSP, MCSE: Security
Senior Information Systems Auditor
Youngstown, FL
Mike is a Certified Information Systems Auditor (CISA), a Certified
Information Systems Security Professional (CISSP) and a Microsoft
Certified Systems Engineer with a focus on security (MCSE: Security).
Mike has over 20 years experience in Information Technology, with the
last 12 focused on Information Security Management. In addition to his
community banking IT audit and management credentials, his expertise
lies in Security Management, Incidence Response, Disaster Recovery,
vulnerability assessment, GLBA, SOX, PCI, Microsoft Active Directory
and group policy management and network infrastructure auditing. He's
the former Director of Technology for a community bank in Florida and
Information Security Engineer for a major U S Airline. Mike has a MS in
Management from Troy University, is a Certified Novell Engineer (CNE)
and is a member of the Information Systems Security Association (ISSA)
and the Information Systems Audit and Control Association (ISACA).
Sales and Administration - Alphabetical:
William (Will) Kinnamon, III
Director Business Development
Fredericksburg, VA
Melissa Morrell
Administration
Alexandria, VA
Beth Mullis
Sales Executive
Raleigh, NC
Tom Spradling
Sales Executive
Greensboro, NC
Don Stephens
Sales Executive
Clermont, NC
Carla Walls
Quality Assurance
Palmyra, VA
![]()
![]() |
|


