NETBankAudit Staff

Alan is a Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) and Certified Information Security Assessment Methodology by the National Security Agency (NSA-IAM). Alan has over 20 years of experience in the technology and information security field. Prior to joining NETBankAudit, Alan specialized in the delivery of IT vulnerability and risk assessment services to banks and credit unions. Alan also has held positions of Senior Security Consultant for Bristol-Myers Squib, Vice President and Information Security Officer for Merrill Lynch, where he was responsible for all aspects of information security within the business units, and Senior Technical manager for AT&T. In addition, Alan's credentials include; Technical Advisory Member of the United States Secret Service's (USSS) NY Electronic Crimes Task Force (NYECTF), Technical Member of the Federal Bureau of Investigation's (FBI) InfraGard, a former member of the High Technology Crime Investigation Association (HTCIA) and current member of Information System Security Association (ISSA) and Information Systems Audit and Control Association (ISACA). Alan has a BS in Computer Science with a Major in Business and MIS and a minor in History from Century University, Albuquerque.

Mike Ford is a Certified Information Systems Auditor (CISA), a Certified Information Systems Security Professional (CISSP) a Microsoft Certified Systems Engineer NT 4.0 (MCSE) and a leading expert in information security for banks. Mike has over ten (10) years in Information Technology and Information Security, experienced Manager, Administrator, Compliance, Audit, Risk Management, Project Management, Policy Development, Incident Response, and Budgeting within the within the Community Banking and Health Care Industries. Prior to NETBankAudit Mike was with the Federal Reserve Bank of Richmond as an Examiner - Information Technology and Operational Risk. Mike was also with First Market Bank in Richmond VA where he held positions of Information Security Officer, Bank Security Officer and Technology Leader. Prior to First Market Bank, Mike worked as an IT consultant to clients including First North American National Bank where he provided network audit support and also network and systems long term planning. Mike has a Master of Engineering and Systems Engineering and a Bachelor of Science with University of VA and also a Master of Business Administration at University of Richmond. Mike is also a member of the Board of Directors of the Richmond Chapter of ISACA, including President of the Chapter in 2008.

Wayne is a Certified Information Systems Auditor (CISA), a Certified Regulatory Compliance Manager (CRCM), a Certified Information System Security Professional (CISSP) and a Certified BSA/AML Professional (CBAP). As Senior Regulatory Auditor, Wayne focuses on Regulatory Compliance and IT assessments and audits. Formally with Integrated Compliance Solutions (ICS), Andrew Johnson Bank and Greenville Federal Bank, Wayne is a highly experienced community banking professional with a diverse background in banking, information systems, audit, compliance, security, management, and operations. Having played a major role in the recovery and relocation to Dallas, TX of a Santa Monica data center after the 1994 Northridge earthquake, Wayne also has a unique background in disaster recovery and business continuity planning. Wayne has managed core processing conversions, established and managed compliance, risk and information security programs, developed training programs (BSA, GLBA, Reg CC, etc.) including organizing a 35 bank Compliance Network. Wayne has worked with the Federal Reserve and the Internal Revenue Service on financial institution related projects and also developed financial software for Kirchman Inc., Broadway & Seymour, EDS, Jack Henry, and Alltel Information Systems. Wayne has a BS in Business and Information Systems from East Tennessee State University, including studies at South College and the South East Bankers School at Vanderbilt University and attended and participated in numerous banking, security, compliance, and information technology seminars and schools.

Robert is a Certified Information Systems Auditor (CISA) and a leading expert in information security risk assessments for banks. He is a former banking branch manager with Commercial Federal Bank in Springfield MO and former network administrator with Mid-Missouri Bank in Springfield, MO. Mr. Hill was also an implementation specialist at Jack Henry and network security auditor and consultant at an accounting firm in Springfield, MO prior to coming to NETBankAudit. Mr. Hill is a CompTIA Certified Network Professional (CNP), a Certified Citrix Metaframe Software (CCSP) engineer, a Microsoft Certified Professional (MCP), Certified in Cisco Network Infrastructure Design and is a trained vulnerability testing engineer. He holds a degree in Business and Finance from Southwest Missouri State University.

As Director of NETBankAudit Management Consulting, Peggy heads NETBankAudit's regulatory consulting services for our clients. NETBankAudit Management Consulting focuses on helping clients develop and implement such as programs as Enterprise-wide Risk Assessment (ERM), Business Continuity (BC/DR) and Compliance and Regulatory Policy and Procedure work as well as high level IT and Operations consulting. Peggy is the former Director of Information Technology and Information Security Officer for Cardinal Bank VA, a $1.9 billion Community Bank with a mortgage subsidiary originating over $3 billion in mortgage loans per year, and a Trust Department that managed over $4 billion in assets where she managed all aspects of IT operations and information security for the bank. Prior to Cardinal Bank, Peggy was Audit Officer responsible for planning and conducting IT, operations, and financial audits while supervising seven auditors for First Virginia Banks Inc. a $10 billion holding company and one of the 50 largest banking companies in the country. Later Peggy became the Applications Manager at First Virginia Banks, Inc, and coordinated the technical and analyst resources for the entire IT Division. Peggy began her professional career as a Bank Examiner with the Federal Deposit Insurance Corporation (FDIC) auditing banks in Indiana, Maryland, and the District of Columbia. Peggy has a B.A., Business Administration with an emphasis in Accounting from Hanover Collage, Hanover IN and is also a graduate of the Virginia Bankers School of Bank Management from the University of Virginia.

Robert is a Certified Information Systems Auditor (CISA) and Certified Information Systems Security Professional (CISSP) and has over 20 years of experience as an IT auditor and FRB bank examiner. Prior to NETBankAudit, Robert was an Information Systems Auditor with NetStandard Inc., Kansas City, KS where he provided IT audit services to banks, law firms, healthcare providers, and other organizations using ISACA/COBIT audit methodology. Robert provided network infrastructure security program design and assessment support involving the use of vulnerability scanning tools and the analysis of network infrastructure security and proposed and implemented security solutions. Robert also performed information security policy reviews, assisted with the development of information security programs, provided advice on regulatory compliance, and helped design business continuity and disaster recovery plans. Robert was a Bank Examiner with the Federal Reserve Bank of Kansas City, conducting bank IT examinations from 2002 to 2007. Prior to 2002, Robert conducted bank financial (Safety and Soundness) examinations for the FRB. Robert has a B.S. Finance and Banking and a B.A. History from Missouri State University.

Mark is a network professional with over 13 years experience in network design, security, and project management. Prior to NETBankAudit, he was a Network Engineering Consultant where he served customers in a variety of industries including financial services. He has a proven record implementing technology best practices resulting in increased uptime and reduced costs within the corporate and client infrastructures. He is well versed in a variety of network types including Windows, Linux, and Novell. Mr. Lohman is a Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (C|EH), and Microsoft Certified IT Professional, Enterprise Administrator in Server 2008 (MCITP). He is also a Microsoft Certified Technical Specialist in Server 2008 Network Infrastructure, Server 2008 Application Infrastructure, Windows Vista, and Server 2008 Active Directory. He holds a Bachelor of Business Administration from Strayer University.

Kathy is a Certified Information Systems Auditor (CISA) with over 14 years of experience as a banking IT and internal auditor. Kathy is an expert in IT audits, SAS70's and SOX compliance. She is experienced in COBIT audit and NIST assessment methodologies as well as GLBA and FFIEC guidelines. Kathy has held the position of AVP and Senior Auditor as well as Chief Technology Officer (CTO) with First National Bank and Trust Kokomo, IN, where she developed, planned, organized and performed audit programs for the following functions: Loan Operations; Deposit Operations; Accounting Department Reconciliations; and Retail Branches. Prior, Ms Rogers was Senior IT Auditor with Irwin Financial Corporation Columbus, IN, IT Audit Project Leader with American Express, Senior IT Auditor with Ernst & Young, LLP and Lead IT Auditor with Star Financial Group, Marion, IN. Kathy started her career as a programmer analyst and has also held the position of corporate security officer in the banking industry. Kathy has a BS in Business Administration and Operations Management from Indiana University

Dave is a Certified Information Systems Auditor (CISA), a Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM). He is an expert in network and security technology, banking technology, GLBA/FFIEC information security requirements, penetration testing, IT security assessments and audits. He is a former Senior IT Security Engineer providing GLBA/FFIEC compliant vulnerability assessment and risk assessment services to community financial institutions. Previously, Mr. St Laurent was head of IT for The Village Bank in Auburndale, MA. Prior, he was a Senior Network Engineer with SYNON Corporation in Framingham, MA providing network and network security consulting to community banks. Early in his career, Mr. St Laurent was a Corporate Network Engineer and Facility IT Manager for Thomas & Betts a world wide provider of products for commercial and industrial construction.

Randall is a Certified Information Systems Security Professional (CISSP) and Certified Ethical Hacker (C|EH) sanctioned by the E-Commerce Council. Randall is an expert in performing External and Internal vulnerability assessments and penetration testing, GLBA GAP analysis and Risk assessments according to FFIEC and NCUA standards. Prior to NETBankAudit, Randall was a Senior Information Security Technical Engineer consultant performing information security assessments for the financial industry. Prior, Randall was a Senior Technical Staff member I and II with AT&T Laboratories - Shannon Labs where he was a key member of the AT&T Computer Security Incident Response Team (ACSIRT) dealing with network forensics, IDS/IPS policy and support as well as incident mitigation. Randall was a Senior IS staff member with Hong Kong - Shanghai Banking Corp. where he developed expertise in internal vulnerability assessment and penetration testing. He is also Certified Advanced Administration - Intel-Tactics Network Security Management, Microsoft Certified Professional (MCP), Certified Novell NetWare Engineer 3.s (CNE), Certified Novell IntraNetWare Engineer 4.11 (CNE) and Certified A+. Randall is a graduate of the New Jersey Institute of Technology with a major in Network Engineering.

Mike is a Certified Information Systems Auditor (CISA), a Certified Information Systems Security Professional (CISSP) and a Microsoft Certified Systems Engineer with a focus on security (MCSE: Security). Mike has over 20 years experience in Information Technology, with the last 12 focused on Information Security Management. In addition to his community banking IT audit and management credentials, his expertise lies in Security Management, Incidence Response, Disaster Recovery, vulnerability assessment, GLBA, SOX, PCI, Microsoft Active Directory and group policy management and network infrastructure auditing. He's the former Director of Technology for a community bank in Florida and Information Security Engineer for a major U S Airline. Mike has a MS in Management from Troy University, is a Certified Novell Engineer (CNE) and is a member of the Information Systems Security Association (ISSA) and the Information Systems Audit and Control Association (ISACA).