Transforming Technology Risk into a Competitive Advantage

Background

I help financial institutions design and run first line of defense (FLOD) risk programs that actually work: OCC-aligned risk governance, clear risk appetite, strong SOX and operational controls, and data-driven IT risk metrics.

Over 25+ years at Capital One, I’ve partnered with CIOs, CFOs, and business heads to translate regulatory expectations into practical playbooks—from OCC risk governance feedback to Deloitte-style IT risk metrics dashboards—and then drive the execution.

​

I’m a Senior Technology Risk Manager with 25+ years of experience at Capital One, leading programs at the intersection of technology, operations, and regulatory compliance.

​

My work sits squarely in the first line of defense: partnering with technology and business leaders to identify risks, design controls, drive automation, and present clear, board-ready risk stories that align with OCC guidance and enterprise risk frameworks.

​

I’m at my best when I’m:

• Translating complex regulatory expectations into practical process changes

• Building clear metrics and dashboards that reveal risk, not just activity

• Coaching leaders and teams through remediation and long-term resiliency

​

Career Highlights

​

Senior Technology Manager, Enterprise Monitoring Intelligence & Risk and Controls       

• Led enterprise-level operational risk assessments, identifying control gaps, evaluating inherent/residual risk, and updating RCSA documentation across multiple business units.

• Executed SOX 302/404 control testing, walkthroughs, evidence review, and remediation planning to strengthen internal controls and reduce audit findings.

• Developed and monitored KRIs/KCIs dashboards to measure operational risk exposure and support governance reporting for senior leadership.

Commercial Bank Risk & SOX Program Lead                                                                            

• Directed SOX 302/404 Compliance Program ensuring 100% audit adherence across 12 business processes.

• Reduced SOX compliance errors by 40% through standardized control testing, evidence collection automation, and improved governance reporting.

• Consolidated control monitoring operations, executing 80% efficiency gains by transitioning testing to offshore partners.

• Developed compliance dashboards, KRIs, and audit remediation workflows used by executive leadership.

Director, Enterprise Supply Management – Information Technology  

• Led $780M IT procurement portfolio overseeing supplier governance, contract negotiations, category strategy, and performance metrics.

• Executed supplier risk assessments, third‑party due diligence, and corrective action plans to strengthen vendor compliance.

• Delivered $43M in savings through strategic sourcing, contract optimization, and data‑driven performance analytics.

• Managed 15+ suppliers including HP, Oracle, and IBM; built supplier scorecards aligned to ESG, quality, service levels, and risk.

 Certifications & Education

• CISSP – (ISC)²

• GARP Operational Risk Management Certification

• AWS Cloud Practitioner – AWS

• CPSM – Institute of Supply Management

• M.S. Management of Information Technology – University of Virginia

• B.S. Business Administration (Finance) – West Virginia University