Chad Veldhuizen
Director, Info Protection & Business Resilience
Chad is a Director in Advisory specializing in Cyber Security focusing on cyber security managed services. Chad has a broad range of experience in developing strategy, transformation, and managed operations across all of the major security domains for large multi-national organizations across a number of industries including Financial Services, Healthcare, Manufacturing, Media and Telecommunications, Retail, and technology.
Large Financial Services Client- Developed strategy and roadmap for a banks divestiture from the parent company. The scope of security included Infrastructure security, malware detection, data protection and a new IAM infrastructure, security monitoring and response, business continuity.
Large Banking Client – Developed a solution for a large bank to implement a new access control and Single Sign-On solution to meet FFIEC compliance guidelines. Solution included integration of registration processes into their existing process, synchronization identities across 5 different applications which had different uid structures and support integration with their help desk.
Canadian Government Financial Services Entity – Developed a security solution to migrate their applications to be hosted on Microsoft Azure Cloud Infrastructure with additional security controls such as data loss prevention, monitoring and incident response, host based firewalls, network segmentation, file integrity monitoring, identity and access management, threat and vulnerability management, and compliance management.
State Medicaid Replacement Program – Developed a security implementation plan to meet HIPPA/HITECH and NIST Moderate controls for a state Medicaid replacement program. The implementation would then be managed to provide appropriate controls around the solution such as tripwire, automated compliance, data security, intrusion detection, security operations (incident response, business continuity, etc.) and Identity and Access Management.
Large Communications and High Tech Client - Conducted a security assessment related to Payment Card Industry (PCI) standards for policies, identity management life cycle and auditing events. Produced a mitigation roadmap to implement processes, training/technology solutions for satisfying PCI standards
Large Utility Client – Developed a solution to develop and manage a centralized IT GRC program utilizing RSA Archer. The solution included integrating data feeds, development of new and centralized policies, and reporting.
Synchrony Financial, American Express, Morgan Stanley, Citizens Bank, Bank of America, JP Morgan Chase, Best Buy, Visa, Toyota Financial Services, T-Mobile, DuPont, Freeport McMoRan