Tara Kissoon

Tara Kissoon Is a trusted advisor and collaborator who inspires others with confidence and certainty. As a strategist, coach, analyst and innovator, she brings to your organization “optimal spending on cybersecurity measures”.

PORTFOLIO

Website: www.it-rs.org

Linkedln: https://www.linkedln.com/in/starakissoon

eCommerce: www.thevirtualmall.ca

Coursera: https://www.coursera.org/user/70445730e8db16e63997c537f5b041fb

• Henley Business School, University of Reading, Oct. 2017 – Apr. 2019, PhD by Published Works (GPA 4.0), (Pending Academic Supervisor).
• Rotman School of Management, University of Toronto, Sep. 2008 – June 2010, Master of Business Administration (MBA) with Distinction (GPA - 3.4).
• School of Engineering, Physical and Mathematical Science, Royal Holloway, University of London, Sep. 2005 – August 2008, Master of Science, Upper Second-Class Honours, (GPA – 3.7).
• Indus Systems Training Centre, 1994 – 1995, Certificate in Network Engineering with High Distinction (GPA - 4.0).

Information Security:

• Known as a SME in VISA, conducted approx. 300 information security assessments and various training programs, resulting in multi-million dollar revenue generation (approx. $6M).
• Represent Visa at the PCI Security Standards Council (SSC) on the Technical Working Group (TWG).

Architecture:

Review the technical security vision for OT/IT solutions, Visa, Blackberry, TD, NTT, NTTS:

• Determines the optimal, cost effective solution to meet business requirements. Security architect on design and 'business as usual' projects, from large enterprise-wide initiatives to small special-focus projects.

• Participate in Industry Conferences to include Computer Security Institute (CSI), Information Systems Audit & Control Association (ISACA), The International Information System Security Certification Consortium (ISC2.org), VISA, CISOSummit.

• Book (2025): Optimal Spending on Cybersecurity Measures: Protecting Health Information (PHI) (ISBN: 9781032823577)
• Book (2024): Optimal Spending on Cybersecurity Measures: Digital Privacy and Data Protection (ISBN: 9781032802473).
• Book (2024): Optimal Spending on Cybersecurity Measures: DevOps (ISBN: 9781032518947).
• Book (2021): Optimal Spending on Cybersecurity Measures: Risk Management (ISBN: 9781032061405).
• Article (2021): Journal of Information Security (Vol.12 No.1, Jan 2021) - Optimum Spending on Cybersecurity Measures Part II.
• Article (2020): Emerald Publishing Limited - Optimum Spending on Cybersecurity Measures.
• ISACA TIPs column (2012 - 2014).
• ISACA Online Journal (2008) - Strengthening Access using Smart Cards.

• Higher Landing - Transition to Energy/Clean Energy Sector
• NTT Security (NTTS) - Operational Technology (OT) Enablement Training
• NTT - Cybersecurity Advisory & Sales Training: Infrastructure, Workplace Cybersecurity, Business
• NTT - Microsoft Azure
• ISC2 - Cloud Security Professional Self Study
• AWS – Security Specialist
• AWS – Solutions Architect Associate
• Google Cloud Platform Security

Vulnerable Sector Check

• University of London's Alumni Ambassador
• St. Patrick’s Parish - Markham

ISC2 – Certified Information Systems Security Professional (CISSP - 51944): Board Member - Toronto Chapter

• Participant on the Women's, Undergraduate and Graduate ISC2 Scholarship Review Committee
• Participant on the Centre for Cyber Safety & Education: Canadian Advisory Committee
• SME Content Developers – Item Writing for Exams

Information Systems Audit and Control Association (ISACA) – Certified Information Systems Auditor (CISA - 217620): Gold Level Member

• Committee Member – ISACA CACs/EUROCACs/ISRM
• Conference Speaker

Strategic Leadership:

Lead the development and implementation of Information Security, Information

Technology   and IT Risk Management (IR/IT) strategy and associated work plans on multi-million dollar initiatives:

• RBC: Strategic Enterprise Program focused on redesigning Wealth Management globally.
• BMO: IR/IT CSA Strategy, Organizational Strategy, Resource Strategy, QA Program, Expertise on the OSFI Cybersecurity Self Assessment, interfaced directly with the Office of the Comptroller of the Currency (OCC), Federal Reserve Bank (FRB).
• TD: Million dollar cost savings on CIO portfolio (approx. $20M) - Canadian Banking, Insurance, North American Cards, Merchant Services, Auto Finance, MBNA, Aeroplan, UGO, Target, Payment Card Industry (PCI), Interac.
• VISA: Million dollar revenue generation (approx. $6M) as CISO (Can) – Programs: Account Management, Mobile Security, PIN Security, Approved Vendor Program, Product Risk, Alignment initiatives with MasterCard.
• Blackberry: Payment Card Industry (PCI), Achieved the first Visa, MC approved NFC Devices and Trusted Service Manager (TSM) to support external client initiatives, (RBC Pilot).

Managerial Leadership:

Utilize   a cross functional team within VISA, Blackberry, RBC, providing cost savings through resource reallocation. In TD, BMO:

• Lead a team of 25 individuals. Establish a culture and work environment that attracts, retains and motivates a diverse, skilled workforce in support of a high-performance culture.
• Coach, motivate, develop and evaluate performance of direct reports, and provide guidance in the resolution of complex issues.
• Provide development opportunities to direct reports, including the identification of training needs, creation and implementation of appropriate development plans, monitoring, documenting and feedback on performance.
• Ensure necessary succession plans are in place for all key positions.

Program / Project   Leadership: Provide program and project management for large scale, multi-dimensional information security/risk programs and projects in VISA,   Blackberry, TD, RBC, BMO, and NTT:

• Lead delivery for multi-million dollar initiatives with a clear focus on planning, financial management, schedule management, scope, change and issues management, client communication and overall resourcing and financial costs.
• Manage end-to-end solutions delivery, focusing on intake, strategic planning, schedule management, scope, change and issue management, communication and overall resourcing and financial control.

Risk Management:

• Blackberry, VISA, TD, RBC, BMO: Develop, lead, manage and implement risk management programs across the enterprise to include a specialization in cybersecurity, payment security and mobile security.
• Athabasca University (AU): Develop the cybersecurity risk management, vulnerability management, business continuity programs, policies, training programs in support of AU's Digital Program.
• VISA, AU, Lumenus: Privacy Impact Assessments / Threat Risk Assessments / Business driven risk assessments.

Privacy - Implement Privacy   by Design (PbD) principles, Visa, Blackberry, TD, AU, Lumenus

• Participate in solution design workshops
• Advise on privacy and confidentiality controls
• Identify privacy and confidentiality risks
• Develop risk mitigation strategies
• Complete Privacy and Confidentiality Impact Assessment documentation
• Complete Privacy Impact Assessments / Threat Risk Assessments / Business driven risk assessments.

Cybersecurity & Specialized Training – VISA, Lumenus

• Complete Baseline Organizational Assessments
• Assess and Develop Training Curriculum for in person & on-line (i.e. HR Downloads, KnowBe4)
• Develop CSIRT Playbook Training (i.e. Malware, Phishing, Account compromise)
• Develop Targeted Cybersecurity Training (i.e. Compliance, Role Specific,)

Academic Teaching – ICS, Seneca College

• Responsible for developing, preparing, and delivering courses within the School of Information and Communications Technology (ICT).
• As the Curriculum Coordinator, led the development, delivery and evaluation of IT curriculum, Data Communication, Security, Novell and Cisco Academy Training Courses. (MCP/MCT, CCAI).
• Member of Academic Council, develop/maintain College-wide policies.
• Member of the Advisory Committee to establish the proposal for an Applied Degree - Informatics, with a specialization in Security and Privacy.

Academic Research – Henley Business School

• Leads the design, undertakes/coordinates literature reviews and provides critical appraisal and syntheses of current evidence to guide the development of evidence-based recommendations.
• Leads the development of data collection tools (e.g. interview and focus group guides, participant feedback surveys), study protocols.
• Lead the development of ethics applications and submissions, as well as maintain ethics approvals and liaises with Research Ethics Boards as needed.
• Manage informed consent processes, conduct interviews and focus groups, maintain detailed field notes.
• Knowledge and experience with qualitative and quantitative research methodology.
• Prepare reports on research findings for publication in peer-reviewed journals.