The King Rogers Group is pleased to present the professional profile of KRG Associate: Steve Markey. This profile will quickly allow you to learn about Steve’s unique areas of expertise, his capabilities, experience, and education.
Steven C. Markey, PMP, CISSP, CIPP, CISM, CISA
KRG Associate Steve Markey is particularly interested in consulting focused on the development of holistic compliance and risk management programs, designed around processes, policies and people. Steve has extensive experience working in the Financial Services, Insurance and Healthcare industries. He has held positions as Chief Technology Officer, Chief Security Officer, IT Project Manager, and Senior Consultant. His work has included creating and managing risk management and compliance programs, as well as work with regulatory requirements, such as SOX, PCI DSS, ISO 27001 and HIPAA.
Steve has managed and coordinated IT consulting services including experience leading enterprise-level InfoSec, Compliance and Privacy engagements and experience in developing and testing, vis-à-vis compliance and substantive tests, technology controls according to the ISO 27002, COBIT and PCI DSS frameworks. Steve is well versed in creating comprehensive enterprise-level control and risk management frameworks to cover multiple, concurrent regulatory and industry requirements.
In the regulatory insurance environment, Steve assessed the adequacy of general controls over data flow and business processes. This work included creating narrative reports of processes, and graphically diagramming them using flowcharting software; writing and editing findings and exceptions. It also included identifying and testing control risks; interacting with representatives of examined insurance companies and state regulators, and communicating results.
In the financial services environment, Steve managed a variety of system implementation projects. These included deployment of a Voice Response Unit (VRU), Incentive Compensation, Business Performance Monitoring (BPM), Sales Force Automation, Spend Management, Imaging/Document Capture, Web Conferencing, and E-mail Archiving/Content Filtering solutions.
Certifications:
Project Management Professional (PMP)
Certified Information Systems Security Professional (CISSP)
Certified Information Privacy Practitioner (CIPP)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
PDA TR-32 Pharmaceutical Supplier Audit Lead Certificate
Symantec Technical Specialist - Enterprise Vault (STS-EV)
Memberships:
InfraGard, ISACA, ISC2, PMI, IAPP, CCHIT, PDA & OWASP
Education:
Master of Science in Information Systems, Drexel University
Bachelor of Science in Business Administration, The Citadel