Norman Kromberg

Current

Vice President Information Security at West Interactive

Past

Vice President Quality Improvement at West Interactive
Technology Audit Leader at Acxiom Corporation
Managing Consultant at BKD LLP

Project Director at Ameritrade
Vice President at First Data Corporation
Lead Business Analyst at First National Bank of Omaha
Information Technology Auditor at FirsTier Financial
National Bank Examiner at The Comptroller of the Currency
Assitant Cashier at Lancaster County Bank
Intern at Union Bank and Trust

see less...

7 more...

Education

University of Nebraska-Lincoln

Recommended

4 people have recommended Norman

Connections

500+ connections

Industry

Information Technology and Services

Websites

My Company

Norman Kromberg’s Summary

I am a technology audit, controls, risk management, quality and compliance subject matter expert. With over 20 years of professional experience I am able to help companies of any size implement effective and efficient technology control management processes. I am a senior level IT Executive with extensive experience in creating and delivering technology management solutions to include data controls, transaction processing, quality, operations, network support, regulatory compliance and project management. Effective team builder and leader with a proven track record in establishing a strategic vision and gaining buy-in from all levels of the organization. I am skilled in developing customer-driven teams that contribute to successful organizational performance.

My goal is pursue a senior level role in IT Audit, Audit, Technology Management, Compliance, Risk Management, Quality Improvement or consulting.

Norman Kromberg’s Specialties:

-Risk Assessment
-Offshore Management
-Application Development
-IT Strategy / ITIL
-Technology Audit
-System Integration
-Change Control / Management
-Vendor Management
-Data Warehouse
-Network Management
-Information Security
-Privacy
-Compliance
-FFIEC
-Data Center operations
-SAS-70s
-Business Continuity Planning /Disaster Recovery
-Auditor development
-Audit Committee relations
-Project Management
-Governance
-Sarbanes
-COBIT
-Quality Programs / Testing

Norman Kromberg’s Experience

Vice President Information Security

West Interactive

(Privately Held; Telecommunications industry)

July 2009 — Present (6 months)

Responsible for the following:
-development and delivery of information security policy
-standards and solutions that meet the client contractual and program obligations
-work directly with client’s representatives to ensure accurate representation of business unit security knowledge, capability, policy, standards and execution
-implement and maintain recognized information security compliance standards
work closely with internal departments to contain, investigate and prevent computer security incidents
-ensure disaster recovery and business continuity requirements and client expectations are being met through risk management reviews of information technology infrastructure
-ensure the ongoing integration of information security with business strategy and requirements
act as the subject matter expert and focal point for all communications related to information risk management
-make certain essential physical security controls are effectively applied
-periodically review and audit business unit’s disaster recovery and business continuation plans.
Vice President Quality Improvement

West Interactive

(Privately Held; Telecommunications industry)

November 2007 — July 2009 (1 year 9 months)

I led West Interactive's Quality Improvement function, to include application testing, infrastructure testing, training, process improvement, project management, creative services, risk management, goal setting and tactical plans, IT SOX processes, and technical compliance (SAS-70/PCI).
Technology Audit Leader

Acxiom Corporation

(Public Company; 5001-10,000 employees; ACXM; Information Technology and Services industry)

November 2004 — September 2007 (2 years 11 months)

I am responsible for development and implementation of Acxiom's Technology Audit Function. This includes risk management, development of an audit universe, support of SAS-70s and Sarbanes, staff development and executive reporting.
Managing Consultant

BKD LLP

(Partnership; 1001-5000 employees; Information Technology and Services industry)

August 2004 — November 2004 (4 months)

As Managing Consult I my responsibilities included technology business development in Nebraska, Iowa and South Dakota. Responsibilities include security programs, risk assessment, disaster recovery analysis, system selection, Sarbanes-Oxley project, client management, and technology audits of diverse organizations. Additional responsibilities included management of a portfolio or projects and development of the local team of professionals. During my tenure I helped identify new product lines and markets to service.
Project Director

Ameritrade

(Public Company; 1001-5000 employees; AMTD; Financial Services industry)

May 2004 — July 2004 (3 months)

AMTD is a provider of securities brokerage services and technology-based financial services to retail investors and business partners, predominantly through the Internet. It offers electronic brokerage services such as touch-tone trading; trading over the Internet; unlimited, streaming, free real-time quotes; extended trading hours; direct access, and commitment on the speed of execution. Since initiating online trading. The Company has approximately three million client accounts. AMTD also provides trading execution and clearing services for its own broker-dealer operations and for unaffiliated broker-dealers through its subsidiary, Ameritrade, Inc.

While reporting to the Senior Vice President of Marketing, I was responsible for defining a project structure for an enterprise-wide client experience effort. I was successful in defining a sound project steering committee, scoping effort and reporting process. The effort was guided by the Office of The Chief Executive Officer.
Vice President

First Data Corporation

(Public Company; 10,001 or more employees; FDC; Information Technology and Services industry)

February 1996 — April 2004 (8 years 3 months)

While reporting to the Senior Vice President / General Auditor, I was responsible for the entire technology audit function, technical risk assessment and external relations for technical controls. This included communication with the Executive Committee and Audit Committee of the Board of Directors. The technology audit program included 31 professionals in 4 domestic and international locations, over 200 audit entities and over 50,000 hours.
Lead Business Analyst

First National Bank of Omaha

(Privately Held; 5001-10,000 employees; Banking industry)

October 1995 — February 1996 (5 months)
Information Technology Auditor

FirsTier Financial

(Public Company; 1001-5000 employees; Banking industry)

June 1994 — October 1995 (1 year 5 months)

Reported to the General Auditor where I was responsible for technical risk analysis, audit planning, budgeting, IS audit training, supervision of one full time IS auditor. Accomplishments include:

Development and implementation of Integrated Audit Program savings over 100 hours per audit.

Implementation of a project management consulting program.

Development of an IS Training Program for internal auditors.

Experience in client server, project management consulting, systems development, operations, end-user computing, contingency planning, information security, integrated auditing and telecommunications.

Promoting a Proactive Audit Approach within the IS Division; and development and implementation of a formal Audit Automation Project.
National Bank Examiner

The Comptroller of the Currency

(Government Agency; 1001-5000 employees; Banking industry)

March 1987 — June 1994 (7 years 4 months)

Responsible for reviewing the condition of bank data processing functions. Size ranged from $10 million to $90 billion. Experience in audit, management, management information systems, systems development, operations, contingency planning, microcomputers, information security and telecommunications. Responsible for leading examination teams, preparing time budgets, evaluating other examiners, examination reports, recommending future supervisory activities, and communicating conclusions to management and Board of Directors. Assisted with training and development of other personnel, including serving as an instructor for OCC schools.
Assitant Cashier

Lancaster County Bank

(Banking industry)

January 1986 — February 1987 (1 year 2 months)
Intern

Union Bank and Trust

(Information Technology and Services industry)

1981 — 1985 (4 years )