Tom Barefoot

TOM BAREFOOT Cuidad Quesada (San Carlos), Alajuela - |-| www.linkedin.com/in/tombarefoot INFORMATION TECHNOLOGY EXECUTIVE Results-driven change agent with demonstrated success in strategy and planning, driving large scale and complex IT projects, 24x7 support and operations, and mobilizing teams. Efficiency-oriented decisionmaker with proven track record of leveraging industry and company best practices to standardize service offerings and enhance them via roadmaps, metrics and benchmarking. Known for leading strategic Informational Technology and cyber security initiatives and building and growing teams that helps achieve an organization’s success. Financial Services | Customer Service | Cyber Security Information Technology | Organizational Change | C-level Executive Programs and Projects Mergers and Acquisitions | Risk Management | Regulators TECHNICAL SKILLS Strategic Planning | Data Protection | Large scale application development | Management | Agile/Scrum/Product Development| Threat Landscape/Controls | IT Governance and compliance | IT Outsourcing (ITO) | Service Level Agreement (SLA) | Industry Benchmarking | Global Operations EXPERIENCE Wells Fargo, Charlotte, NC Head of Information and Cyber Security Metrics and Reporting | 2015 – Present Developed and Sustained an Information Security Metrics Program. • • • • • • • • • • • Created a complete program from ground up that included entire CISO organization and 10 information and cyber security domains. Designed first security self-assessment process and content for first board report that included insights into highest security risks and threats to company. Aligned Program to company risk management and control requirements as well as compliance with banking regulations (a) Basel Committee on Banking Supervision's standard number 239 (BCBS 239), (b) Section 501(b) of the Gramm-Leach-Bliley Act (GLBA), and FFIEC IT Examination requirements. Added controls and processes for accuracy and completeness of data and was approved by all lines of defense (1) Front Line (2) independent risk management (3) audit and regulators. Developed metrics across CISO organization and 10 security domains to provide security insights to CEO, operating committee and board of directors. Influenced decisions on strategy, funding and resource needs for entire Information Security Program. Centralized security data to create accurate and consistent metrics for all reporting. Increased volume, faster processing of data and enhanced data controls by migrating data tools from SQL/Server environment to a highly secure big data environment. Led development of all information security executive level reports. Produced first board report, regulatory updates, online dashboards using custom web-based tools and BI tools like Tableau and Cognos. Wrote the CISO “Written Information Security Program” required by GLBA 501(b) and FFIEC and was approved by the C-level executives and Board of Directors. TOM BAREFOOT - Page Two Strategic Planning Manager, 2011 – 2015 Led strategy, metrics, services and process standardization for 7 critical enterprise-wide technology functions including Architecture Management, IT Strategy, Planning and Management, Security Management, Identity and Access Management, Availability Management, Technology Change Management, and Problem and Incident Management • • Generated 130 opportunities to save 10-20% in vendor spend by synthesizing and presenting recommendations to drive decision making for technology executive team. Simplified the environment by 25% by rationalizing IT Tools. SVP and Director of IT Outsourcing, 2007 – 2011 Promoted to direct company-wide IT Outsourcing (ITO), operations with over 1600 resources in India, United States, and Europe with annual supplier spend over $110M. Developed company-wide ITO people, process, technology strategy. • • • • • Created and managed a portfolio of sourcing management services across all lines of business and CIOs. Implemented a comprehensive cross CIO Business Continuity Plan for India. Improved production support and project delivery performance by implementing metrics, KPI’s and SLAs. Led integration of Wells Fargo and Wachovia’s India Service Providers, processes and controls with no significant performance issues or defects during industry largest merger. Created new company ITO vendor program by rationalizing 40+ vendors to a set of 10 preferred vendors which reduced annual costs and improved performance. VP, Retail Banking IT Outsourcing | 2005 – 2007 Managed all IT outsourcing for the Retail Bank Chief Information Officer (CIO). • • • Created Retail Bank IT offshore program including RFP, due diligence in India, supplier selection, application portfolio analysis. Transitioned a significant portion of application support to third party suppliers. Developed people, process and technology strategic recommendations that were integrated into the CIO overall strategic planning (1-3 and 3-5 year time range). ADDITIONAL RELEVANT EXPERIENCE Wells Fargo, Charlotte, NC - VP, Development Manager for Retail Bank, Senior Project Manager for Retail Bank Call Centers, Developer for Retail Bank Call Center Osprey Systems Inc (acquired by NIIT), Charlotte, NC – Senior Developer IBM, Charlotte, NC - Developer EDUCATION Master of Business Administration (MBA) Duke University, The Fuqua School of Business, Durham, NC. Bachelor of Science (BS), Computer Science / Mathematics, Summa cum laude West Virginia Institute of Technology, Montgomery, WV WELLS FARGO VOLUNTEER EXPERIENCE • • • • President of the 4000-team member LGBT resource group -). Drove the integration of Wells Fargo and Wachovia’s LGBT resource groups. Created the strategy and gained C-level executive approval for LGBT self-identification within Wells Fargo’s Human Resources systems Wells Fargo was ranked #1 in Diversity Inc Top 10 companies for LGBT employees.