David Williamson

David Williamson's work experience is as follows:

1. Demostack (2021-Present)

- Head of Governance, Risk, and Compliance (GRC)

- Responsible for driving compliance with Privacy Regs and Security frameworks

- Delivered Demostack's first SOC 2 certification

- Expanding Privacy Initiatives, including GDPR and CCPA

2. TripActions (2019-2021)

- Head of Governance, Risk and Compliance

- Led ISO, PCI, GDPR, CCPA, and SOC 2 compliance efforts

- Grew the cybersecurity team, policies, and capabilities

- Implemented and optimized cloud security solutions

3. DroneDeploy (2018)

- Cybersecurity Consultant driving GDPR and ISO Compliance

4. MetricStream, Inc. (2013-2018)

- Head of Professional Services, GRC

- Led a global team in software delivery for SAAS risk management and compliance solution

- Consulted with various teams to assess risks and mitigations

- Designed and implemented cloud solution for ERM, IS, and Regulatory Compliance

5. Visa Inc. (2005-2013)

- Vice-President, Information Security Policy and Governance

- Adapted Visa's information security strategy, policies, and procedures for cloud, mobile, and agile driven changes

- Worked with executive management and product teams as a subject matter expert

- Evaluated product initiatives for compliance with information security and privacy policy

6. Oracle Corp. (1999-2004)

- Vice-President, Applications Development

- Managed a team to develop and deploy Oracle CRM Strategic Customer Program

- Grew CRM suite from $10 million to $1 billion revenues in 5 years

- Program became a value-added selling tool to close strategic accounts

7. Metricom (1998-1999)

- Director of Business Apps / Acting CIO

- Managed all business apps for a wireless networking start-up

- Acted as CIO for six months

8. Intuit (1997-1998)

- Manager of Corporate Apps

- Responsible for Oracle Enterprise Business Suite and related interfaces

- Facilitated dialogue between Finance and IT as a member of CFO's staff

9. Sun Micro (1996-1997)

- Business Solutions Consultant

David Williamson's education history includes earning an MBA in Financial Systems from the University of San Francisco School of Management from 1994 to 1995. Prior to that, they studied law at the University of San Francisco School of Law from 1981 to 1983, but did not complete their JD degree. David obtained their bachelor's degree in Rhetoric and Computer Science from the University of California, Berkeley, where they attended from 1977 to 1981.

In addition to their formal education, David has obtained various certifications. These include Oracle Applications Development and Oracle Database Administrator certifications from Oracle in 1997 and 1996 respectively. David is also certified in CGEIT, CISSP, and CRISC from ISACA. In progress, David is pursuing the Certified Information Privacy Professional/United States (CIPP/US) certification from the IAPP - International Association of Privacy Professionals. Furthermore, they have earned the Stanford Advanced Program Mgmt Certification from Stanford.