Patrick Lafleur, CRISC, CDPSE

Patrick Lafleur, CRISC, CDPSE has over nine years of experience in information security, compliance, and IT roles. In 2021, they began their current role as Information Security Manager at Maple (getmaple.ca). In this role, they are responsible for managing the information security and compliance program and championing security and privacy awareness across the organization.

Prior to their current role, they served as Global Information Security Compliance Manager at Intelex Technologies ULC from 2018 to 2021. In this role, they managed the team responsible for the information security and privacy compliance programs, including SOC 2, ISO 27001, GDPR, CCPA, HIPAA, and SOX compliance. Patrick also supported sales activities by helping prospects and customers understand Intelex's information security programs, and by reviewing relevant provisions in customer contracts.

From 2016 to 2018, they served as Manager of Compliance and IT and Information Security Officer at Kira Systems, where they were responsible for maintaining internal policies and ensuring processes align with policies. Patrick also provided information technology support and was part of the team that successfully guided Kira Systems through both SOC 2 Type 1 and SOC 2 Type 2.

From 2014 to 2016, they served as a Teaching Assistant at Trent University. From 2012 to 2014, they served as Policy Inventory Clerk and Administrative Assistant (Verification Department) at Stewart Title. In these roles, they were responsible for the maintenance of the catalogue of policy numbers for paper-based policies, as well as the completion and mailing of policies, and for receiving incoming files and distributing them evenly to the Verification clerks.

Patrick Lafleur obtained a Bachelor of Science (B.Sc.) in Chemical Physics from Trent University between 2010 and 2014. Patrick then went on to obtain a Master of Science (M.Sc.) in Materials Science from Trent University between 2014 and 2016. In 2020, they obtained the Certified In Risk and Information Systems Control (CRISC) certification from ISACA in January and the Certified Data Privacy Solutions Engineer (CDPSE) certification from ISACA in July.