People

Cindy Harro NEW 2020

Cindy Harro

SVP, Cloud Risk, Security and Regulatory Governance - Bank of America


Cindy's passion for Information Technology and Cybersecurity is a result of her hands-on and technology leadership experiences across Bank of America and IBM.  She has held Director level roles in Information Security, Regulatory Compliance and Software Development and holds the prestigious CISSP (Info Systems Security) and CISA (Info Systems Auditor) certifications.  Cindy is articulate and communicates complex topics easily to senior executives as well as technical staff, in small settings and large stages.   

Today, Cindy manages the public cloud risk framework, which she implemented at Bank of America.  She ensures that there is full coverage and adherence to regulatory requirements for all use cases, including SaaS, PaaS and IaaS.  She faces off to auditors inside and outside of the bank, demonstrating that public cloud use cases are inspected, risks are identified and managed effectively. Cindy plays a leadership role in the cross-financial services industry effort to develop standard requirements for Cloud Service Providers managing financial data. 

Previously, Cindy was the Security, Compliance and Risk Program Director for IBM's "Watson Platform for Health" PaaS cloud.  She directed a global organization of SW developers to build secure SW that complies with regulations, including HIPAA, in an Agile environment.  She managed SW application vulnerability scanning & penetration testing.  Cindy performed a similar role for the IBM Analytics Cloud.  

Cindy holds a B.S. degree in Computer Science from The Pennsylvania State University.  She works in mid-town Manhattan and loves sports, boating and beaches.