Cutter Consortium consulting services are provided by the top thinkers in IT today -- a distinguished group of internationally recognized experts committed to providing top-level, critical, objective advice.

Senior Consultant Teams
Rebecca Herold
Senior Consultant

Rebecca Herold is a Senior Consultant with the Cutter Consortium's Enterprise Risk Management & Governance practice. She is an information privacy, security and compliance consultant, author and instructor. She is also an adjunct professor for the Norwich University Master of Science in Information Assurance (MSIA) program. Rebecca has provided information security, privacy and regulatory services to organizations in a wide range of industries throughout the world for over 16 years, assisting them with their information privacy, security and regulatory compliance programs, content development, and strategy development and implementation.

Rebecca was instrumental in building the information security and privacy program while at Principal Financial Group, which was awarded the 1998 CSI Information Security Program of the Year Award. Some of the assignments she has completed for clients include creating detailed technology, organizational and operational disaster recovery and business continuity standards; performing security reviews for offshore data processing vendors for a multinational healthcare and financial company; creating privacy standards; creating a HIPAA applications security risk analysis methodology; and creating international privacy training content.

Previously, Rebecca was the Vice President, Privacy Services and internal Chief Privacy Officer at DelCreo, Inc. for two years, where she developed the organization's corporate-wide privacy policy and created the roll-out strategy and plan and developed, implemented and managed the DelCreo privacy governance program which included controls to reduce privacy risks and to ensure appropriate access controls based upon job responsibilities. Prior to DelCreo, Rebecca was Chief Privacy Officer and Senior Security Architect for QinetiQ Trusted Information Management, Inc. (Q-TIM) where she worked since the inception of the company as Securus in November of 2001. Prior to joining Q -TIM, Rebecca was the Global Security Practice Central Region Security Subject Matter Expert for 2 years at Netigy (which became ThruPoint in September 2001).

Prior to joining Netigy, Rebecca was Senior Systems Security Consultant at Principal Financial Group, where she began her career at there as a CICS systems analyst, and moved into an IT auditor position. It was at the recommendation of one of her audits that the Information Protection department was created, and she was asked to help build the department and functions. Her efforts helped PFG to be awarded the CSI Outstanding Information Security Program of the Year award in 1998.

Rebecca is a member of the MaxMD .md Online Medical Advancement Council (www.medcouncil.md) as well as on the advisory board of I'D Check, a biometric software company, and on the Norwich University Journal of Information Assurance Board of Review. Rebecca is frequently interviewed and quoted in diverse publications such as Consumer Financial Services Law Report, hcPro Briefings on HIPAA, SC Magazine, SearchSecurity, Information Security, Business 2.0, Disaster Resource Guide, The Boston Herald, Pharmaceutical Formulation and Quality, ITBusiness Edge, Fortifying Network Security, IT Architect, CIO Strategy Center, Physicians Weekly, IEEE's Intelligent Systems and others, including the "Privacy Piracy" California radio broadcast. She can be reached at consulting@cutter.com.

Rebecca Herold