Greg Hughes

CISM – Technology, Security and Risk Management Leader


Certified security, risk and technology senior leader with more than 18 years business management experience. Primary focus is developing creative and innovative ways to address complex business opportunities. Pilot, airplane builder, photographer, community volunteer.


VP, Risk and Information Security Officer at Fiserv
March 2012 – Present
As senior leader for risk and information security, manages multiple organizations accountable for risk strategy and operations. Responsible for governance of web and mobile banking software security and the development life cycle; release management of products and services; change management; security operations; audit and regulatory compliance; and security/risk standards and practices. Supervises management teams and senior staff. Serves as primary risk management contact in relationships with external customers and vendors. Coordinates and consults closely with community leaders in development of risk/security operations and practices.  Prior role: Director, Information Security and Risk

Director of Security Strategy at Fiserv
March 2010 – March 2012 (2 years 1 month)
Supervised and led team of infosec consultants and architects designing, managing and driving enterprise-wide security efforts, projects and controls. Responsibility for full scope of IT projects and delivery of enterprise systems and software, facilitating collaboration across multiple businesses to influence and ensure successful and effective delivery. Established security strategy and led decisions around enterprise-wide technologies and controls.

Security Strategy Consultant at Fiserv
June 2009 – April 2010 (11 months)
Provided expertise in enterprise security business practices and management to a large Fortune-500 company in the financial services market. Responsible for guiding key business initiatives and aligning the plans of various business units with enterprise business and security strategy.

Security and IT Management Consultant
August 2007 – May 2009 (1 year 10 months)
Executive-level consulting on IT and cybersecurity projects for various industry clients, including government, insurance, financial services and software sectors. Work included program development for large corporate IT departments, as well as security management programs and application of ISO 27000-series standards. Assisted clients in defining, building and improving IT and security practices.

Chief Security Executive & Vice President of IT and Security at Corillian Corporation
February 2006 – August 2007 (1 year 7 months)
Accountable for corporate IT and security operations, budget and performance measurement. Led team and process for organization’s security certification under ISO 27001. Oversaw development and implementation of security standards, policies, and practices. The scope of the role included oversight and design/development of a line of commercial security software and management of related staff and business processes; oversight of security strategy and operational activities related to Corporate Offices, Product Development, Professional Services, Hosting Services, Corporate Information Technologies, and Facilities; Oversight and coordination of all Information Technology efforts, infrastructure and staff. Led teams in merger/acquisition due diligence and business integration.

Director of Security and IT at Corillian
August 1999 – February 2006 (6 years 7 months)
Responsible for the day-to-day IT and Security operations for a publicly-held company in the financial services software sector. Led teams in security investigations in conjunction with federal and local law enforcement. Managed teams of software developers and architects in designing and building a successful line of commercial software for online web application security. Led the company’s complex information technology planning, overall strategy, design and operations for multiple workplace locations. Prior to this position served as manager of enterprise IT applications and webmaster.

Law Enforcement Officer
July 1992 – March 1999 (6 years 9 months)
Law enforcement officer serving in public schools, juvenile division detectives, and patrol division. Valedictorian, New Mexico Law Enforcement Academy (1992). Was one of two officers that piloted implementation of a community policing program, which required bringing together community members, business and law enforcement in a cooperative effort to perform problem-solving policing activity. Served as detective in the juvenile division. Taught elementary, middle and senior high school students, with primary emphasis on grades six-nine. Conducted abuse investigations involving child victims and worked closely with other protection agencies on complex, difficult criminal and civil cases. Testified as expert witness in areas such as gang activity/violence and juvenile cases.

1985 – 1992 (8 years)
Professional news and sports photographer for newspaper, magazine and other publications. Staff photographer and photo editor for print publications and collegiate sports information office.


University of Missouri-Columbia
Filed of Study: Journalism, 1986 – 2000
Activities and Societies: Athletic Department Sports Information Office, University News Publications Office

Los Alamos High School
Graduate, 1985

Volunteer Experience

Board of Directors, Experimental Aircraft Association Chapter 105
2013 – Present (5 yrs)
Member of the Board of Directors, serving as coordinator for youth activities and administration of training scholarships.

Mentor and Advisory Board Member, Teen Flight – Airway Science For Kids
2013 – Present (5 yrs)
Serving as mentor for youth in a STEM program focused on teaching disadvantaged youth life and practical skills through a hands-on airplane building project. Member of advisory board for the local program.

Board of Directors (past), Cops on Top, Inc.
Board of Directors (past), Westside Service Center
Youth Group Leader (past), St. Bartholomew’s Episcopal Church
Foster Parent (past), State of New Mexico (7 years)