Larry Wilson is the former Chief Information Security Officer (CISO) in the University of Massachusetts President's Office, where he was responsible for developing, implementing and managing the University of Massachusetts Information Security Policy and Written Information Security Program (WISP). The University's program is based on a "NCSF Controls FactoryTM" approach that Larry created to help organizations operationalize the NIST Cybersecurity Framework and industry best practices (ISO 27001, SANS 20 Critical Controls, etc.) across an enterprise and its supply chain. This approach has been implemented consistently across all five UMass campuses, as well as at six other universities in Massachusetts.
Prior to joining UMass, Larry was Vice President, Network Security Manager at State Street Bank. He was also the IT Audit Manager for the consulting practice Deloitte Enterprise Risk Services (ERS), where he managed a Sarbanes Oxley compliance audit for MasterCard International.
Larry holds a Master of Science degree in Civil/Structural Engineering from the University of New Hampshire. His industry certifications include CISSP, CISA and ISA (PCI Internal Security Assessor). A member of the Advisory Board for Middlesex Community College and the CISO Advisory Board for Oracle, he co-chairs the Massachusetts State University and Community College Information Security Council, and serves as Certification Director for ISACA New England. He has been teaching CISA certification training for ISACA for five years.
In addition to being named one of the top two most influential people in cybersecurity by Security Magazine in 2016, Larry was a finalist for Information Security Executive® (ISE®) of the Year for both the Northeast Region and North America, and was also the recipient of a “People Who Made a Difference in Security” award at the SANS Cyber Defense Initiative Conference in Washington, D.C. in 2013.