It is important for a CISO to possess both breadth and depth in IT Security. In his current work Phil serves as Chief Information Security Officer for a major IT Software corporation as well as running an IT Security Consulting company. He has held senior security positions at several corporations, including the head of operational security for a medical device manufacturer, Chief Security Officer for a major financial services corporation and Business Security Director for an investment company. In various leadership roles, Phil created and implemented Information Security Policies, led organizations through many local, US Federal and international compliance efforts, implemented security awareness programs, and established comprehensive security audit frameworks based on industry standards. Phil also implemented Enterprise Risk Management and global privacy programs to address compliance and privacy internationally, as well as for specific regions such as European Union, Australia and California. Phil is the recipient of multiple CISO of the Year awards, written and spoken extensively on a variety of security topics (please see article references at https://www.ivanti.com/blog/author/phil-richards and https://www.csoonline.com/author/Phil-Richards/).

Since it is important to enable the new generation of security leadership, Phil conducts training workshops for current and future CISOs, CIOs and Board Members. Transforming an organization requires maintaining focus on objectives, providing clear communication, and offering constant coordination with executive leadership, and these have been lifetime objectives for Phil.

For customers he strives to achieve a robust information security program and enable the organization to thrive in an environment where regulation and stakeholder expectations place incredible pressure on information resources. High-quality information security is crucial to organizational success.