Associate Director, Security & Privacy
Diana Candela, a Cyber-Risk strategist who characterizes the alignment of Tech, Security, and Privacy. A mostly anonymous leading expert on multi-national IT Regulatory Compliance with over 20 years experience across a variety of public and private sectors including Manufacturing, Energy, Banking, Healthcare and Government. Diana promotes sound, risk-based decisions to drive security and privacy as by-products of compliance activities. Diana is also a cheery, public speaker and cyber security blog enthusiast, who casually avoids the tech lingo and loves to drive Governance, Risk, and Compliance (GRC) operational excellence topics to both technical and non-technical audiences alike. Diana holds multiple certifications including: CEH, ECSA, CNDA, LPT, CSSGB, ITIL, DHS-FEMA-NIMS. She’s been a part of the Comprehensive Cyberterrorism Defense (CCD) Program and has completed the Cyberterrorism First Responder (CFR) and Cybersecurity Proactive Defense (CPD) trainings. She has a MS in Computer and Information Systems Security/Information Assurance and almost a PhD.