Tom Garrubba, Vice President, is an internationally recognized subject matter expert, lecturer, author, and blogger on third-party risk, and is the head instructor for the Certified Third-Party Risk Professional (CTPRP) certification program. He is a contributor to Future of Sourcing, blogged for the Huffington Post’s Business section, and for Government Health IT, ISACA, Risk.net, and numerous eGRC websites. Previously, Tom was the Senior Privacy Manager at a Fortune 10 healthcare company where he established policies and procedures governing their vendor assessment program, overseeing all assessments for existing and potential third-party service providers who were exposed to personally identifiable information (PII), protected health information (PHI), credit card/cardholder (PCI), and proprietary data. Tom has over 20 years of experience in IT security and privacy controls, as well as audit and compliance in both private industry and public consulting.
Tom is on the Forbes Technology Council and outside of work, Tom is involved with the Civil Air Patrol Squadron 603 and enjoys coaching (softball, baseball) and making music with his kids!