Grady Summers to lead Information Security Program Management services at Ernst & Young LLP
New York, 30 November 2010 — According to Borderless security: Ernst & Young’s 2010 Global Information Security Survey, the risks that threaten company data increase as organizations embrace emerging technologies such as mobile computing, cloud computing and social networking. To help companies assess, transform and sustain their information security programs and better manage information security (IT) risks, Ernst & Young LLP announced today that Grady Summers has joined the firm as its Americas Leader for Information Security Program Management services.
“We are delighted to welcome Grady and the knowledge and industry perspective he brings with him,” says Bernie Wedge, Americas IT Risk and Assurance practice leader at Ernst & Young LLP. “He joins our firm at a time when companies are operating in a world that requires borderless security and the trend toward anywhere, anytime access to information can bring significant risk. Organizations need increased confidence in this virtual world and require an information security program that addresses the challenges of today’s mobile environment. As a chief information security officer at a major global organization, Grady dealt with these issues and is unique in his ability to help our clients transform their security programs.”
In today’s market place, the focus on information security is shifting from a concentration on compliance alone, to how to achieve improved business performance, as organizations recognize the need for information security and privacy as an enabler to technology transformations. Summers will drive the firm’s Information Security Program Management services, which helps companies accelerate the development of security strategies and transformation programs, implement leading practices for security organization and governance as well as build dashboard reporting and metrics. These services also include co-sourcing or outsourcing of information security functions and the chief information security officer (CISO) role.
Ernst & Young LLP is a leader in Information Security services with extensive experience in helping clients assess, build and improve all aspects of information security including security program management, threat and vulnerability management, identity and access management and privacy and data protection programs across a variety of industry sectors. Information security is a key element of the IT Risk and Assurance competency within the firm’s Advisory Services practice. This group works with organizations to address the emerging risks associated with an increasingly mobile workforce, cloud computing and social networking to protect company, employee and customer data.
“Ernst & Young is known for being fact-driven and delivering measurable results -- it’s a privilege to join the firm,” says Summers. “This is certainly a challenging time for organizations, but also an exciting time for information security professionals. We have an opportunity to help organizations develop and improve information security programs that will ultimately drive organizational transformation, improve their security and risk infrastructure and enable enhanced business performance.”
Summers brings a strong background in information security program management. He joins Ernst & Young LLP from General Electric (GE), where he was CISO since 2006. In this role, he led and transformed GE’s global information security program and IT controllership framework across the business by developing GE’s programs for IT risk, incident response, identity and access management, security policy and centralized security operations. While leading the firm’s response to targeted threats and cyber espionage, he built GE’s first Computer Incident Response Team.
In addition to his role as CISO, Summers also was a leader of GE’s executive councils for Information Security, Information Governance and IT Risk. Earlier in his career he served as a Chief Technology Officer for the GE Corporate division. He also participated in the GE Information Management Leadership Program and completed a number of prestigious training courses at the GE Jack Welch Education Center.
Summers earned an MBA from Columbia University, and a BS in Business/Computer Systems and Political Science from Grove City College in Pennsylvania. He is an active leader in industry organizations, including TechAmerica Cyber CxO Council, (ISC)2 Advisory Board of the Americas, and the CIO Leadership Network. Summers is also the Conference Chair for the 2010 CISO Executive Forum.
About Ernst & Young's Advisory Services
The relationship between risk and performance improvement is an increasingly complex and central business challenge, with business performance directly connected to the recognition and effective management of risk. Whether your focus is on business transformation or sustaining achievement, having the right advisors on your side can make all the difference. Our 20,000 advisory professionals form one of the broadest global advisory networks of any professional organization, delivering seasoned multidisciplinary teams that work with our clients to deliver a powerful and superior client experience. We use proven, integrated methodologies to help you achieve your strategic priorities and make improvements that are sustainable for the longer term. We understand that, to achieve your potential as an organization, you require services that respond to your specific issues, so we bring our broad sector experience and deep subject matter knowledge to bear in a proactive and objective way. Above all, we are committed to measuring the gains and identifying where the strategy is delivering the value your business needs. It’s how Ernst & Young makes a difference.
About Ernst & Young
Ernst & Young is a global leader in assurance, tax, transaction and advisory services. Worldwide, our 141,000 people are united by our shared values and an unwavering commitment to quality. We make a difference by helping our people, our clients and our wider communities achieve their potential.
For more information, please visit www.ey.com.
Ernst & Young refers to the global organization of member firms of Ernst & Young Global Limited, each of which is a separate legal entity.
This news release has been issued by Ernst & Young LLP, a member firm of Ernst & Young Global Limited located in the US.