Milinda Rambel Stone is an executive security leader with proven experience building and leading security programs and teams. Milinda has more than 20 years experience creating and managing large-scale information security programs in technology, healthcare, and financial services. Milinda has knowledge and experience in areas of information security, cloud security, compliance, audit, and corporate governance.

Certifications

• Certified ISO 27001 Lead Auditor awarded 2024
• Certified Information Security Manager (CISM)
• Certified Information Security Auditor (CISA)
• Certified Risk Information Security Control (CRISC)
• Completed MBA in Computer Information Security at North Central University
• Completed Master of Science in Software Engineering at the University of Minnesota
• Currently working on a Ph.D. in Cyber Defense at Dakota State University

Career Accomplishments

As a former Software Engineer, Milinda has passion and experience in building Cloud Security and DevSecOps (Development, Security, and Operations) environments.

With ISO standards, in particular ISO 27001, as her guiding frameworks, she excels at building remote Information Security Programs and teams, Cloud Security Architecture and DevSecOps implementations.

Milinda is a dynamic public speaker and is currently completing her PhD in Cyber Defense at Dakota State University. Her research interests include Digital Forensics, Artificial Intelligence and Predictive Analytics.

• Developed strategy and lead oversight for AWS Environment (NIST 800-53, RS & CIS AWS)
• COVID19 Task Force member charged with business continuity & employee safety
• Developed healthcare cloud security program, achieving ISO27001 Certification, SOC 2 Type II & HIPAA Attestation
• Created and implemented security program for supply chain SaaS organization, ensuring HIPAA & SOX compliance resulting in ISO & SOC 2 certifications and HIPAA Attestation
• Created Security program for non-profit that emphasized risk reduction and process efficiency
• Built three separate Security Internship Programs that created pipeline for hiring security talent
• Delivered over 1000+ hours of corporate software engineering and security training

Skills and Expertise

• Expert advisor for ISO 27001 Security Program Design and Implementations for numerous customers
• Leads multiple ISO 27001 Implementations and successful preparations for third-party certification
• Extensive knowledge of regulatory requirements including GLBA, HIPAA, SOX, NIST CSF, and NIST 800-53
• Provides Security Assurance expertise in regulated vertical markets: healthcare, software, education, financial and retail
• Leads successful AWS and Azure Cloud Security Control Implementations
• Development and implementation of Information Security operations programs
• Builds and Leads Security Incident Response Programs
• Cyber threat intelligence implementation
• Cloud Security and DevSecOps product management
• Risk Management Program strategic development and oversight of enterprise information assets
• Designs, develops and deploys business-driven, standards-based Information Security Programs
• Provides Information Security Risk Assessment of critical business processes and security policy supporting corporate governance initiatives
• Completes Information Security audit and assessment for Merger and Acquisition due diligence
• Disaster Preparedness/Business Continuity Planning and Incident Response subject matter expert 
• Designs and manages deployment of Security Architecture: secure network design, firewall and intrusion detection deployment, application security and physical security
• Over twenty years’ experience providing Information Security expertise in North America, Canada, and Ukraine

Professional Affiliations

• Cyber Security Summit Think Tank Member
• Advisory Council Member for SecureWorld Expo
• PCs for People Board Member
• Information Systems Audit and Control Association (ISACA) Platinum member
• CISO Executive Network Member
• Member of the CybHER Institute – Dakota State University
• CISO Executive Network Member