Randall Romes : Professionals : CLA (CliftonLarsonAllen)

Overview

Information Security, Penetration Testing and Vulnerability Assessments, Cyber Fraud Incident Response, PCI Credit Card Security Compliance, HIPAA Security Compliance.

Randy has been with CLA since 1997. His early roles included IT implementation consulting, Great Plains accounting software implementation, and internal IT help desk and desktop support. Since 1999 Randy has led the cybersecurity consulting practice at CLA performing and leading cybersecurity risk assessments and penetration testing, assisting clients in responding to intrusions and breaches, and advising clients on mitigating cybersecurity risks and improving IT operations.

Randy’s areas of expertise encompass IT Operations and Cyber Security Risk and Strategy, Penetration Testing and Vulnerability Assessments, Cyber Fraud Incident Response, PCI Credit Card Security Compliance, HIPAA Security Compliance. The teams Randy has been part of leading serve most of the firms client industries including Health Care and Life Sciences, Financial Services, State and Local Government, Technology Services, Retail, and Transportation. Randy has served in an advisory role for the Board of Directors, Audit Committee, and Supervisory Committee for several financial institutions over the years.

Randy is a thought leader, active speaker, and teacher through his support of a wide variety of local, regional, and national associations. He is a regular instructor at for the CUNA Management School at the University of Wisconsin, the Graduate School of Banking at the University of Colorado - Boulder, the Florida Government Finance Officers Association, and a variety of Leading Age associations where teaches IT/Cybersecurity risk management.

Education

BS-Education University of Wisconsin MA-Educational Technology - St. Thomas University

Randy maintains the following certifications:

CISSP (Certified Information Systems Security Professional)
CRISC (Certified in Risk and Information Systems Controls)
CISA (Certified Information Systems Auditor)
MCP (Microsoft Certified Professional – 6 credentials)
PCI-QSA (Payment Card Industry – Qualified Security Assessor)

In the community

Association/Civic Involvement (will display on public website)

ISC2, ISACA, ACUIA, CUNA, NASCUS, FGFOA, and Leading Age

Boys Scouts of America - Assistant Scout Leader, Eagle Coach and Merit Badge Counselor, High Adventure Coordinator, Wood Badge Trained

Resources and events

Event 5/7/2024 – 5/9/2024
CUNA Cybersecurity Conference with NASCUS
Event 4/10/2024 – 4/12/2024
CASE Conference for College and University Foundations 2024
Webinar 4/4/2024
PCI Readiness, Risk Management, and Compliance for Higher Education Institutions
Webinar 2/20/2024 – 2/27/2024
2024 Higher Education Virtual Conference
Webinar 1/24/2024
PCI Readiness, Risk Management, and Compliance for Financial Institutions
Event 12/4/2023 – 12/6/2023
CUNA Supervisory Committee & Internal Audit Conference
Event 10/24/2023
Evolving Cybersecurity Risks and Trends
Event 9/21/2023
CLA’s National Association Conference
Media coverage 7/7/2023
CLA Joins CUNA to Discuss the State of Phishing
Media coverage 6/23/2023
CLA’s Romes Tells CUNA News: When It Comes to Cybersecurity: Be Prepared