John Allen is a global cyber risk and technology security executive who provides organizations with architecture, infrastructure, and operations support. John is frequently called on to advise clients on topics that are critical to the Chief Information Officer (CIO) and Chief Information Security Officer (CiSO) within the Banking, Financial Services, Manufacturing, Media, and Technology industries.
He designs and implements multiyear, multilayer architecture, governance, and security programs, processes, and systems for middle market to global 500 companies.
As a Managing Director – Cyber Technology Consulting at EY, John led a team of more than 25 professionals across Financial Service and Commercial practices, overseeing all client engagement quality monitoring, reporting, and compliance for a multi-million cyber security consulting practice.
Key engagements included:
- Attack and Penetration service for Global Technology and Media client. John assembled a global team that performed over 80+ tests per year to meet client and third-party requirements. As part of the multiyear effort, the team saved client 25% YOY.
- Modernize Identity and Access Management program for Global Technology and Media client. John’s team architected and deployed a state-of-the-art Enterprise Identity and Access Management system that reduced and simplified the number of tools by 20% and reduced the client’s run costs by over 31% YOY.
- Design and implement a multiyear contemporary Vulnerability Management Program for Global Advanced Manufacturing client. John’s team simplified tool sets while increasing the output by ^25%. The team also designed a roadmap of ROI of ~27% that was achieved in year 1.
- Develop and implement structure, governance, and function of original CISO role for Global Investment Bank and Asset Management client. John architected and defined the specific CISO role where it had not formally existed before, including enhanced security policies to protect and enhance business outcomes. Implementation of this function and processes increased the quantifiable security posture of the firm by over 45%.
As Managing Director for Mycroft, John led 20+ global professionals serving this preeminent Global Investment Bank and Asset Management firm. He developed key technology initiatives and was responsible for IT and Cyber functions including Infrastructure, Active Directory, Access, Cloud, Data, and Transport. John began his career with Mutual Benefit Life Insurance.
John received his Bachelor of Arts degree in History from the University of Pennsylvania and was a member of the university’s Ivy League championship baseball team.