Bertrum Carroll

Vp, CISO at Employers

Bertrum Carroll has an extensive work experience in information security and risk management. Bertrum started their career in 2000 as an Information Security Manager at General Electric (GE), followed by roles as Director of Global Infrastructure Operations at Rockwell Automation and Vice President of Information Security and Risk Management at ING Insurance/Investment Management. From 2010 to 2013, they served as Director of Global Information Security at Johnson Controls, leading security professionals in multiple locations. After that, they worked as the Director of Global Information Security Operations at SC Johnson, where they successfully transformed and managed enterprise information security operations. Currently, they are serving as the VP and Chief Information Security Officer (CISO) at EMPLOYERS, responsible for the development, delivery, and management of security measures to protect company, customer, and claimant information. Throughout their career, they have demonstrated expertise in leveraging ISO 27001 Security with an ISO 31000 Risk-based approach and has held leadership positions reporting to executive leadership and board committees. Prior to their corporate career, they served for 27 years in the US Army, holding the rank of Lieutenant Colonel (RET) and gaining experience in automation and communication systems, logistics support, project planning, and personal support.

Bertrum Carroll has a diverse education history. Bertrum holds a Master's degree in Electrical Engineering from Iowa State University, a Master of Science degree in Administration from Central Michigan University, and a Bachelor of Science degree in Computer Science, also from Iowa State University. Most recently, in 2021, they obtained a Graduate Certificate in Cybersecurity from the University of Nevada, Reno.

Additionally, Bertrum has acquired multiple certifications throughout their career. Some of these certifications include the Boardroom Certified Qualified Technology Expert (QTE), obtained from the Digital Directors Network in July 2023; the Certified Web Application Security Professional, obtained from Network Intelligence in December 2020; and the Foundations of Operationalizing MITRE ATT&CK and Foundations of Purple Teaming certifications, both obtained from AttackIQ in August 2020. Aside from these certifications, they also hold the CIPP - Certified Information Privacy Professional/US certification from the International Association of Privacy Professionals (IAPP) obtained in April 2018, the ITIL Foundation certification from AXELOS Global Best Practice obtained in May 2014, and the Lean Six Sigma Green Belt Certification from GE obtained in July 2012.

Bertrum has expressed an interest in obtaining further professional certifications such as the CGEIT - Certified in the Governance of Enterprise IT, CISA - Certified Information Systems Auditor, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, CRISC - Certified in Risk and Information Systems Control, Certified ISO 27001 Internal Controls Architect (CICA), Certified ISO 31000 Internal Controls Risk Analyst (CICRA), and Certified ISO27001 Lead Auditor. However, it is not specified whether they have obtained these certifications or when they obtained them.

Links

Previous companies

Johnson Controls logo
Rockwell Automation logo
NN Inc logo

Org chart

Sign up to view 0 direct reports

Get started