Modern CISO Network: Board Book
A directory of board-ready security leaders
location
AMER
areas of expertise
- Enterprise governance
- Risk and policy management
- Regulatory compliance
- Data privacy
- Cloud security Mergers and acquisitions Data protection
- Awareness program
- Compliance and audit
- Recruit and retain top talent
Doug Leder
VP and Head of Information Security
Policygenius
Doug Leder, Vice President and Head of Information Security at Policygenius, is an IT security, governance, risk, compliance, and control leader with experience designing and implementing information security strategies, protecting sensitive data and systems, and implementing security-first mindsets. As a key decision maker in merger and acquisition (M&A) due diligence for both the acquiring and acquired entities, Doug creates effective, but balanced, security programs tailored to the specific business risks and requirements of highly regulated industries like FinTech and HealthTech. He focuses on providing knowledge and tooling to shift security responsibilities ‘left’ to ensure security is ingrained into everyday processes. Doug has a keen focus on closely partnering with business/tech stakeholders and identifying a secure path forward for the business to achieve goals in a secure manner.
His work in educating employees about the importance of information security, and how it impacts their individual roles, has been critical in improving the overall security posture of the organizations he has worked with, including Policygenius, Ziff Davis/J2 Global, Cota Healthcare, Aeropostale, and Avon Products Inc. His experience identifying, addressing, and mitigating potential security risks, particularly in M&As, new business processes, vendors, and technologies, is a testament to his strategic approach to information security management. Before joining Policygenius, Doug held various positions at Ziff Davis, including Director of Information Security. He established
and implemented the information security program for all
business units falling under the Ziff Davis umbrella, which
included properties such as PCMag.com, Mashable.com, Offers.
com, Speedtest.net, and IGN.com, among others.
Prior to that role, he directed information security and compliance at Cota Healthcare, where he formulated strategic security roadmaps that significantly elevated the company’s security posture while ensuring stringent HIPAA compliance and undertaking comprehensive risk assessments.
Doug held various consulting roles at Deloitte for more than six years. He managed international compliance engagements, presented risk evaluations to executive committees, and developed industry-specific training. He was also a board member of iMentor for more than 10 years, a mentoring program for young executives.