Frank Helm
Business Information Security Officer | CISA, CRISC, CCSP
Frank is a cyber security professional with extensive experience in risk and exception management, threat modeling, and M&A activities. Frank presently serves as a Business Information Security Officer (BISO) at BMO Financial Group where he is the primary Cyber SME for Operations across the bank. Frank hails from Harrisburg, Pennsylvania, and now lives in Chicago, Illinois. Away from the desk, Frank formerly operated an online video game community of >1000 users and presently organizes a bi-weekly running club. He also enjoys both video and tabletop games, and is trying to instill the hacker mindset in two tiny humans.
- Location
- Chicago, Illinois, United States
- [email protected]
- Website
- https://www.BeerMetalPC.com/
- FrankHelm
- Credly
- BeerMetalPC
- Threads
- BeerMetalPC
Experience
– present
Business Information Security Officer at BMO Financial Group
BISO supporting BMO’s Technology & Operations group.
Highlights
- Supporting many Cyber-led initiatives, with emphasis on identifying business impacts unforeseen by leading area and providing actionable feedback.
- Cyber SPOC for all Operations areas within BMO. Reviews and opines on exception requests (e.g. DLP, USB access, blocked email release, etc.), assits with a wide variety of stuck/no-known-process issues, and routes requests to appropriate resources when beyond BISO capability.
- Provides metrics and reporting to multiple lines of business, including phishing test results and pending access certifications.
–
Information Security Specialist at BMO Financial Group
Cyber M&A Lead and ‘Technical ISO.’
Highlights
- Cyber M&A delivery lead for acquisition of Clearpool Group Inc. as well as multiple divestiture and pre-deal due diligence efforts.
- Fulfilled 'TISO' responsibilities including project consulting, Vuln/SAST/DAST scan reviews, production data transfer requests, etc. while team transitioned to new threat modeling program.
- Performed threat modeling application risk assessments as part of project requirements to a high quality standard under short timeframes. Notably led the bank's first STRIDE threat modeling engagement in support of a major cloud migration project.
–
Senior Security Analyst at BMO Financial Group
Cyber M&A Delegate and Senior GRC Analyst.
Highlights
- Cyber M&A delivery delegate for acquisition of KGS-Alpha Capital Markets.
- Supported technology-managed application controls testing via process enhancements, UAT, end-user education and support, and RSA Archer data imports.
- Continued to perform prior role GLBA/OSFI assessments and other misc. GRC taskings in addition to this new remit.
- Recipient of 'Being BMO' award for fiscal year 2019.
–
Information Security Analyst at BMO Harris Bank
Highlights
- Provided recommendations for 'PAD' process to avoid regulatory issues that went forward to full implementation.
- Delegate to Technology Risk Officers, reviewing tech risk in all projects >$1MM in spend in P&BB, Wealth, and Capital Markets.
- Fulfilled multiple compliance functions, including FFIEC controls assessment of web-facing applications, and combination GLBA/OSFI-driven controls assessments of high risk LOBs.
–
Information Security Consultant at SolomonEdwards
Highlights
- Developed penetration test documentation and sales material based on NIST guidance and open-source Penetration Testing Execution Standard.
- Attended employer-sponsored training on X-Ways Forensics Toolkit (v18.1).
–
Technician at Alliance Computers
Retail PC sales, customer support, and repair.
Highlights
- Honed problem-solving and customer-facing communication skills.
- Operated independently, fulfilling back office repair and front office sales responsibilities. Often solo at a sateillite location.
- This role satisfied an internship requirement at Harrisburg University of Science and Technology.
Volunteer
–
Safety Team at Blue Team Con
Safety team volunteer at Blue Team Con, responsible for safety of the attendees and adherence to the conference code of conduct.
Highlights
- Worked multiple safety shifts at Blue Team Con 2022.
- Also assisted with teardown, and storage/upkeep between 2022-2023 events.
–
Volunteer at Computer Ministry Inc
Organization which collects and recycles computers and other electronics. Devices that are still usable are securely wiped of donor’s data, refurbished, and distributed to other non-profits.
Highlights
- Worked with Computer Ministry as a volunteer throughout high school and as available during undergrad.
- Was an excellent means for someone getting into IT to see the full spectrum of consumer and small business devices, fast.
Education
–
Bachelor of Science in Computer Science from Harrisburg University of Science and Technology with GPA of 3.6
–
Undergraduate Studies in Computer Science from East Stroudsburg University of Pennsylvania with GPA of 3.0
Skills
- Risk Management
- Keywords:
- Cyber Security
- Keywords:
- Knowledge Management
- Keywords:
- Regulatory Compliance
- Keywords:
- Mergers & Acquisitions (M&A)
- Keywords:
- Threat Modeling
- Keywords:
- Software
- Keywords:
- Messaging Administration
- Keywords:
- Soft Skills
- Keywords:
Languages
- English
- Fluency: Native Speaker
Interests
- Sports
- Keywords:
- Homelab
- Keywords:
- Running
- Keywords:
- Food and Drink
- Keywords:
- Tabletop Games
- Keywords:
- Video Games
- Keywords:
