Steve Briones
About Steve Briones
Steve Briones is a Security Compliance Manager at Expedia Group with over 20 years of experience in information security and compliance, holding numerous certifications and expertise in various security domains.
Current Role at Expedia Group
Steve Briones currently serves as a Security Compliance Manager at Expedia Group in the Greater Seattle Area, a position he has held since 2020. In this role, Briones oversees the company's compliance programs, ensuring alignment with industry standards and regulations. His responsibilities include managing security audits, conducting compliance assessments, and guiding the implementation of security best practices across the organization.
Career in Information Security
Steve Briones has over 20 years of experience in information security and compliance. His career highlights include roles such as Sr. Solutions Architect - Security and Compliance at NTT America, Director of Security and Compliance, and Principle Security Analyst - Cloud Security and Compliance at Oracle. He has a proven track record in IT security audits, HIPAA/HiTrust compliance, risk assessment, and privacy control evaluations. Briones has also contributed to PCI compliance, GDPR planning, ISMS program development, SOC and SOX controls, and IT governance.
Educational Background and Certifications
Steve Briones holds a MSIA degree in Information Assurance from Capitol College and a BSTM in Technical Management with an emphasis on Network Administration from DeVry University. He has also studied Business Management, Accounting, and Computer Science at Utah Valley State College. Briones has completed extensive privacy and data protection training, passing the CIPP Privacy Foundations exam and finishing courses such as CIPT, CIPM, CCPA, and CDPSE. His certification portfolio includes CISSP, CISM, CISA, SSCP, PCI QSA, PCIP, MCSE, MCP, Security+, Network+, and others.
Areas of Expertise
Steve Briones possesses expertise in various information security areas including IT security audits, vulnerability management, risk assessment and mitigation, and policy advisement. He also has experience in cloud security solutions, system and platform hardening, network infrastructure and devices, and business continuity and disaster recovery. Additionally, Briones is skilled in implementing antivirus and endpoint protection systems, IDS/IPS access authorization, logging and alerting mechanisms, and security awareness training.
Previous Roles and Contributions
Before his current role at Expedia Group, Steve Briones held several key positions, including Information Security and Compliance Officer, Sr. Security Intelligence Advisor, Compliance Consultant and Program Manager at Information Security and Privacy Professional, and Security Consultant at Trustwave. His work spanned various companies and involved responsibilities like managing comprehensive security compliance programs, conducting risk assessments and vulnerability evaluations, and guiding organizations through compliance with industry standards and frameworks.