Eric Kramer
About Eric Kramer
Eric Kramer is a Senior Information Security Risk & Compliance Analyst with extensive experience in risk assessment and compliance analysis. He has worked in various roles across organizations, including the United States Postal Service and Fulton Bank, where he leads security initiatives and training sessions.
Work at Fulton Bank
Eric Kramer has served as a Senior Information Security Risk & Compliance Analyst at Fulton Bank since 2017. In this role, he leads security awareness training sessions and oversees the Cyber Incident Response Team. He conducts vendor security reviews to ensure supply chain security and generates reports with quantitative risk values for the Vendor Risk Committee. Additionally, he architects security solutions for enterprise projects, enhancing the bank's overall security posture.
Education and Expertise
Eric Kramer holds a Master of Business Administration (MBA) from the Kogod School of Business at American University, which he completed from 2019 to 2021. He also earned a Bachelor of Science (BS) in Information Technology Security Specialist from Pennsylvania College of Technology, studying from 2003 to 2007. His educational background supports his expertise in information security, risk management, and compliance.
Background
Before joining Fulton Bank, Eric Kramer worked in various information security roles. He was an Information Systems Security Specialist at the United States Postal Service from 2009 to 2013. He then served as a Consultant at Blue Canopy from 2013 to 2015 and as a Senior Security Analyst at The Advisory Board Company from 2015 to 2016. His diverse experience has contributed to his current role in risk and compliance.
Achievements
Eric Kramer has conducted gap analysis for the House of Representatives, aiding in the documentation update from NIST 800-53 Revision 3 to Revision 4. He performs quantitative analysis on risk for annual assessments and new development projects. Additionally, he administers a Governance, Risk, and Compliance (GRC) solution, focusing on continuous improvement and initial setup.
Risk Assessment and Compliance
In his current position, Eric Kramer conducts risk assessments on enterprise applications and business units. He utilizes frameworks such as ISO 27001 and the NIST Cybersecurity Framework to ensure compliance with various regulations, including HIPAA, FERPA, and financial industry laws. His work supports the organization's commitment to maintaining high standards of security and compliance.