Sally Smoczynski, CISSP

Sally has spent over 30 years assisting clients to achieve success in business process alignment within Information Technology.  She has a strong background in Governance, Risk, and Compliance with an emphasis in Information Security Management and IT Service Management.

Sally manages client engagements with assessment, implementation, and internal audit for many Standards, including ISO 27001, ISO 27701, ISO 22301, ISO 20000, and ISO 9001.  She maintains a CISSP certification and holds an Exemplar Global ISMS (ISO 27001) lead auditor certification, as well as, a qualified Internal Auditor for many other management system standards. 

Sally has an extensive background in ITIL and was a global project manager for multiple organizations within the Telecom, Financial, Utilities, and Managed Service arenas. She has focused on ISO 20000 since its 2005 introduction in the United States and has had a 100% success in assisting clients to achieve and maintain certification.

Her ongoing multi-standard work allows Sally to provide clients guidance and facilitation with integrating multiple standards, as well as, incorporating additional frameworks such as HIPAA and ITAR requirements into their management systems and information security control structures.

Sally is a board member for the Illinois Technology Foundation.  She is also a member of ASIS International, and the IT Service Management Forum (ITSMF).  Sally is a contributing editor for the authority web site, which focuses on Business Continuity and Information Security related issues. 

Sally received her Bachelors’ Degree in Organizational Development and Change from DePaul University, Chicago, Illinois. 

She is frequently invited to present seminars on IT Governance for trade shows and professional associations.  Sally is active with George Mason University in Fairfax, Virginia and presents workshops on Security, Service Delivery, and Management System topics.