Erik Tomasi

Managing Director

<

Erik Tomasi is a Managing Director for KRAA Security, a security consulting firm, based in Miami. He leads the firms consulting division, partner relations, and manages client relationships across several industry sectors. Mr. Tomasi is considered an expert in information security, risk management, and technology management. Mr. Tomasi has twenty-five years’ experience as a Technology leader, Information and Cyber Security planning expert, and leads the firm’s Information Security practice. He has consulted for numerous companies in the areas of strategic IT management, information security best practices, and security compliance. He has led multiple security engagements related to PII, SOX, HIPAA, SCADA, ISO 27001, SANS 20, NYC Part 500, and governance.

Mr. Tomasi was the Americas CIO at Hermes of Paris. He has also executed technical consulting or CISO roles at Sony Music Entertainment, Northwell Health, Mellon Foundation, Easter Generation, Bank Leumi, New Jersey Transit, PWC, and IBM. He has experience in several sectors including finance, insurance, media, healthcare, education, retail, and advertising. Mr. Tomasi has extensive financial services and insurance experience.

As CIO of White Mountains Re, he oversaw all technology for the $2B global reinsurer, including building a state of the art disaster recovery plan, and meeting all audits and compliance mandates. At Ironshore Services, as VP he focused on managing the deployment of several industry applications and security initiatives for this emerging multiline insurer. At Chase, he lead the deployment of the bank’s first two factor authentication system which was deployed to over fifteen thousand users. He has also consulted for multiple organizations including Sony Music Entertainment, Bank Leumi, Northwell, Sun Bank, and EquiLend a consortium of the leading investment banks.

Mr. Tomasi has spoken at numerous industry events, been featured in webinars, and contributed to several magazine articles. He is an InfoSec and PCI compliance expert who is a Certified Chief Information Security Officer (C | CISO), Certified Information Systems Security Professional (CISSP), and ISO 27001 Certified Lead Auditor. He is also President and Board Member of the Society for Information Management’s (SIM) New York Metro Chapter.

Mr. Tomasi has taught Information Security courses at the University of Louisiana at Monroe, for ISACA (Information Systems Audit and Control Association), and as an Adjunct Professor at Baruch College. Mr. Tomasi holds a MBA in Finance from New York University’s Stern School of Business and BS in Electrical Engineering from New York University’s Polytechnic School of Engineering.