Daniel Jensen - Lead Security Analyst - GRC at Fanatics, Inc.

Disclaimer: This information was obtained from publicly available sources online and is believed to be accurate at the time of publication. Valimates collects this information with proprietary technology and cannot guarantee the accuracy or completeness of the data. The purpose of the data is to inform the reader about the expertise of the individual and should not be used for any other purpose. Valimates does not have any affiliation with the individual.

Daniel Jensen Lead Security Analyst - GRC at Fanatics, Inc.

Claim Profile Update Profile Delete Profile

Daniel Jensen is a highly accomplished CPA, CISA, and PCIP with extensive expertise in information security and program management. With over 401 LinkedIn connections, Daniel has established himself as a respected professional in the technology, information, and internet industry. Currently serving as the Lead Security Analyst - GRC at Fanatics, Inc., Daniel is responsible for overseeing security compliance and managing the penetration testing program.

Previously, Daniel held the position of Senior Security Compliance Manager at Expedia Group, where they successfully managed the GRC security compliance function and published a cloud control playbook in collaboration with developers and engineers. Prior to that, Daniel served as the Internal Audit Manager at Milgard Windows & Doors, where they were instrumental in designing and implementing a risk-based annual audit plan and managing internal controls.

With a diverse background that also includes experience as a Sr. SOX Compliance Analyst at Komatsu and an Audit Associate at KPMG, Daniel brings valuable skills in internal control testing, risk management, and financial statement review. They hold an MBA from the Quinlan School of Business, Loyola University Chicago, with a focus on accounting and finance, as well as a Bachelor of Arts in Economics from Northeastern Illinois University. Daniel's ability to communicate complex IT and financial concepts to multiple levels of management and their strategic mindset in aligning GRC initiatives with business objectives make them an invaluable asset to any organization.

More about this expert

Full name: Daniel Jensen
Location: Austin, Texas, United States
Title: Lead Security Analyst - GRC
Company: Fanatics, Inc. (since 2022)
Industry: Technology, Information and Internet
LinkedIn profile: https://www.linkedin.com/in/daniel-jensen1/
LinkedIn Connections: 401
Summary: CPA, CISA, PCIP
Skills: Information Security Program Management

Education

Quinlan School of Business, Loyola University Chicago: MBA
Attended in 2005 - 2007
Field of study: Accounting and Finance
Northeastern Illinois University: Bachelor of Arts
Attended in 2003 - 2005
Field of study: Economics

Positions

Fanatics, Inc.: Lead Security Analyst - GRC
Oct 2022 - Present
Expedia Group Greater Seattle Area: Senior Security Compliance Manager
Oct 2017 - Oct 2022

- Management of the GRC security compliance function including internal security standards, PCI DSS and SOC 2 frameworks
- Creating and maintaining an enterprise cloud agnostic security control framework
- Published a cloud control playbook (AWS specific), in collaboration with developers and engineers, to provide guidance on compliance with controls
- Planning and executing long-term plans and strategy for the GRC department with alignment to business objectives
- Working with IT application teams to assess security policy and compliance against multiple frameworks
- Communicating complex IT and financial concepts to in a clear and direct way to multiple levels of management
- Partnering with internal audit, external audit and internal management on creating and resolving issues
- Collaborating with cross-functional application teams to ensure efficient processes and security compliance
- Management of the penetration testing program including scoping, contract negotiations, remediation and reporting
- Creation of program management metrics to facilitate effective communication and status to stakeholders
- Evaluating and advising on AWS security solutions for engineering teams
Milgard Windows & Doors Tacoma, Washington: Internal Audit Manager
Mar 2014 - Sep 2017

- Management of the internal audit department, including internal and external staff supervision covering SOX, operational and compliance audits
- Identifying high risk areas in business operations and information security through annual risk assessment
- Designing a risk-based annual audit plan to allocate audit resources on high risk areas
- Creating a risk-based annual audit plan and managing for timely execution
- Creating, implementing and monitoring internal controls over business and IT processes
- Consulting for Oracle ERP implementation, ensuring adequate business and IT controls exist for key business risks
- Advising senior management on information security risk management, process improvement, control design and IT business processes
- Managing segregation of duties design and conflict management for Oracle responsibilities
- Facilitating conflict resolution across multiple business locations, individuals and processes
- Monitoring and facilitating fraud investigations companywide
- Providing recommendations to IT senior management in designing and monitoring key IT processes such as provisioning, access reviews, disaster recovery and IT change management practices
Komatsu Greater Chicago Area: Sr. SOX Compliance Analyst
Jan 2010 - Jun 2013

- Internal control testing, control environment evaluation and identification of inefficiencies, control failures, significant deficiencies and material weaknesses
- Leading internal control audit engagements for manufacturing and financing business entities
- Testing and reviewing business process, entity level, ITGC and IT application controls
- Managing logical access roles by identifying and reducing SOD violations
- Evaluation and interpretation of COBIT, GAAP and applicable IFRS
- Reviewing and compiling public and private financial statements
- Identification and management of company-wide fraud and financial statement risk
- Planning and executing global SOX audit plan based on limited staff and resources
- Creating and amending company policies ranging from financial operations to IT security
- Implementing risk-based business processes and IT control structures for wholly-owned subsidiaries
- Aiding the IT department in the design, development, security and testing of application solutions
- Supervision and quality assessment of co-workers and consultants
- Evaluating and identifying more efficient business processes and strengthening the internal control structure through use of automated solutions
KPMG Greater Chicago Area: Audit Associate
Sep 2007 - Apr 2009

- Internal control testing, control environment evaluation and identification of inefficiencies, control failures, significant deficiencies and material weaknesses
- Application of GAAP and research of specific topics for GAAP treatment
- Analytical reviews of quarterly financials for consistency, reasonableness and adherence to GAAP
- Identification and evaluation key risk points, significant assumptions and material misstatements
- Compilation of extensive data into readable reports for detailed analysis purposes
- Planned audit procedures and analyzed budgeting/forecasting future billable hours and profitability
- Supervised employees and allocated tasks for timely completion of audit objectives
- Led audit engagements and reviewed employee’s audit work for adequacy
- Main clients included Komatsu North America, Navistar International Corporation, and Merge Healthcare