Steve M. Packard
CISSP, CISM, CCSP
203-815-3888 | Packard.Stephen@gmail.com | LinkedIn
Cyber AI Risk Management Expert
Introduction: Cybersecurity and AI risk expert with 20+ years of experience evaluating complex technology risk across enterprise, cloud, and emerging AI systems. My work spans traditional cybersecurity, AI security, and advanced risk governance, with a strong focus on AI evaluation, auditing, and safe deployment of generative and machine learning systems. I combine deep technical knowledge of LLM mechanics, model behavior, and AI architecture with a pragmatic risk management mindset grounded in real-world security operations and compliance.
My background uniquely extends beyond conventional cyber risk into frontier AI assessment, including early generative AI evaluation work in collaboration with developers at a frontier lab (Google Labs), where I contributed to top-down risk analysis of hallucinations, malfunctions, misuse pathways, and governance implications. I specialize in translating complex AI/ML theory, development practices, and system behaviors into actionable risk, audit, and security controls that organizations can realistically implement.
I am also an expert in cyber security in diverse settings, IAM, SOC center operations, incident response, auditing and other areas of cyber security practice. I have been designing highly secure automated systems for more than a decade, and have an extensive background in cloud services.
I’m a proficient programmer in C, C++, Java, C#, Python, PHP, SQL, html and other scripting and programing languages. I’ve worked extensively in Microsoft ecosystems and Windows environments, as well as other corporate IT systems. I’m familiar with most corporate, cyber and cloud tools and environments.
- Innovative cybersecurity professional with 20+ years of experience
- CISSP, CISM, and CSSP certified
- Experienced working with AI developers and cutting-edge AI technology
- Expert in secure coding and software development
- Background in AI training, fine tuning, generative modeling and LLM mechanics
- Track record of success with ransomware defense, prevention, and recovery
- Served in major role in first top-down risk assessment of AI risks for Google Labs
- Fortune 500 level governance experience
- Compliance with major regulatory laws and frameworks including NIST, ISO 27000, SOX, PCI DSS, GDPR
Professional Experience:
Wiiggin and Dana, New Haven, CT 2025 –2026
AI Security Manager
- Wrote AI risk and security governance
- Provided security oversight of AI operations
- Evaluated AI products for risk and security
- Created workflow integration plans for AI and automation
Deloitte Risk Financial Advisory, New York City, NY 2020 –2023
Cyber Risk Advisory Analyst
- Provided data life cycle governance and support to fortune 50 company
- Conducted risk assessment for ransomware vulnerabilities of client’s remote access infrastructure
- Provided oversight of SOC center escalations
- Oversaw cutting-edge assessment services to major client deploying world-class AI products
- Aided in firm’s response to Solar Winds event, including arranging much of the PR and information response
- Clients included: Google, AIG, Bank of America, Synovus Bank, Exelon and BNY Melon
Tyehimba Enterprises, Bridgeport, CT 2017– 2019
Network and Infrastructure Consultant
- Managed on-site and remote IT projects
- Managed multiple workstreams involving teams of 10 or more onsite installers
- Assisted in RFP responses and planning
- Conducted PCI DSS auditing and enforcement
Techline Computing, Shelton, CT 2014 – 2018
Cloud Services Manager
- Assisted clients in determining needs for cloud services
- Managed cloud recovery services
- Provided incident response to companies from one to over 500 employees
- Established new and innovative cloud migration services
Growing Possibilities, Guilford, CT 2007 – 2013
Director of E-marketing & Chief Information Security Officer
- Established new online sales from zero to over 1000 orders per month
- Setup analytics, marketing and inventory tracking systems
- Maintained system security for marketing system and other critical systems
- Enforced compliance, especially with PCI-DSS
Education:
Charter Oka State College, New Britain CT
Bachelor of Science: Cyber Security – Graduated 2019
- Graduated with “Honors in Scholarship”, institution’s equivalent of magna cum laude
- 3.8 GPA, 3.92 GPA in Major
Professional Certifications:
| (ISC)² CISSP | (Click to Verify ) |
| (ISC)² CCSP | (Click to Verify) |
| ISACA CISM | (Click to Verify) |
| AWS Certified Cloud Practitioner | (Click to Verify) |
| AWS Solutions Architect, Associate | (Click to Verify) |
Skills and Expertise:
- AI training and modification: Fine Tuning, Preference Tuning and RLHF
- AI model evaluation and auditing
- AI Agents, frameworks and multi agent strategies
- Langchain, MCP, A2A, N8N and automation strategies
- Huggingface ecosystem and models
- Pytorch and model development in Python
- AI model theory: superposition, knowledge graphs, attention, vectorization
- Documentation and writing of procedures for regulatory compliance
- Privacy governance and policy
- PCI DSS, CCPR, SOX, GDPR, GLBA, HIPPA and other security/privacy regulatory frameworks
- NIST and ISO 27000 compliance management
- Sarbanes-Oxley (SOX) governance
- High level stakeholder management
- Complex incident response
- Crisis Management
- Project management
- Cyber security insurance
- Risk management
- Business continuity planning
- Crisis management
- Data Lifecyle management
- Identity and Access Management
- Penetration Testing
- Firewall administration
- Integration testing
- Change management
- IT asset inventory
- Microsoft Office (Excel, Powerpoint, Word)
- Programming in C, C++, JavaScript, SQL, Python, PHP, Java and others
- Cloud services
- Network administration
- Corporate Governance