With over two decades of experience across Fortune 500 enterprises, Norman J. Levine brings an unmatched depth of expertise to third-party risk management, AI governance, and cybersecurity compliance. His career spans senior roles at Omnicom Group, Cigna Healthcare, Stanley Black & Decker, KPMG, and HBO — organizations where the stakes of vendor risk, data privacy, and governance were never theoretical.
Norman has managed vendor portfolios exceeding $24 billion, conducted more than 1,000 vendor security assessments, and led complex initiatives including the SEC-mandated divestiture of BearingPoint's technology infrastructure from KPMG. He holds active CISA and CDPSE certifications and serves on the Cybersecurity Advisory Boards at both Pace University and Seton Hall University, where he contributes to shaping the next generation of cybersecurity professionals.
His forthcoming book, The Future of Third-Party Risk Management & Data Privacy, is scheduled for publication by Taylor & Francis in 2026. He is a published contributor to HAKIN9 Magazine and the GRC Report, and a sought-after speaker and moderator on AI governance and enterprise risk management.
"I help organizations develop GRC programs that go beyond checkbox compliance: programs that protect operations, satisfy regulators, and generate measurable business value." — Norman J. Levine, CISA, CDPSE