Stephen D. Dake | Executive Director Cyber security, Risk, and Compliance

Present Experiences

Program Leadership | Information Risk

As Interim Director of Cybersecurity GRC at Lurie Children's Hospital of Chicago, I served as Interim Director of Cybersecurity Governance, Risk, and Compliance (GRC) for a nationally recognized pediatric healthcare system with approximately 10,000 employees following a significant cybersecurity incident. Reporting directly to executive leadership, I was engaged to stabilize and mature key cybersecurity governance functions, establish sustainable risk management processes, and strengthen organizational oversight across security, compliance, legal, procurement, research, and information technology teams.

During the engagement, I led the development of enterprise cybersecurity governance structures, redesigned the Third-Party Risk Assessment (TPRA) program, implemented formal risk acceptance and exception management processes, advanced vulnerability governance initiatives, and established policy lifecycle management procedures. I also provided strategic guidance on regulatory compliance, vendor risk management, data protection, identity governance, and executive cybersecurity reporting. The resulting improvements increased risk visibility, strengthened accountability, and created repeatable processes designed to support long-term cybersecurity maturity across the organization.