
Mr. John Bates JD, AIGP, CISSP, CCSP, CIPP/US, CIPP/E
Senior Manager, Cybersecurity & Responsible AI, Ernst & Young LLP
John G. Bates is a strategic and results-oriented cybersecurity executive with over 15 years of progressive leadership experience, including a successful tenure as Chief Information Security Officer. Proven expertise in building, implementing, and managing comprehensive corporate security programs from the ground up, directly aligning security initiatives with business objectives in dynamic, engineering-driven environments. Deep experience in collaborating with infrastructure and IT teams to define and implement robust security controls for corporate systems, endpoints, and sensitive data, ensuring compliance with US and global standards (NIST 800-171/53, CMMC, FedRAMP, SOX, SOC2, ISO 27001, NIS2, DORA, GDPR). Adept at leading cross-functional teams, driving risk management, managing third-party security, and championing security best practices. Possess a strong technical foundation combined with cutting-edge insight into AI Governance (NIST AI RMF, EU AI Act, ISO 42001, ISO 23894).