John G. Bates is currently a Senior Manager within the Cybersecurity Program Transformation (CPT) capability at EY. He has counseled clients on cybersecurity matters for over 15 years with experience in highly-regulated industries. With a cross-functional background as in-house counsel and CISO, he has initiated ISO 27001 and HITRUST programs through recurring audits. He has conducted enterprise cyber assessments for many Fortune 500 companies utilizing NIST, CIS, ISO 27001, CMMI, HITRUST, and other cyber standards and frameworks. He has significant hands-on experience in Third-Party Risk Management, Governance, Strategy, Data Protection, Policies & Standards, Privacy, and Incident Response.
Mr. Bates is an active member within the Association of Corporate Counsel, past-chair of ACC Intellectual Property Network, and frequent speaker at ACC Annual Meeting, ACC Foundation Cybersecurity Conference, ACC Chicago Summit, ACC Philadelphia Summit, and numerous local ACC chapters. He is currently on the ACC Foundation State of Cybersecurity and Cybersecurity Summit Advisory boards.
Mr. Bates received a BA in Philosophy from the University of Illinois at Urbana-Champaign and JD from Chicago-Kent College of Law.