Corey Epps is the Senior Director at CVS Health responsible for Information Security Governance & Risk Management. His experience includes Information Security program implementations, security engineering, architecture, operations, and operational risk management. He is well versed in regulations and standards related to risk management and security, including HIPAA, Sarbanes-Oxley, NIST, ARRA/HITECH, ISO 27001, and the PCI-DSS.

Prior to joining CVS Health, Corey held leadership roles at FedEx, Medco, and Protiviti, Inc. His responsibilities included Information Security program management, policy development, security awareness & training programs, security operations, threat and incident management, security architecture, contract negotiations, and Information Security situational risk management under a variety of business conditions, including spin-off, acquisition, merger, and on- and off-shore business process, and IT outsourcing.

Corey holds a Masters degree in Information Assurance from Norwich University and a Bachelor in Business Information Systems from Mississippi State University. He has been a featured speaker, panelist, and facilitator at industry security events such as the RSA Conference, HP Protect, and McAfee Focus. In addition, he holds the Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and GIAC Security Leadership Certification (GSLC).

He is an avid runner and college football fan. You can find him on weekends in the fall attending games across the Southeastern Conference following the Mississippi State Bulldogs. Corey and his family reside in Memphis, Tennessee.