Gary Toretti is the Vice President and Chief Information security Officer of Risk and Security at Sabre. In this role, he is responsible for providing leadership, direction, and management of the global Risk & Security Organization services. His team works in partnership with the Enterprise Technology Operations (ETO), the Corporate IT Organization, Business Unit Application Development teams, internal / external General Council, and in some cases, directly with the customer providing a holistic security ecosystem. Sabre sells trust and integrity to its customer’s while customers rely on Sabre for accuracy on its applications and the safe keeping of customer data. Risk & Security’s role is to drive continuous, seamless protection / monitoring capabilities globally while identifying and mitigating risk for the enterprise.
Prior to Sabre, Gary was an Assistant Vice President of the Global Customer Security Services (GCSS) group within Global Customer Services (GCS) at AT&T. In this role, he was responsible for providing management and leadership for Managed Security Services Delivery / Operations and Professional Security Services for AT&T’s Commercial and Government customers. His team works in partnership with the AT&T product marketing, security sales & consulting, the Chief Security Office and in most cases, directly with the customer and their security teams. Gary’s previous roles at AT&T include managing Security Technology at Cingular Wireless and the Executive Director over Identity and Access Management.
Gary has over thirty years’ experience in the information technology industry with a primary emphasis the last eighteen years on information security. He has coordinated a Cyber Security Best Practices Working Group under the oversight of the Federal Communications Commission (FCC) and led the ISACA chapter in Charlotte North Carolina. Prior to joining AT&T, Gary was a Senior Vice President Technology Executive over Security Operations for Bank of America.
Gary holds two Bachelor Degrees in Accounting and Information Systems from Indiana University of Pennsylvania and a Masters of Business Administration (MBA) from Duquesne University, a Certified Information Systems Security Professional (CISSP) certification, a Certified Information Security Manager certification (CISM) and a Certified Information Systems Auditor (CISA) professional certification.