Douglas Barbin

Doug Barbin is a Principal (Shareholder) at BrightLine CPAs & Associates, Inc. (“BrightLine”) where he is responsible for all service delivery in the western Americas as well as the PCI, FedRAMP/FISMA, HIPAA, and other compliance practice areas firm-wide. Doug joined BrightLine more than three years ago bringing a unique perspective to the audit industry as someone that has not only audited and examinaed IT service providers but has managed them (and was audited extensively).

Prior to joining BrightLine, Doug spent the previous twelve years in the trenches of information security and compliance. His most previous role was director of product management for VeriSign’s Managed Security Services business (now part of Dell SecureWorks) where he maintained full P&L; responsibility for the business as well as ensuring the safeguards of customer data.

Doug also held roles as director of VeriSign’s security consulting practice and was CTO of a conglomerate that included a mortgage insurance company and a law firm. Doug began his career at Price Waterhouse where he specialized in forensic accounting and helped build the firm’s first computer forensics practice.

Doug is a Certified Public Accountant (CPA), Certified Information Systems Security Professional (CISSP), Certified Fraud Examiner (CFE), Payment Card Industry Qualified Security Assessor (PCI QSA), and one of the first professionals to achieve the Cloud Security Alliance’s Certificate of Cloud Security Knowledge (CCSK).

Doug holds dual BS degrees in Accounting and Administration of Justice from Penn State and an MBA from Pepperdine University. He currently serves as the President of the Sacramento chapter of the Penn State Alumni Association and is the Chairman of the International Audit Committee for the Information Systems Security Association (ISSA).

A strong advocate for cloud computing, Doug regularly speaks at other cloud computing, information security, and audit venues. He also moderates the BrightLine sponsored blog The Pragmatic Auditor.