Additional Info

Job title of nominated professional (or team name)Director, Professional Services and Information Security Officer
Company (where nominated professional or team is working)Ostendio
Company size (employees)10 to 49
CountryUnited States
Headquarters RegionNorth America


Michelle Moreno is an accomplished Cybersecurity Assurance and Compliance professional with more than 20 years of forward-thinking leadership experience. For the last 10+ years, Moreno has focused on operations, security, compliance, and technology. An astute problem solver with a relentless commitment to continuous improvement, Moreno holds two degrees and certifications in project management. Her certifications include HITRUST Practitioner, 2020, ISO 27001 Foundations, 2021, and FAIR Institute: Fair Analyst Learning Path, 2021.

In her current role with Ostendio, Moreno is the Director, Professional Services and Information Security Officer. Moreno develops information security framework gap analysis for diverse organizations with a primary focus on HITRUST and SOC 2 Type I and Type II. She develops project plans for organizations to remediate identified gaps and assists in developing more robust compliance/security documentation as they prepare for upcoming certifications.

Moreno is a valued mentor to both Ostendio employees and customers. She mentors clients, participates as a team leader in complex audits, and works across industries building client knowledge and credibility. She works closely with Ostendio customers to complete security documentation in the MyVCM platform, facilitates status calls with customers, and helps customers successfully prepare for critical security audits such as SOC 2 and HITRUST.

Moreno is an expert in HITRUST certification. She leads Business Continuity and Incident Response Team meetings internally and externally for Ostendio clients. She is a trusted leader with Ostendio customers, partners, and stakeholders.


Michelle Moreno deserves recognition as Cybersecurity Compliance & Assurance Professional of the Year because:

1. Moreno has extensive experience including preparing organizations for SOC 2 and HITRUST certifications. She has in-depth knowledge of multiple standards and regulations and can help customers successfully prepare to pass security compliance audits.

2. She has successfully implemented a SaaS-based application while preparing customers for upcoming security certifications and audits - including SOC 2 Type II and HITRUST. Moreno also supports Ostendio customers for their future needs by providing guidance to ensure their security program is evolving with their future needs.

3. She is an exemplary team builder who leads by example. She works collaboratively with executives and customers, technical departments, and external agencies to achieve goals.