Sonya Lowrance

Director, Information Security

Austin, TX

How does this work?

Security and privacy compliance is already a critical factor in organizational maturity, and will only continue to grow in complexity and impact every company’s ability to respond to market needs. In response to this need, I work as a dynamic security, privacy, and compliance program manager with extensive experience leading cross-functional international teams. I engage with all levels of the organization to quickly identify areas of program improvement. Internally I work to make security and privacy relevant to each employee's role, supporting individual contributors, leadership, and the board understand the organization's responsibilities. This approach makes achieving compliance to the organization’s security and privacy requirements meaningful for every employee to take action on day-to-day. Externally, my broad industry experience helps me to translate customer requirements to the organization's current security and privacy program scope. This helps to streamline the customer’s security and privacy reviews and agreements at on-boarding, as well as through the life of the relationship. Overall, my experience supports organizations reaching their strategic privacy and security objectives, and ultimately reaching their full growth potential. Core Competencies: Program/Project Management, PMP; Team Building; Talent Development; Reporting Privacy and Security Regulations and Frameworks: California Consumer Protection Act (CCPA); US Privacy Shield; EMEA EU GDPR; EMEA UK DPA; US COPPA; US HIPAA & HITECH; CAN-SPAM Act of 2003; Canadian Anti-Spam Law (CASL); Telephone Consumer Protection Act of 1991 (TCPA); AICPA TSC 2017 (SOC 2); COSO v2017; ISO (13485, 9001, 27001); OWASP Top 10 v2017; and CIS AWS Foundations Benchmark Business Analysis/Process Mapping: Shingo; Kaizen; BPMN; Process Change Mgmt, Six Sigma SDLC: Requirements Development; Requirements Tracking; Requirements Acceptance Testing; User Acceptance Testing; Agile Product Development: Product Owner; Customer Requirements; Testing; Launches, Post-Launch Surveillance FDA Compliance: GLP; GMP; Design Control; Product and Process Validation; 510k Submissions; Risk Analysis & Mgmt

Ask me about
DataProtectionMS for GDPR & CCPA
Work experience

Apr 2020 - Present


Director Information Security


Jul 2018 - Apr 2020


Senior Program Manager


Apr 2017 - Jul 2018


Sr. Principal Project Consultant

Clinical Project Manager with the Oracle HSGBU working with SaaS Clients using InForm. I support our clients use of the InForm software suite administering clinical trials of FDA governed product development, complete submissions, gain market approvals and support post approval monitoring.


Apr 2015 - Mar 2017


Enterprise Project Manager

Apr 2012 - Oct 2014

Program Manager


Feb 2011 - Jun 2012


Project Program Management Advisor

Sales Process Re-engineering (SPReE) organization, workstream lead to for US/CA - completed a full capture of the Dell US/CA sales process to kick-off the sales process


1995 - 2000

University of Mary-Hardin Baylor

Bachelor of Science, Chemistry and Biology

Talk to Sonya

@ Copyright 2020 OfficeHours Technologies Co.