Sheila Goodwin

“Our team values the responsibility Kronos customers and employees entrust us with every day as we handle their data, and we protect customer and personal information as if it were our own. The infrastructure, standards, and programs Kronos has put in place address rigorous policy and regulatory requirements across IT, information security, risk, compliance, and data privacy. We consistently provide our customers with the assurances they need to achieve their business objectives and legal obligations through active and transparent engagement.”

Sheila Goodwin
Vice President, Chief Information Security Officer

Sheila Goodwin has more than two decades of expertise in information technology (IT), information security, and risk management. She is passionately focused on the protection of information and believes security must be viewed from the perspective of the data itself: its value to customers, the company, and her colleagues. Goodwin is responsible for the protection of all information within the Kronos global corporate network and Kronos Cloud environments, and oversight of third-party providers.

Goodwin oversees a highly skilled team that designs and implements security polices, standards, and solutions to meet global requirements, business objectives, and customer expectations. Under her leadership, the practice has adeptly deployed a breadth of data security and compliance programs, including SOC 1 and SOC 2, ISO 27001, Health Insurance Portability and Accountability Act (HIPAA), Gramm-Leach-Bliley Act (GLBA), and Payment Card Industry Data Security Standard (PCI-DSS). Goodwin also serves as the company’s data protection officer, responsible for the company’s Privacy Program. In this role, she ensures that Kronos maintains compliance with global data privacy regulations, such as the General Data Protection Regulation (GDPR).

Prior to joining Kronos in 2010, Goodwin was vice president of IT and information security at Newburyport Five Cents Savings Bank, where she built the institution’s IT and security functions. The experience and insight Goodwin gained during her 15-year tenure at the bank, and operating in a highly regulated industry, has been invaluable to Kronos. Goodwin and her team have played a crucial role in the transformation of Kronos into a software-as-a-service company, maintaining a world-class information security program.

Goodwin holds several industry accreditations from the Information Systems Audit and Controls Association. She is a Certified Information Security Manager and Certified Information Systems Auditor and is also certified in Risk and Information Systems Control and the Governance of Enterprise IT. Additionally, Goodwin has earned the qualification of Certified Information Privacy Professional from the International Association of Privacy Professionals.

Goodwin is an active member of the greater information security community. She sits on the Cylance Customer Advisory Board and has been a featured speaker at industry events including the Hellman & Friedman Cybersecurity Summit.

Return to list of leaders.