Board of Directors 


To contact an ISACA board member, please email

International Vice President Tony Hayes International President Tony Hayes, CGEIT, AFCHSE, CHE, FACS, FCPA, FIIA, is appointed Deputy Director-General of the Department of Communities, Child Safety and Disability Services in the Queensland Government, Australia. He has extensive experience across the Queensland public sector at the senior executive level in various departments such as the Public Service Commission and Queensland Health. Hayes has been a member of ISACA since 2003 and has served on several ISACA volunteer bodies. He is currently a member of ISACA’s Strategic Advisory Council, Governance Advisory Council and also served as president of the IT Governance Institute Board of Trustees. Prior to being elected international president, he was an international vice president of ISACA, director of ISACA and served as chair of the Relations Board and the Finance Committee. Hayes is also an adjunct professor and member of the Business Information Systems Advisory Committee for the School of Business at the University of Queensland.

International Vice President Allan Boardman International Vice President Allan Boardman, CISA, CISM, CGEIT, CRISC, ACA, CA (SA), CISSP, is information risk manager at Morgan Stanley. He began his career with Deloitte in Cape Town (South Africa) and has more than 30 years of experience in IT audit, risk, security and consultancy roles at companies such as JPMorgan, Goldman Sachs, KPMG, PricewaterhouseCoopers, Marks and Spencer, and the London Stock Exchange. He is a past president of the ISACA London Chapter and has served on the British Computer Society’s Information Risk Management and Audit Committee. He has also served on and chaired ISACA’s CISM Certification Committee and the Leadership Development Committee. He currently chairs ISACA’s Credentialing and Career Management Board and is a member of ISACA’s Strategic Advisory Council. He was a London 2012 Paralympics Games Maker, a school governor (chair of the finance committee), and is a Freeman of the City of London.

International Vice President Juan Luis Carselle International Vice President Juan Luis Carselle, CISA, CGEIT, CRISC, is director and CIO at RadioShack Mexico. He has more than 20 years of IT experience throughout Latin America in multiple areas, including systems development, project management, quality assurance, information security and IT auditing in companies such as Walmart Mexico and Central America, and Adobe Systems. He has served as chair of ISACA's CISA Certification Committee and member of the ISACA Credentialing Board, CRISC Certification Committee, CISA Quality Assessment Team and CISA Spanish Translation Team.

International Vice President Ramsés Gallego International Vice President Ramsés Gallego, CISM, CGEIT, CCSK, CISSP, SCPM, Six Sigma Black Belt, is security strategist and evangelist at Dell Software. He has more than 15 years of security experience, with expertise in the risk management and governance areas, and is an internationally recognized public speaker on topics including cloud computing, risk management and access governance. He has served on ISACA’s Guidance and Practices Committee, and the CISM and CGEIT Certification Committees. He is an author of ISACA white papers on geolocation, virtualization and sustainability, and is research director and strategic planner for the ISACA Barcelona (Spain) Chapter. He also served on the planning committee of the inaugural ISACA World Congress: INSIGHTS and chaired the planning committee for ISACA’s Information Security and Risk Management Conference in Europe.

International Vice President Theresa Grafenstine International Vice President Theresa Grafenstine, CISA, CGEIT, CRISC, CIA, CGAP, CGMA, CPA, is the inspector general of the US House of Representatives. Over the past 20 years, she has served in the inspector general community in both the legislative and executive branches of the federal government. She is the chair of ISACA’s Finance Committee, has served as chair of ISACA’s Communities Committee, and was a member of the Relations Board and the World Congress: INSIGHTS program development task force. She is past president and committee chairman of the National Capital Area Chapter of ISACA.

International Vice President R. Vittal Raj International Vice President R Vittal Raj, CISA, CISM, CGEIT, CFE, CIA, CISSP, FCA, is partner of M/s. Kumar & Raj, director at Pristine Consulting Private Limited, and an assurance and management consulting expert. Over the last 25 years, he has directed projects in the areas of IT governance, information security, IT assurance, enterprise risk management, and risk-based internal audits. He has served as advisor to boards and senior management on IT governance, cyberlaw and risk management strategies. He is currently a member of ISACA’s India Growth Task Force. He also has served as a member of ISACA’s Knowledge Management & Education Committee and Asia-Pacific CACS program development task force, and as director of certification and past president of the ISACA Chennai Chapter.

International Vice President Jeff M. Spivey
International Vice President Jeff M. Spivey, CRISC, CPP, is president of Security Risk Management Inc., a strategic security risk consultancy to global organizations. He is also the strategy advisor for RiskIQ, providing internet-scale intelligence/visibility services for security and brand risk across the web. He is a member of the US State Department’s Overseas Security Advisory Council (OSAC) and serves on the Advisory Board for the National Center for Judicial Security of the US Department of Justice. Spivey is a founding member of the Cloud Security Alliance and a past president and past chairman of the board for ASIS International. He is chair of ISACA’s Relations Board and a member of ISACA’s Strategic Advisory Council. He has served as co-chair of ISACA’s External Advocacy Committee and as a member of ISACA’s Knowledge Management Task Force and Cloud Computing Task Force.

International Vice President Marc Vael International Vice President Marc Vael, CISA, CISM, CGEIT, CRISC, CISSP, ITIL, is chief audit executive at Smals vzw, a Belgian IT organization with more than 1,800 people working for the Belgian federal government on social security automation. He has more than 20 years of experience in evaluating, designing, implementing and monitoring solutions on risk, controls and information security management, business continuity and disaster recovery, data protection/privacy, and IT audit. An ISACA member for 19 years, Vael is president of the ISACA Belgium Chapter, chair of ISACA’s Cloud Computing Task Force and Knowledge Board, past member of ISACA’s Strategic Advisory Council, and past chair of the ISACA Communities Committee. He is a visiting lecturer at Antwerp Management School (AMS) and Solvay Business School. Additionally, he is a board member of knowledge group SAI, a deputy member of the Flemish Privacy Commission and a member of the Permanent Stakeholder Group at ENISA. Vael is also an appointed fellow of the Hogenheuvelcollege at the University of Leuven.

Director Christos K. Dimitriadis Director Christos K. Dimitriadis, Ph.D., CISA, CISM, CRISC, is the group head of Information Security, Compliance and Innovation at INTRALOT GROUP, a Greece-based multinational supplier of integrated gaming and transaction processing systems, where he manages information security in more than 50 countries. He has worked in information security for more than 13 years, has authored more than 100 security-related publications, and holds two patents on novel fraud detection systems and game design. He has provided information security services to the International Telecommunication Union, European Commission Directorate Generals, European Ministries and international organizations, as well as business consulting services to entrepreneurial companies. He has served as international vice president of ISACA, chair of ISACA’s COBIT Security Task Force and External Relations Committee, and member of the Relations Board, Academic Relations Committee, ISACA Journal Editorial Committee and Business Model for Information Security Work Group.

Director Krysten McCabe  Director Krysten McCabe, CISA, is senior manager in the Assurance and Advisory Management Program at The Home Depot. She is responsible for identifying, assessing and mitigating information technology risks in the areas of data security and privacy, IT governance, IT asset management, change control, computer operations and systems development. Additionally, she has oversight for planning and executing IT compliance and operational audits focused on evaluation of control effectiveness and identification of process improvement opportunities to gain efficiencies. Prior to joining The Home Depot in 2004, McCabe was an IT auditor at Ernst & Young LLP and an IT controls analyst at SunTrust Banks Inc. She is a member of ISACA’s Audit Committee and past member of the Finance Committee.

Director Jo Stewart-Rattray Director Jo Stewart-Rattray, CISA, CISM, CGEIT, CRISC, FACS CP, is director of information security and IT assurance at BRM Holdich. Stewart-Rattray has 25 years of experience in the IT field, some of which were spent as CIO in the utilities space, and 16 in the information security arena. She is a Fellow of the Australian Computer Society and was a member of CIGRE’s international working group B5.38, which assessed information security risks in power system operations within SCADA systems and the implementation of appropriate controls. She is a past international vice president of ISACA and has served as president of the ISACA Adelaide Chapter and chair of ISACA’s Leadership Development Committee and Security Management Committee. She has also served on ISACA’s Knowledge Board, Framework Committee and the IT Governance Task Force. Currently, she is chair of ISACA’s Audit Committee and contributes to cybersecurity-related research initiatives.

International President Gregory Grocholski Past International President Gregory Grocholski, CISA, is the global business finance director for the Ventures and Business Development unit within The Dow Chemical Company, having recently moved from his role as the chief audit executive at Dow. He is responsible for applying financial and strategic direction regarding opportunities within the ventures, intellectual property/licensing, innovation project portfolio activities and financial oversight of certain joint ventures. Currently, he is a member of ISACA's Governance Advisory Council. He has been chair of ISACA's Finance Committee, Assurance Committee and Knowledge Board, and member of ISACA's Strategic Advisory Council, Audit Committee, Professional Influence and Advocacy Committee, and Professional Issues Task Force. He is a board member of the Michigan Baseball Foundation, vice president/treasurer of the Great Lakes Loons, president of The H Hotel Holding LLC, supervisory (audit) committee chair of the Dow Chemical Employee's Credit Union and a member of Northwood University's Accounting Advisory Council. In 2013, he received the Saginaw Valley State University's Distinguished Alumni Award in recognition of his distinguished service and accomplishments. He was international vice president of ISACA from 2011-2012, and international president from 2012-2013.

Past International President Kenneth L. Vander Wal Past International President Kenneth L. Vander Wal, CISA, CPA, is a retired national partner in the Technology and Security Risk Services (TSRS) practice of Ernst & Young, where he was responsible for the firm’s global TSRS quality and risk management program. With more than 40 years of IT experience, he has worked in multiple areas of information systems in a variety of industries, including systems development, systems programming, project management, quality assurance, IT auditing and systems security. Before joining Ernst & Young in 1979, Vander Wal worked at the Pentagon, where he developed systems to support the Department of Army staff, and for a computer software company in a systems technical support role. He is a coauthor of IT Control Objectives for Sarbanes-Oxley, 2nd Edition, published by ITGI, and serves on ISACA’s Governance Advisory Council, the ISACA Nominating Committee and ITGI Nominating Committee. He is a past member of ISACA’s Strategic Advisory Council, Guidance and Practices Committee, Knowledge Board, and Professional Issues and Advocacy Task Force. He was international vice president of ISACA from 2007-2011, and international president from 2011-2012.

Ron Hale, Ph.D, CISM, acting chief executive officer of ISACA and ITGI Ron Hale, Ph.D, CISM, is acting chief executive officer and corporate secretary of ISACA and the IT Governance Institute. Hale has more than 20 years of experience in the security field. Prior to joining ISACA, he was manager of security services for Northrop Corporation Defense Systems Division and a research manager for the Bank Administration Institute. He has also provided consulting services as a practice director in the Enterprise Risk Management division within Deloitte & Touche. As ISACA’s chief knowledge officer, Hale is responsible for leading the association’s research and knowledge development efforts. He has a master’s degree in criminal justice from the University of Illinois and a doctorate in public policy from the Walden University School of Public Policy and Administration. In recognition of his accomplishments at ISACA, Hale was named to the NACD’s 2013 Directorship 100, a distinction given to 100 individuals who exemplify the knowledge, leadership and excellence in corporate governance.