Insights

Fresh thinking and actionable insights that address critical issues your organization faces.

Learn more

Resources

Services

KPMG's multi-disciplinary approach and deep, practical industry knowledge help clients meet challenges and respond to opportunities.

Services to meet your business goals

Technology Alliances

KPMG has market-leading alliances with many of the world's leading software and services vendors.

View all Alliances

Industries

Helping clients meet their business challenges begins with an in-depth understanding of the industries in which they work. That’s why KPMG LLP established its industry-driven structure. In fact, KPMG LLP was the first of the Big Four firms to organize itself along the same industry lines as clients.

How We Work

We bring together passionate problem-solvers, innovative technologies, and full-service capabilities to create opportunity with every insight.

Learn more

Careers & Culture

What is culture? Culture is how we do things around here. It is the combination of a predominant mindset, actions (both big and small) that we all commit to every day, and the underlying processes, programs and systems supporting how work gets done.

Learn more
Relevant Results
Sorry, there are no results matching your search.
Autocomplete suggestions are available. Use up and down arrows to review and enter to select.
See more results

Orson Lucas

Principal, Advisory, Cyber Security Services, KPMG US

Tampa, Fla.
Contact Us
Image of Orson Lucas

Orson Lucas

Principal, Advisory, Cyber Security Services

Orson Lucas has over 18 years of information technology and security experience spanning numerous disciplines, with a focus on regulatory and technical compliance and technology as an enabler of business efficiency. Significant areas of experience include: information governance and privacy assessments and strategy development; post-merger security integration; compliance assessments of regulatory standards and requirements; risk and controls consulting across numerous industries, systems and processes; information security policy development; and IT process design enhancement for application and system availability and performance.

Orson has a demonstrated track record of selling, organizing and delivering a wide variety of services, individually and in collaboration with other leaders within and outside of his area of specialization. Representative engagement experience includes:

  • Sold and managed a multi-year international project portfolio of information governance and privacy projects for the world’s largest global retail organization. Led a team of over 60 individuals domestically across approximately 30 member firms across a wide variety of client functional areas including information security, internal audit, health & wellness, legal, food safety, and international compliance with total revenue of $20 million. Primary responsibilities included:
    • Executive relationship development and management;
    • Executive and technical management presentations and reporting;
    • Overall engagement planning and execution;
    • Budget development and tracking;
    • Project planning and tracking;
    • Resource management;
    • Technical lead management and reporting (domestically and international).
  • Led client pursuit and program delivery for the largest global privacy compliance support effort by the US firm in a highly political environment with an approach that brought together the chief security officer, general counsel, chief compliance officer, and global business line leads. Worked closely with UK counterparts to develop a solution, roadmap, business plan, and detailed budget for $28M of funding to support compliance efforts in a highly political environment. Presented and secured funding for the client to business and executive leadership.
  • Led a portfolio of cybersecurity projects including on-demand CISO services, GDPR readiness, cyber strategy, business resilience strategy, identity and access management strategy, and operational technology security strategy and execution for a global cruise line.
  • Led a large retail wholesaler client in performing a comprehensive, end to end review of security practices (including identity lifecycle management, role management, internal/external/web application/wireless penetration testing, PCI readiness, cloud security, third party security, brand protection, cyber maturity).
  • Led a technology-focused operational assessment and remediation planning program transformation effort for top 10 international Food and Beverage company to support GDPR compliance. Worked with KPMG European member firms to perform a down and bottom up assessment of operational control readiness within 700+ applications across the 23 European Union member countries and the U.S. for controls, processes, and resources to support GDPR compliance requirements. Assisted in development of a comprehensive roadmap to address identified deficiencies and enable compliance readiness and debriefed results to General Counsel and the Chief Information Security Officer.

KPMG. Make the Difference.


Some or all of the services described herein may not be permissible for KPMG audit clients and their affiliates or related entities.

The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future. No one should act upon such information without appropriate professional advice after a thorough examination of the particular situation. KPMG LLP does not provide legal services.

The information contained herein is not intended to be “written advice concerning one or more Federal tax matters” subject to the requirements of section 10.37(a)(2) of Treasury Department Circular 230.

© 2024 KPMG LLP, a Delaware limited liability partnership and a member firm of the KPMG global organization of independent member firms affiliated with KPMG International Limited, a private English company limited by guarantee. All rights reserved.

For more detail about the structure of the KPMG global organization please visit https://home.kpmg/governance.

Thank you!

Thank you for contacting KPMG. We will respond to you as soon as possible.

Contact KPMG

Use this form to submit general inquiries to KPMG. We will respond to you as soon as possible.

By submitting, you agree that KPMG LLP may process any personal information you provide pursuant to KPMG LLP's Privacy Statement.

An error occurred. Please contact customer support.

Job seekers

Visit our careers section or search our jobs database.

Search now!

Submit RFP

Use the RFP submission form to detail the services KPMG can help assist you with.

Submit

Office locations

View locations

International hotline

You can confidentially report concerns to the KPMG International hotline

Learn more

Press contacts

Do you need to speak with our Press Office? Here's how to get in touch.

Contact

Headline