John Flack works at the intersection of governance and infrastructure, translating operational complexity into accountable systems. At CareCentrix, he oversees secure IBM and AIX environments supporting critical healthcare platforms, aligning uptime, compliance, and change control within regulated settings.
Flack’s work has evolved into risk architecture, mapping how legacy systems and emerging AI environments intersect across assurance, accountability, and compliance frameworks. He applies established standards, including ISO 27001, ISO 42001, ISO 23894, and the NIST AI Risk Management Framework, alongside quantitative risk modeling and integrated GRC principles to operationalize trust in both traditional IT and AI systems.
As a FinOps Certified Practitioner and the Vice President of the Cloud Security Alliance’s Piedmont Triad chapter, Flack focuses on building bridges between technical governance and AI assurance.
