Lessons from Angela Diaz on Fighting Fraud and Protecting People

Written By Ryan .

“Fraud affects people in an extremely negative way, and being part of that fight is really exciting for me.” – Angela Diaz, CRMP

In this episode of Ask a CISSP on The Other Side of the Firewall, I had the pleasure of sitting down with Angela Diaz, a seasoned risk professional with 12 years of experience in fraud prevention, financial crimes, and enterprise risk management. Angela has built her career helping organizations understand risk—not just as a compliance checkbox, but as a crucial way to protect customers, strengthen business resilience, and ultimately save lives.

Yes, lives.

While many think of fraud as just stolen credit cards or unauthorized charges, Angela reminded us that financial crimes can have devastating emotional consequences. "There are cases where people have lost their entire life savings due to scams, and some victims have taken their own lives because of it," she shared. Sextortion, romance scams, and financial exploitation are not just crimes against money—they’re crimes against people.

Understanding the Three Lines of Defense

Angela broke down the often-misunderstood risk management framework used by financial institutions:

First Line: Works directly with business leaders, mapping processes and managing risk day-to-day.

Second Line (Angela’s specialty): Independent oversight, validating risk assessments, analyzing data trends, and ensuring that risk is managed correctly across the enterprise.

Third Line (Audit): Independent review to ensure the first two lines are working as intended.

As Angela put it: "It’s designed to be layered for accuracy. We can’t just wait for regulators to tell us something is wrong. We need to be proactive."

A Career Built on Grit and Collaboration

Angela’s journey wasn’t a straight line. After starting in customer service, she moved into fraud investigations, drawn by the human side of the work. Her advice for breaking into risk?

  • Take special projects: "Even if you don’t know what you’re doing, volunteer. Ask questions. That’s how you grow."

  • Develop soft skills: Collaboration is key—"Think of yourself as an orchestra conductor, guiding data scientists, product managers, and operations leaders toward a common goal."

  • Certifications help, but experience matters more: She recommends choosing certifications wisely, investing in broad risk credentials early, and specializing later.

Fraud Fight Club: Where Passion Meets Purpose

Angela is also a coach and advisor for Fraud Fight Club, a unique conference dedicated to fighting fraud through collaboration, education, and awareness. Unlike typical conferences, Fraud Fight Club focuses not just on technology, but on the human impact of fraud. From sextortion awareness to AI-driven scams, this think-tank-style event is where risk and cybersecurity professionals unite to share strategies that save both money and lives.

"It’s a real fight," Angela said. "And the Fraud Fight Club name represents the passion we all have for protecting people."

The Human Side of Risk

Outside of work, Angela practices yoga and spends time in nature to stay grounded. "Yoga reminds me to let things pass through me instead of carrying them with me. That mindfulness makes me better at my job."

For those considering a career in risk, Angela’s story is a reminder that risk isn’t just about numbers or compliance—it’s about people. And if you want to make a difference, this is a field where you truly can.

Where to Find Angela: LinkedIn – Angela Diaz

Learn More: Fraud Fight Club

Listen to the full conversation on theothersideofthefirewall.com or ram.cyber.io. 📚 And don’t forget—our book is available for now!

Thank you for reading, and stay tuned for more episodes of The Other Side of the Firewall podcast on Monday, Tuesday, Wednesday, and Friday, as well as the Ask A CISSP podcast every Thursday. Please like, share, and subscribe.

Stay safe, stay secure!

Ryan is a retired Air Force veteran who brings over 20 years of experience in network infrastructure, project management, and cybersecurity consulting to his current role as CEO of RAM Cyber Consulting & Assessments, LLC. RAM Cyber is a premier governance, risk, and compliance (GRC) consultancy dedicated to supporting the Defense Industrial Base (DIB), federal agencies, and corporate entities. We specialize in delivering expert guidance to ensure compliance, mitigate risks, and enhance cybersecurity postures.

Shannon, also a retired Air Force veteran, has more than two decades of expertise in network security and vulnerability management. He now serves as an Information System Security Officer (ISSO), where he continues to enhance national security protocols.

Chris is a Navy veteran with over 13 years in IT, information assurance, and risk management. His current role as a Senior Security Consultant focuses on vCISO and Cyber Assessments services enhancing data security and privacy for various organizations.

**The Other Side of the Firewall podcast is a product of RAM Cyber Consulting & Assessments, LLC. RAM Cyber Consulting & Assessments, LLC is a premier governance, risk, and compliance (GRC) consultancy dedicated to supporting the Defense Industrial Base (DIB), federal agencies, and corporate entities. We specialize in delivering expert guidance to ensure compliance, mitigate risks, and enhance cybersecurity postures. RAM Cyber is pending SDVOSB, VOSB, and 8(a) certification by the SBA, underscoring our commitment to excellence and service.

Ryan .
Previous

Introducing Ask Me GRC Cybersecurity Guidance at Your Fingertips
Next

The New Frontier of Cybersecurity: Mind Privacy, Cognitive Risk & Agentic AI