Senior practitioners. The bench you call when the stakes are real.

Deborah spent nine years inside one of the largest regulated financial institutions in the world, as an Executive Director at JPMorgan Chase. She governed five billion dollars in master services agreements across more than a thousand vendors, rebuilt the firm’s vendor management office in two months with a sixty-seven-percent efficiency gain, and improved audit outcomes by sixty-one percent through a pre-audit framework she designed and operationalized.

She currently serves as Fractional Chief Operating Officer for venture-backed fintech clients, where her work spans BSA/AML infrastructure, multi-state earned-wage-access licensing, SOC 2 and ISO 27001 operational layers, and responsible AI governance frameworks. Earlier in her career she was Managing Director at EXENET LLC — owning the legal-division P&L through the Dewey LeBoeuf merger — a Director at Proskauer Rose, and Managing Director at IPM.

The thread is operational rebuild: taking compliance, vendor, or operating infrastructure that has grown faster than the discipline holding it together, and putting the discipline back. She is one of the firm’s primary advisors on Qualisphere’s own internal operating model.

Grace has worked inside two regulated environments most practitioners never combine: clinical laboratory operations under GCP and GDP compliance, and software quality assurance under release-deadline pressure. At Foundation Medicine she accumulated more than eight thousand hours of clinical laboratory process expertise as GCP/GDP compliance lead, managed a team of twenty-plus personnel, and designed training curricula that scaled to four hundred staff.

At Epic Games she was Quality Assurance Tester II on Fortnite, authoring Build Test Requests and Confluence documentation that prevented launch-day failures. The combination makes her one of the rare practitioners who can write a 21 CFR Part 11 SOP in the morning and a build-test request for a digital therapeutics release in the afternoon.

At Qualisphere she has delivered medical device DFMEA work and biomedical regulatory document analysis, and her precision habits and dual fluency carry into every engagement.

Alex is a digital therapeutics and software-as-a-medical-device practitioner with depth in regulated software quality and ISTQB verification and validation.

Onboarding and provisioning are in progress; he will be available for client engagements once complete.

Brian has spent three decades advising healthcare systems, insurers, and regulated operators at the intersection of patient safety, regulatory compliance, and operational risk. He is brought in to prevent the problems that become Joint Commission findings, malpractice claims, and regulatory actions — and to guide clients through them when they arrive. His clients get an advisor who knows what the regulators are looking for, what defensible practice looks like under deposition, and how to fix the system rather than the symptom.

For twenty-two years, he was the national risk and patient safety advisor to twelve thousand physicians, fielding the calls that came in when a case went wrong and the questions that determined whether the next one would. He has run a plasma donation center under 21 CFR Part 640, served as Safety Officer at a major teaching hospital under Joint Commission, designed HEICS and mass casualty protocols, and currently leads workplace health and safety for one of the largest operators in the country. His work on clinical documentation standards is published in the Journal of Medical Practice Management.

Clients hire Brian to keep small problems from becoming expensive ones, and to guide them through the expensive ones when they arrive. Outside the firm, he served as a fire officer and EMT/paramedic.

Dustin Rhodes is a project management and business operations professional building at the intersection of AI, business intelligence, and business development strategy. His background spans enterprise project execution, workplace technology coordination, dashboard development, documentation systems, and AI-supported workflow design.

He builds tools that help teams see the business more clearly: operational trackers, KPI dashboards, competitor research systems, data history logs, project visibility frameworks, and reusable logic structures for organizing messy information into usable insight.

While his current work is rooted in project execution, Dustin’s core strength is translating data into strategy — using AI, analytics, and business-development thinking to surface patterns, clarify decisions, and create systems that teams can actually use.

Taylor Rhodes is the founder of Qualisphere Consulting, a firm focused on helping regulated organizations build operationally credible quality, security, compliance, and AI governance programs. Her work sits at the intersection of regulated operations, technology infrastructure, software quality, cybersecurity, and organizational scale — particularly in industries where operational failure carries regulatory, financial, or patient risk.

With more than a decade of experience across highly regulated industries, Taylor has built her career inside medical device, biotechnology, pharmaceutical, clinical laboratory, and financial services organizations. Before founding Qualisphere in 2024, she held leadership, consulting, and fractional executive roles spanning quality systems, software quality engineering, regulatory operations, risk management, security governance, and operational transformation for startups and growth-stage companies navigating complex compliance environments.

Taylor is known for building systems that function operationally — not simply on paper. Across her consulting work, she has guided organizations through SOC 2, ISO 27001, ISO 13485, ISO 15189, IEC 62304, and related regulatory and certification initiatives while helping leadership teams align quality, security, and business operations into scalable operating models. Her experience spans both technical implementation and executive governance, including software development lifecycle programs, enterprise risk management, cybersecurity governance, laboratory quality systems, and regulated product development.

Alongside her consulting practice, Taylor independently architected and built the Qualisphere AI Operations Platform — a fourteen-agent orchestration environment powered by LangGraph and designed specifically for regulated operations. The platform incorporates human-on-the-loop enforcement, consent governance, escalation controls, audit traceability, and role-based operational segmentation to support compliant AI-assisted workflows inside regulated businesses.

The platform was not developed as a demonstration project or marketing asset. It was built as Qualisphere’s internal operating environment and now serves as the foundation for the firm’s advisory work surrounding responsible AI governance, operational AI deployment, and risk-managed automation inside regulated industries.

Clients typically engage Taylor when organizations are facing the intersection of compliance obligations, operational growth, technical complexity, and executive decision-making. Her work focuses on helping leadership teams establish systems that are defensible under audit, sustainable under scale, and practical for real-world operations.

Trish Rhodes helps senior leaders in regulated industries take workplace technology programs from decision to operating model.

More than two decades into a career in enterprise IT, Trish is operating at the intersection of two of the most standards-bound, scale-sensitive industries in the field: pharma and financial services. She is an Executive Director at JPMorgan Chase within Enterprise Communications Platforms for workplace experience technologies. Before JPMorgan, she spent thirteen years at GSK in two roles. As a Global Program Manager, she set global IT and workplace experience standards across more than four hundred sites and one hundred thirty thousand employees. She then ran product leadership for a network of seven thousand meeting rooms and digital signage spanning a hundred-plus global locations.

That work was not theoretical. It involved global RFPs that ended in vendor consolidation, CAPEX and OPEX frameworks that survived CFO scrutiny, and Smart Rooms and Smart Buildings strategies implemented at scale. Behind each was the same discipline, applied across matrixed teams in every region: understand the business, financial, and physical requirements; develop and publish the standard; enforce it globally; and let operations smooth out.

Clients hire Trish for the work that sits between strategy and operations: workplace technology programs that need a decision made, a path set, and a global program managed through to the operating model on the other side. Some are focused decision engagements that produce a single executive memo through her methodology, The Three Paths Method. Others are full program leadership engagements covering standards, vendor consolidation, financial framework, and deployment on a global scale. The deliverable changes with the engagement. The discipline behind it does not.

Darlene works in fintech compliance, fraud operations, and payment infrastructure — VISA API integration, regulated payment processes, and fraud program design.

Onboarding is in progress; she will be available for client engagements once the background check and contractor package complete.

Danny works in the layer where security programs meet the day-to-day reality of running them — the audit cycle, the evidence collection, the access review that confirms least privilege is actually being enforced, the quarterly ISMS review where last quarter’s gaps either closed or didn’t.

Most recently he served as ISMS Compliance Lead at Keeper, where he was the practitioner inside SOC 2 and ISO 27001 audit remediation, vendor security reviews, penetration testing coordination, and the operational follow-through that turns audit findings into closed findings. He led the company-wide 1Password rollout — administrator configuration, documentation, and user training — the kind of execution that gets a security tool from “purchased” to “actually used by every employee.”

Earlier contract roles at Innovative Computers and Delta Air Lines built the operational discipline he brings to ISMS work today: execution under pressure, attention to evidence quality, and the habit of asking what an auditor will ask before the auditor asks it. Clients who engage Danny get a practitioner who knows what a clean SOC 2 audit actually looks like, and who has the operational discipline to deliver one.