SUMMARY:

• Analytical, highly adaptable professional with an extensive history in the assessment of risk and technical support of organization wide operations.
• Established a disciplined approach to optimizing operations, technology and processes to realize measurable savings and operational benefits across business units.
• Designed and implemented IAM Reengineered and created Process Work Flow’s in Environmental, Engineering, Healthcare, Manufacturing and Software development utilizing both Agile and Waterfall methodologies.
• Created a range of documentation disseminated among staff designed to increase security and support the implementation of SOD and RBS to meet the standards of the Sarbanes - Oxley Act of 2002
• Generated $2.4M in savings and doubled productivity without increasing staff after redesigning all operations repair and manufacturing procedures.
• Integrated new network infrastructure and policies leading to improved organization wide security and communications.
• Invigorated the Global branding and marketing strategy of the organization to showcase its product line and service offerings throughout the industry while increasing revenue streams by 33% to 61%.

TECHNICAL SKILLS:

Protocols: Active Directory, API, DDoS, DHCP, DNS, Firewall, FTP, IDS/IPS, IIS, Secure Shell, VMWare, VPN

OperatingSystems: Windows OS, Windows Server 2003, 2008, 2012, Azure, MAC OS, ANDROIDMicrosoft Office365, Exchange, Project and Visio, EPIC MyChart, KIPU, Business Object XI, Component Control Quantum, Crystal Reports, Centricity, Oracle, PlanView, Pyxis, Skype, Terminal Emulation, WebEx, Saviynt AWS, ForgeRock OpenAM and OpenIDM, Radiant Logic, OneX Portal

Hardware: Apache, Avaya, CISCO, Dell PowerEdge, IBM AS400, IBM OS390

PROFESSIONAL EXPERIENCE:

Confidential

Lead IAM & Compliance Engineer

Responsibilities:

• Identity Management: Working on customer IAM project using ForgeRock openAM and openDJ, build up customer authentication REST services layer for RCCL.com. Radiant Logic to house and secure data within VDS and Saviynt to assist with the creation and password management of guest accounts.
• Integration: Utilizing OAUTH to allow access to Protected API's for OAuth Clients by getting Access Token from Authorization Server using various Grant Types.
• Used OAuth play ground to retrieve access token and refresh token. Work closely with IAM architect and engineers for design and solution architecture.
• Reviewed custom API’s designed to integrate with ForgeRock & Saviynt to personalize guest interation on Mobile and Web applications.
• Privileged Access Management: Working on PAM POC to authenticate the users between either CyberArk or BeyondTrust.

  Compliance: Implemented compliance, risk assessment and policy adherence companywide to ensure HIPAA, JHACO and audit control guidelines are exceeded during the development and integration.

• Integration: Implemented, Designed Clinical templates based on the practice needs.
• Certified Clinical Quality Improvements workflows maximizing the use of multiple systems sharing medical record custodial duties with client leadership by the introduction of Roles Based Security and IAM protocols.
• Designed workflow credentialing new providers improve quality care processes.
• Process Improvement (Agile): Designed deployment and processes by which administration, clinicians and physicians utilize and communicate with the DUXLINK SaaS offering to ensure HIPAA standards are not only met but understood.

Confidential

Chief Information Officer

Responsibilities:

• Compliance: Implemented compliance, risk assessment and policy adherence companywide to ensure SOX, FAA and OSHA guidelines are exceeded.
• Reengineered the accounting processes by which Sales, Purchasing, Repairs and Consignments were handle by working with the Controller to create accounting codes that specifically correlate to the job task and those employees associated to the task.
• Improved cash flow by facilitating cross-functional team in streamlining billing and price change processes depending on market trends.
• Deployed Audit Controls: Implemented audit measures, delivering extensive fieldwork and documentation. Establishing IT and business contact relationships and controls critical to highly sensitive data impacting the company’s bottom line.
• Identity Management: Implemented IAM with direct access into AD for Quantum Control to abide by FAA and SOX guidelines stemming from audit findings exposing faults in systems and user access
• Integration: Improved management decision-making by introducing key business process metrics dashboards by utilizing the data produced out of Quantum.
• Operations: Redesigned processes by which new products are tested and the scope by which they are approved for submittal to the FAA along with cost cutting savings of $2.4M and doubled productivity without increasing staff after redesigning all operations repair and manufacturing procedures.
• Increased bottom line by shutting down second shift and adding work force to 1st shift. Operational expenses including overtime showed a positive gain in revenue of 16%.
• Risk Mitigation: Optimized protective measures during large scale audits, recommending additional procedures for execution and technical strategies for completion.
• Technical Risks: By introducing segregation of duties, averted risks concentrating on business requirement needs for increased controls stemming from rapid business growth.

Confidential

VP Information Technology & Operational Support

Responsibilities:

• Compliance & Governance Assessment: Developed and executed 2-year roadmap improving overall information security posture. Recommended the implementation of Identity Management and segregation of duties (SOD) controls be put in place due to rapid business growth.
• Operations: Developed new business model and processes to standardize business practices for new Avionics repair station.
• Revenue Maximization: Implemented a variety of changes leading to increased revenue and decreased expenses, including the support of sales teams via continuous system uptime and the implementation of remote access technologies leading to a reduction in organization expenses.

Confidential

Process Management Engineer II & Business Objects Admin

Responsibilities:

• Identity Management: Spearheaded Identity and Access Management program, leading team 5 employees and consultants and budget of $1M. Collaborated design, implementation, maintenance and troubleshooting of automated access control and identity management system with I.T. Security, DevOps and Vendors..
• Drew on a wide range of data sources in the generation Identity Management tools to be integrated into Active Directory to ensure security and risk compliance of all employees and contractors.
• Optimized protective measures during large scale analyst, audit, identification and consolidation of over 700 applications while implementing Roles Based Security.
• Encourages all application (700+) owners and business unit owners to be a part of what is to be the new audit framework which thoroughly examines high volume business process which can also impact patient care.
• SAS70 Security Audit: Led Key audit processes. Cultivating trust among IT and business unit staff as go to resource for audit questions and recommending testing alternatives to uncover areas of vulnerability.
• Sox Compliance: Led SOX readiness audit within End User Computing system, repairing trust in leaderships by coordinating Privacy, HR, External Reporting, Finance & Accounting, and business unit owners for fully test controls, document results, and convey issues.
• Process Improvement: Reengineered and created Process Flow’s\Work Flow’s for BHSF IT, Clinical, Environmental and Engineering Services utilizing both Agile and Waterfall methodologies.
• Designed and maintained all processes from ground breaking to grand opening of Homestead Hospital.