SUMMARY:

• An experienced security architect in cloud native architectures with a track record of delivering complex and large - scale security solutions, services and projects. In addition to leadership, he is an expert in cloud native security, GRC and security programs. Adept at working with the business and IT organization to meet business, IT, security and compliance goals with a fantastic customer experience.
• IT Security Architecture - Security Architecture, Design, and Control Review in complex global architectures for new, modernization and cloud/cloud native
• Governance, Risk and Compliance (GRC) - Creating GRC platforms and programs integrated into the Development, Project and Operations to track accurate GRC.
• Innovation - Build innovative solutions and security consulting solutions
• Project Delivery - Delivered small to large projects with cross functional, global multinational teams from all regions of the globe.

PROFESSIONAL EXPERIENCE:

Senior Manager - Security Practice

Confidential, St. Paul MN

Responsibilities:

• Security Architecture and Security Assessment (i.e. Cloud Native, Serverless, Digital, B2B)
• AppSec/DevSecOps Assessment and Secure SDLC Implementation
• Governance, Risk and Compliance (GRC) Assessment and Implementation (i.e. PCI, HIPAA, HITECH, NIST Cybersecurity Framework)
• Team Leadership, PM, Mentoring and working with other IT organizations

CISO and Consultant

Confidential, St. Paul MN

Responsibilities:

• Security Architecture and Security Assessment (i.e. Cloud Native, Serverless, Digital, B2B)
• AppSec/DevSecOps Assessment and Secure SDLC Implementation
• Governance, Risk and Compliance (GRC) Assessment and Implementation (i.e. PCI, HIPAA, HITECH, NIST Cybersecurity Framework)
• Team Leadership, PM, Mentoring and working with other IT organizations

Principal

Confidential, St. Paul MN

Responsibilities:

• Created and managed the Security Services portfolio
• Provided Management and Technical Leadership for Security Architect projects which serviced over 7000 applications (i.e. Cloud, Mobile, Digital, B2B)
• Expanded to include an offshore India delivery capability as well as a Brazil delivery capability
• Built out an Application Security Testing managed service which tested tens of thousands of applications
• AppSec/DevSecOps Assessment and Secure SDLC Implementation
• SOC Implementation and Operations and Incident Response
• Security Solutions Sales and Security Champion
• Cybersecurity Project Management (Largest $22M)
• Cybersecurity for Very Large Migration/Transformation Projects

CISO and Consultant

Confidential, St. Paul MN

Responsibilities:

• Security Program review and recommendation
• Security Architecture and Security Assessment (i.e. Cloud, Digital)
• Created and managed the Security Services portfolio
• Created the business case for Cognizant Innovation Committee for a customer security portal
• Created solutions for mobile, cloud (SaaS and PaaS), IAM access control framework, and security maturity assessment and improvement
• Built out an Application Security Testing managed service which tested tens of thousands of applications as well as provided penetration testing with a custom Risk Management portal.
• SOC Implementation and Operations
• Penetration Testing, Vulnerability Scanning and Vulnerability Management
• Cybersecurity Project Management for small to large projects (Largest $35M)
• Cybersecurity for Very Large Migration/Transformation Projects

CISO and Consultant

Confidential, St. Paul

Responsibilities:

• Security Program review and recommendation
• Security Architecture and Security Assessment
• Security for Application Development and DevSecOps
• Linux Security and Hardening

Director

Confidential, St. Paul

Responsibilities:

• Earned the Leader quadrant in the Gartner Magic Quadrant
• Created and managed the Security Services portfolio
• Expanded to include an offshore India capability
• Security Advisory and Assessment
• Security Architecture
• Application Security
• SOC Implementation and Operations
• Cybersecurity Project Management (Largest Project $3M)
• Cybersecurity for Very Large Migration/Transformation Projects

CISO and Consultant

Confidential

Responsibilities:

• Security Assessment
• Security for Application Development
• Redefinition of Security Services Portfolio
• Management and Administration of Security, IAM, Web and Database staff
• Identity & Access Management engineering and operations
• Web-tier engineering and data center operations
• Database development, engineering and data center operations
• L2-L4 Support for IAM, Web, Security and Database technologies
• Security Awareness, and Champion
• Management and administration of Security and Product group staff
• Development, engineering, data center operations and support for security technology and security services
• Penetration Testing, Vulnerability Scanning and Vulnerability Management

Director

Confidential, San Francisco, CA

Responsibilities:

• Management and Administration of security staff
• Development of security solutions supporting development and operations
• Cybersecurity for Very Large Migration/Transformation Projects
• Security Awareness, and Champion

Managing Consultant

Confidential, Atlanta

Responsibilities:

• Security Consulting
• Presales Leader
• Software DeveloperLinux Kernel Development
• Product Management for Security Products
• Software Development Lead
• Software DeveloperLinux Kernel & SSL Development

Principal Research Scientist

Confidential

St. Paul

Responsibilities:

• Software Development Lead
• Software Developer
• Public Sector Security Consultant
• Security Software Project Management (Largest $3M)