SUMMARY:

• Work collaboratively with internal audit, corporate security, and external auditing agencies to insure business units understand risks and can make informed business decisions.
• Collaborate with business units, technical management, and technical staff to insure recoveries meet defined business needs and recovery goals.
• Anticipate needs from Federal and State regulatory bodies and designs recovery strategies that will meet their requirements yet allow the Business Units to make the best business decisions.
• Transform risk profile from technical detailed micro level to macro level for executive risk management.
• IT Project Management
• Program Management
• Business Impact Analysis
• Tabletop Exercises
• Failover Exercises
• Recovery Strategies
• Consolidation and Simplification
• Governance, Risk, and Compliance
• Risk Identification and Management
• Policy, Process, and Procedure Creation
• Business Continuity / Disaster Recovery
• Business Resumption Strategies
• Technical Recovery
• Crisis Management & Communication
• Crisis Communications
• Competed and won against IBM and other business continuity providers for a US Department of Agriculture initiative to train IRS agents about business continuity.
• Designed and executed a disaster recovery strategy that recovered 84 systems across four different cities simultaneously within recovery time and recovery point objectives.
• Designed enterprise wide process improvements using business continuity, project management, and Six Sigma methodologies that reduce cost, improve productivity, and eliminate waste.
• Developed Internet based interface for Project Management Institute’s Organizational Project Management Maturity Model (OPM3) tool allowing project management or business continuity assessments for any size global company.
• Created presentation "Business Continuity: First Steps" for 6th Summit Meeting of Company Wide Cost Reduction Strategies in Istanbul, Turkey
• Developed an internet based marketing strategy using SEO, RSS, pay - per-click, and press releases.
• Created and aired two infomercials on Business Continuity.
• Managed project for web site creation including vendor evaluation and negotiation to secure the best price, performance, and quality.
• Designed and developed three Business Continuity concepts classes based on Project Management.
• A five day instructor led Advanced Business Continuity Concepts class that shifts the focus for students from an IT only recovery to Business Continuity Planning strategies for the enterprise.
• A customized Internet and CD based Advanced Business Continuity Concepts class allowing corporations to train their entire staff with content that reflects their business and its needs.
• A class designed to give executives a high level look into business impacts outside of IT.

PROFESSIONAL EXPERIENCE

Confidential, Atlanta, GA

Business Continuity Program Manager

Responsibilities:

• Developed an internet based marketing strategy using SEO, RSS, pay-per-click, and press releases.
• Created and aired two infomercials on Business Continuity.
• Managed project for web site creation including vendor evaluation and negotiation to secure the best price, performance, and quality.
• Designed and developed three Business Continuity concepts classes based on Project Management.
• A five day instructor led Advanced Business Continuity Concepts class that shifts the focus for students from an IT only recovery to Business Continuity Planning strategies for the enterprise.
• A customized Internet and CD based Advanced Business Continuity Concepts class allowing corporations to train their entire staff with content that reflects their business and its needs.
• A class designed to give executives a high level look into business impacts outside of IT.
• Interviewed by Projects@work "To Be Continued" on Business Continuity Planning for major events like Katrina.
• Interviewed by The Event Organizers eJournal, on “When Is It Okay to Be Paranoid about Your Events?”

Confidential, Atlanta, GA

Business Continuity and Disaster Recovery Consultant

Responsibilities:

• Created a Business Continuity Policy that was eventually adopted by the Board of .
• Performed a Business Impact Analysis in 58 major departments and identified 528 important or critical processes, 107 of which were critical day one.
• Developed system migration plan (SAP and Data Warehouse) based on Business Impact Analysis that ensured no critical application would be orphaned. Engaging with Business Process Owners was a critical factor.
• Created a Business Continuity Plan that complies with NIST requirements.
• Created a Multi Hazard Pandemic Plan that complied with all U.S. Department of, CDC, and Georgia Department of requirements.
• Created a Crisis Communications Plan for the Communications Department that incorporated emerging technologies to keep in touch with parents, students, School Board and Cabinet members, and the press.
• Assisted IT Security Department as a Project Manager for implementing a Dell SecureWorks employee and phishing project.
• Wrote Security Incident Management Plan for the IT Security Department.
• Initiated Disaster Recovery tabletop and subsequent recovery exercise for SharePoint and SAP.
• Coordinated efforts for an external auditor, IT Infrastructure, and IT Security to develop recommendations for the Board of for what to do in case there was a “mass casualty” event at a school.

Confidential, Atlanta, GA

Business Continuity and Disaster Recovery Consultant

Responsibilities:

• Helped Confidential prepare for upcoming Office of the Comptroller of the Currency (FFIEC) examination.
• Audited existing Business Continuity Plans in eBRP to determine if they met Confidential standards. Found inconsistencies in every plan checked and recommended changes to each Business Line to bring them in line with policies.
• Found errors in documented Recovery Strategies for 20 Business Functions. Recommended changes to existing Business Continuity Plans to revise the recovery strategy from Transfer Work to Work From Home.
• Created scripts for Recovery Planners to use in revising their Business Continuity Plans. This provided managers the ability to successfully invoke their Business Continuity Plan without creating a Crisis Communications Plan on the fly. Also allowed Recovery Planners to conform to Confidential and FFIEC guidelines.
• Discovered conflict with Recovery Time Objectives in strategy for several plans by location. Recommended those plans be separated by Business function. Business Continuity Plans went from 39 to 65.
• Followed up with Recovery Planners and Executive Management on Call Tree exercise to insure 100% participation by all Business Lines.

Confidential, Atlanta, GA

Business Continuity and Disaster Recovery Consultant

Responsibilities:

• Held first Tabletop Exercise for Financial Services “Green Card”. Documented all issues and reported results to Executive Management and Internal Audit.
• Managed project to correct all Tabletop Exercise defects and held a successful Failover Exercise 45 days later at the Denver co-location facility.
• Created first Business Continuity Policy, Crisis Management Plan, Crisis Communications Plan, Pandemic Plan, Divisional Business Resumption Plans, and an IT Technical Recovery Plan. These were all adopted by the Executive Risk Committee and sponsored by Internal Audit.
• Developed and documented Disaster Recovery process including Business Impact Analysis.
• Audited and updated Business Impact Analysis cross all divisions.
• Injected Disaster Recovery Planning into the IT Project Management Office for new and in-flight projects as part of Project Planning or promote to production process.
• Eliminated manual call trees with purchase of Everbridge for Incident Notification Management and fulfilled requirements for SAS 70.
• Created detailed project plan to make the Denver Disaster Recovery site Payment Card Industry (PCI) compliant.
• Initiated project to install SharePoint Enterprise 2010 and Project 2010 for Business Continuity and Disaster Recovery document storage and approval (another SAS 70 and PCI requirement).

Confidential, Atlanta, GA

Business Continuity and Disaster Recovery Consultant

Responsibilities:

• Recruited to bring Internet Security Systems into compliance with IBM's standards for Disaster Recovery.
• Developed and held an executive course that covered IBM's Disaster Recovery standards.
• Held the first IBM approved Business Impact Analysis for each Business Critical Process.
• Created first Disaster Recovery Plans based on recovery tiers from the Business Impact Analysis.
• Documented upstream and downstream application dependencies for integrated Disaster Recovery tests.
• Held first tabletop exercises for Oracle, MQ Series, and Siebel.
• Worked with IBM management and Price Waterhouse Coopers consultants to insure the final Business Continuity and Disaster Recovery plans met FFIEC (Federal Financial Institution Examination Council) standards and requirements for Financial Institutions Service Providers.
• Identified overseas locations that needed Disaster Recovery Plans and worked with management in those locations to begin developing plans.
• Identified gaps in Supply Chain contracts with manufacturers that contained no provisions for creating, storing, or testing Disaster Recovery Plans.
• Collaborated with IBM Security to perform a gap analysis between what IBM Security deemed necessary for Crisis Management and what was consistent with Business Continuity best practices.
• Established relationships with external government agencies for CERT and Bio-Terrorism

Confidential, Atlanta, GA

Business Continuity and Disaster Recovery Consultant

Responsibilities:

• Developed metrics for conducting disaster recovery exercises at Georgia-Pacific and reviewed proposed recovery plans with Georgia-Pacific divisional directors and staff.
• Worked with other Georgia-Pacific departments to insure production environment would not be impacted by the exercises and developed Disaster Recovery testing strategy for Georgia-Pacific that isolated participants to identify cross platform and cross departmental touch points not identified in documentation.
• Worked with the Georgia-Pacific Business Continuity office to determine standard desktop environments needed at recovery sites.
• Set project scope with divisional management for each divisional test and established baselines for measuring project performance in subsequent tests.
• Insured Disaster Recovery tests increased in difficulty and complexity for each successive test by setting “stretch” goals for the teams and established testing schedules for divisions and coordinated divisional testing of recovered systems.
• Developed, planned, and successfully tested disaster recovery procedures using multiple hot site locations throughout the United States. A key component of the testing was using contract personnel unfamiliar with our systems to recover the systems and establish communications between the sites and between the systems.
• Project manager for the AS/400 sub-project of the Data Center 2000 move, resulting in consolidating and upgrading systems, specifying contract terms and conditions for the outsourced portion of the project, as well as planning for disaster recovery testing (resulting in $14 million data center savings).
• Saved Georgia-Pacific $110,000 in system moving costs by using an innovative Disaster Recovery strategy as part of the Unisource acquisition