SUMMARY:

• CISSP, CISM, CCE, & CFE
• Developed computer forensic, penetration testing, risk assessment, and cyber intelligence programs that exceeded SOX, GLBA, FFIEC and PCI requirements.
• Identified business, process and security risks, developed and managed the implementation of actions plans to mitigate the risks.
• Provided key organizational responses to various corporate audits and regulatory agencies (FDIC, FFIEC, OCC).
• Development security operational assessments.
• Experience public speakers and instructor.
• Managed response for various security incidents such as malware outbreaks, DDoS, data breaches, data leakage events, lost and stolen information technology assets.
• Provided key regulatory responses during security incidents.

PROFESSIONAL EXPERIENCE:

Sr. Information Security Manager

Confidential, Cranston, RI

Responsibilities:

• Ensure compliance with the regulatory requirements and demonstrate program sustainability.
• Management of risks for the organization and for the products and services delivered.
• Develop & deliver Information Security Program strategy for Risk Assessment, Penetration Testing, Project Consultancy, Digital Forensic Investigations, Incident Response and Cyber Threat Intelligence.
• Deliver cost effective products and services including creating operating budgets, and identifying cost saving approaches.
• The position reports to the Chief Security Officer and manages five teams with five direct and 20 indirect reports.
• Improved the organization’s ability to effectively evidence and demonstrate the sustainability of Information Security Specialist Services.
• Delivered unprecedented results by meeting Service Level Agreements for the first time in the history of the organization.
• Identified policies and processes to reduce costs based upon organization risk appetite.
• Contributor to development of the strategy to sustain Information Security objectives during divesture from Confidential through the worlds largest IPO of a financial institution.

Information Security Manager

Confidential, Cranston, RI

Responsibilities:

• Contribute to the development of information security strategy, policy and budget.
• Set goals and utilize KPIs to drive improvement initiatives in the Information Security program.
• Lead the delivery of the Information Security services including Risk Assessment, Penetration Testing, Security Consultancy for Projects, Digital Forensic Investigations, Incident Response and Cyber Threat Intelligence.
• Empower and support front line managers to take prompt and proactive action to address shortfalls in business delivery and make effective use of resources.
• Create a climate of constant improvement by facilitating inclusive open discussion and debate around process efficiencies
• Lead the delivery of improved process and operating models for Information Security Project Consultancy, Penetration Testing, Risk Assessment, Computer Forensics and Cyber - Intelligence.
• Enhanced relationships and span of influence with key senior managers across the organization to gain greater support and influence for information security initiatives.
• Coached and mentored multiple direct reports aiding them in achieving promotions and opportunities with great responsibility.

Service Delivery Lead Penetration Testing

Confidential, Cranston, RI

Responsibilities:

• Recruited by Senior Management to identify & remediate programmatic gaps and drive holistic change within the program.
• Build relationships with key stakeholders.
• Analyze the existing program address critical gaps without adversely affecting the current delivery levels of the service and deliver a long-term plan to build a sustainable foundation for the program.
• Meets or exceeds requirements of regulatory bodies, policy standard, global business operating models, and expectations of business partners.
• Reported to the Sr. Information Security Manager and lead two direct reports.
• Simultaneously lead the Penetration Testing and Forensic & Incident Response Teams.
• Streamlined process and communication regarding penetration testing by nearly 90%.
• Increased the number of tests being conducted by more than 50%.
• Improved business line engagement and satisfaction.

Team Lead Incident Response & Forensic Specialist

Confidential, Cranston, RI

Responsibilities:

• Create, maintain and enhance policy, process and standards to ensure continued alignment with best practice. Ensure global forensic practices are in alignment with international and foreign law.
• Continually enhance Forensics & E-Discovery capabilities to meet the needs of stakeholders.
• Support investigative efforts regarding electronic crimes against the firm including internal and external fraud events.
• Track metrics (KPIs & KRIs) and produce report on computer forensic activity and information security incidents across the global enterprise.
• Manage daily workflow, mentor junior colleagues, research, develop and present business justifications for operational and project funding.
• Delivered the Forensic & Incident response program from a concept to a recognized mature program evidencing more than $3 Million in yearly savings to the organization.
• Built and developed global spheres of influence amongst peers as well as Senior and Executive Management.
• Lead a collaborative initiative to expand the role of computer forensic during Information Security Incident Response initiatives.
• Planned and delivered a $300,000 initiative to increase and improve forensic and e-Discovery services and capabilities.

Confidential

Adjunct Professor

Responsibilities:

• Develop collegiate level computer forensic course curriculum.
• Deliver instruction curriculum and prepare students for computer forensic certification examination.
• Develop course proposal & curriculum for Threats, Vulnerabilities & Countermeasures.

Confidential, Auburn, MA

Computer Forensic Investigator & IT Manager

Responsibilities:

• Administer 24x7x365 mission critical Wintel IT Infrastructure with 95%+ uptime.
• Conduct forensically sound investigations of digital data storage devices that related to criminal acts.
• Provide crisis and emergency management planning for government entities and critical private organizations.
• Operational team member in special operations units such as Emergency Planning, SWAT & Dive Rescue.
• Implemented a regional digital & video forensic investigative services program for the Worcester County Drug and Counter Crime Task Force.
• Collaboratively implemented the nation’s first multi-community facial recognition system.
• Secured $500,000 funding to implement a department wide technology transformation program and delivered $80,000 under budget.
• Recipient of numerous awards and accommodations for contributions to public safety, community relations, and services levels.