SUMMARY

• I am only interested in direct hire full time opportunities (no short term, or contract, or contract to hire);
• I'm only interested in information security management or leadership roles in a mid - sized or larger organization;
• I live in Jackson County MI and I'm happy to commute as far as Ann Arbor to the east, or Lansing to the north, or work remotely;
• I have a list of references I'll be happy to provide after a mutual interest has been established between myself and a prospective employer (not earlier);
• I don't share my salary details or W-2; any employer who requires that information is not a good fit for me;
• I start work very early so the best time for me to interview is after 3 P.M.
• Information security leader with more than 20 years of experience across a diverse set of rolls, markets, technologies, and standards. Specialties include Security Operations, Governance Risk and Compliance, Architecture, and Incident Management. Effectively communicates information security subject matter to C-suite, technical, and non-technical audiences. Provides innovative, and cost effective, business aligned solutions. Builds strong, productive, and collaborative teams, and relationships. An Information Security Philomath.

PROFESSIONAL EXPERIENCE

Confidential, Ann Arbor, MI

Architect, Information Security

Responsibilities:

• Collaborate with, and advise, technology and product stakeholders to facilitate compliance with policy, standards (HIPAA, HITRUST ISO, NIST), and other obligations. Advise, technology and product stakeholders on the identification, selection, implementation, and management of security controls.
• Create and manage a threat modeling program to collaboratively reduce product risk exposure. Support and advise sales and product teams with responses to Requests for Information (RFI), and audits. Research, assess, and advise on risks, threats, and vulnerabilities. Manage information security incidents, the Information Security Incident Response Plan, and table top exercises. Advise on, create, and present, information security metrics.
• Assisted sales and product groups to acquire, and retain clients;
• Created a threat modeling program to identify mitigating controls during product design and development stages;
• Collaborated with the network team to re-architect ingress and egress points, improving security control visibility and coverage;
• Took on the additional responsibilities of the administration and management of the log aggregation, web filtering, malware prevention, IDS/IPS environments, and Managed Security Service Provider (MSSP) relationship;
• Matured the log aggregation environment, unifying the deployments, configurations, indexes, and apps. Additionally, documented the environment, processes, and standards;
• Implemented a Security Event and Incident Management (SEIM) platform;
• Redesigned compliance reports increasing accuracy, and reducing analysis time by half;
• Established security stakeholder working groups to facilitate better collaboration;
• Provided leadership, support, and mentoring to colleagues, and;
• Re-architected IDS/IPS and web filtering environments, improving visibility, coverage, and compliance.

Confidential, Dexter, MI

Manager, Incident Management & Forensics

Responsibilities:

• Oversee the Security Operations Center (SOC) and manage information security incidents, globally. Create, manage, and mature an information security incident response plan. Present quarterly reports to senior management regarding emerging threats, threat actor trends, controls, and opportunities. Provide subject matter expertise on digital forensics and incident response (DFIR), and electronic discovery (e- discovery) to senior management and legal teams. Research, assess, and advise on risks, threats and vulnerabilities. Develop, and present various information security metrics. Daily management of department, budget, and mentoring of the team.
• Designed, tooled, staffed, and managed a “follow the sun” virtual SOC, from a green field;
• Built and implemented an incident management system improving collaboration, increasing capacity by 60%, and reducing time to containment by 40%;
• Incident management plan achieved 100% compliance with ISO, NIST, HIPAA, and PCI;
• Collaborated with product development to build a behavioral heuristics engine to identify inappropriate product use;
• Created and managed an internal digital forensics service resulting in a ~$1 M annual savings;
• Managed the design and implementation of a forensic network which achieved a 3 month ROI, and decreased time to analysis by 85%;
• Oversaw the design, implementation, and management of a SEIM that consumed and correlated ~1TB of data daily;
• Created various incident analysis tools in perl, python, and shell scripting languages, and;
• Successfully managed high risk, high profile incidents, one of which resulted in a $6M increase in sales.

Confidential, Dexter, MI

Director, Information Security

Responsibilities:

• Create, implement, manage, and mature an information security program. Support and advise sales and product teams with responses to RFIs, and audits. Collaborate with technology and product stakeholders to identify, select, implement, and manage security controls. Manage assessments, audits, and the continued compliance with SOx, PCI, and SAS70. Participate in a corporate wide, information security steering committee. Provide subject matter expertise regarding DFIR, to senior management and legal teams. Daily management of program, department, budget, and mentoring of the team.
• Created an information security awareness program and presented it to a wide range of audiences, including technical and business stakeholders, clients, and educational community;
• Collaborated with sales, product, and technology teams to develop standardized responses for client RFI’s, and audits;
• Refocused vulnerability management efforts to concentrate on clusters, driving the average time to remediation down 50%;
• Expanded the department’s DFIR capabilities to include mass media seizure, chain of custody, and remote analysis capabilities, and;
• Successfully managed high profile, high risk, information security incidents.

Confidential, Dexter, MI

Manager, Information Security

Responsibilities:

• Create, implement, manage, and mature a comprehensive information security program. Manage assessments, audits, and the continued compliance with GLBA, SOx, and PCI. Manage the security assessment and remediation program. Participate in a corporate wide, information security steering committee. Identify, implement, and manage appropriate technical and procedural security controls. Create, and deliver an information security awareness program. Collaborate with various technical and business stakeholders to create and implement information security policies, guidelines, and standards.
• Achieved and maintained compliance with GLBA, SOx, and PCI standards;
• Created and delivered an information security awareness program, significantly reducing the number and severity of information security incidents, and;
• Successfully managed high profile, high risk, information security incidents.

Confidential, Dexter, MI

Information Systems Security Administrator/Team Lead

Responsibilities:

• Administer various information security controls including router ACLs, firewalls, VPN/RAS, IDS/IPS, vulnerability scanning, patch management, SPAM filtering, and web filtering. Creation of network and operating system configuration standards. Manage information security incidents. Research vulnerabilities.
• Partitioned the network, segregating production, development, and Internet facing systems;
• Upgraded remote access (RAS) and virtual private network (VPN) solutions;
• Implemented, administered, and managed a patch assessment and authorization program, and;
• Successfully managed high profile, high risk information security incidents.