Director, Information Security & Risk Resume
2.00/5 (Submit Your Rating)
SUMMARY
- Over 22 years experience in IT, 10+ years in IT Security, Risk & Compliance
- Hands - on IT Security leader, previous CIO and CISO experience
- Hands-on experience with enterprise risk assessments, vulnerability assessments, risk remediation, security incident event monitoring
- Developed, implemented, and tested disaster recovery, business continuity plans using industry best practices
- Expert in regulatory compliance (HIPAA, SOX, PCI, GLBA, Privacy, State of CA)
- Hands-on experience with security standards (NIST 800 series, ISO 27002)
- Extensive program/project management experience, $10m+ projects
- Education: MBA with a concentration in IT, B.S. in MIS
- Certifications: CISSP, CISA, CISM, Security+, MCP, Unix, HIPAA, and Six Sigma Black Belt
PROFESSIONAL EXPERIENCE
Confidential
Director, Information Security & Risk
Responsibilities:
- Responsible for merchant security with PCI DSS for Payment System Risk
- Consult and provide feedback to enterprise CISOs on compromise and fraud
- Develop presentations on security strategies, controls, and remediation
- Work with fraud, investigation teams on latest breaches and incidents and develop lessons learned
- Provide guidance on security initiatives such as cyber security, encryption, tokenization, and EMV chip
Confidential .
Chief Security Officer (11/2004 - 08/2014)
- Successfully founded and operated information security consulting firm delivering end-to-end security services to government, large/small business, education, and enterprise customers
- Expertise in security operations, cyber security, policies/procedures development, infrastructure, cloud, architecture, and compliance
- In depth knowledge and experience with SOX, HIPAA, PCI DSS, NIST, FISMA, ISO, and ITIL standards and frameworks
- Hands-on experience with security technologies: IDS/IPS, SIEM, DLP, next-gen firewalls, FIM, APT threat protection, anti-malware
- Clients: State of CA, Chevron, Kaiser Permanente, Xerox, Sutter Health, Confidential
- Reporting to the President, managed corporate infrastructure and web operations
- Responsible for aligning IT objectives with corporate vision, mission and strategy
- Reduced costs and overhead by over 40% and increased sales by over 30% in 6 months
- Stabilized and optimized mixed Linux/NT environment involving PCs, thin clients
- Managed corporate ERP and CRM systems, supported sales and marketing
- Coached and led employees and created cross functional groups
Confidential
Director, Information Technology
Responsibilities:
- Implemented and managed highly available, critical web operations at co-located facility
- Managed corporate network and infrastructure consisting of a mixed Linux/NT environment
- Assisted sales and engineering departments with building robust scalable solutions for clients
- Responsible for corporate security, firewalls, VPN, antivirus and updates
- Managed small group of analysts, administrators and DBAs.
Confidential
Manager, Information Technology
Responsibilities:
- Successfully implemented and managed FDA regulated corporate ERP system
- Managed and upgraded highly available, robust Unix clinical servers running Oracle
- Implemented and managed highly available, scalable Unix biostatistics servers running SAS
- Performed DBA maintenance and responsibilities such as import/export on Oracle databases
- Automated tasks by creating and implementing shell scripts on Unix
- Responsible for nightly backup, recoveries and disaster recovery procedures
Confidential
Information Technology Analyst
Responsibilities:
- Responsible for internal helpdesk, desktop support, networking, and access management
- Support for Confidential ’s security suite products line: Norton and PC Anywhere
- Managed daily backups of servers and desktops using Backup Exec and tape libraries
- Performed database backups on UNIX and NT servers
- Responsible for basic network troubleshooting
TECHNICAL SKILLS
Programming Languages: Perl, Python, COBOL
Operating Systems: UNIX (RHEL, Solaris, HP-UX, Ubuntu), Windows, MacOS
Databases: Oracle, SQL, Access
Security Tools: FireEye, Secure Tools Distribution, Kali Linux, Vontu DLP, Credant, PGP, Rapid7, Qualys, Tripwire IP360, nmap, Nessus, Metasploit, Encase, FTK
Firewalls: Palo Alto, Cisco, Netscreen, Sonicwall, OpenBSD, Imperva
Enterprise Tools: QRadar, AWS, MS Azure, MS Project, Remedy, Archer GRC, WebLogic, Apache, Tanium, VMWare
Application Security: IBM AppScan, Veracode, HP Fortify
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
