PROFESSIONAL SUMMARY:

• Information Security Professional with a highly technical background based on in - depth formal, years of proven leadership, ability to be a corporate steward interacting and collaborating with all levels of management and diverse organizational and external audiences. Proven expert in managing multifaceted Information Security Teams and associated functions, encompassing all Domains of Information Security, from design, development, implementation, and administration of these operational areas. Possesses extensive knowledge of Security Program Strategic development, Governance
• Frameworks, Policy Development & Implementation, Cyber Network Defense, Penetration Testing, Technical Reporting & Consulting, Enterprise Systems Analysis, SSDLC, Business Communication, and Threat Intelligence Collection & Analysis. Career supported by comprehensive and diverse Technical Background, Proven Leadership, Multiple IT & Network Security s and, extensive enterprise security operations, holds a Top Secret / SCI security clearance, and a Bachelors of Science in IT Management (Winter 2017).
• Security Program Architecture
• IT Project Management
• Multi - Team Leadership
• Big Data & Trend Analysis
• Enterprise Security Management
• Policy Framework Development
• Computer Network Operations
• Digital Network Exploitation
• IT Governance Management
• Network & Database Security
• Information Assurance (IA)

PROFESSIONAL EXPERIENCE:

Confidential - Ontario, CA

Director of Security and Governance / Senior Information Security Analyst

Responsibilities:

• Created, developed, designed, and implemented the first of its kind companywide Information Security Program, leading to the significant improvement of organizational network security posture. This led to adoption of multiple security controls enabling for the comprehensive protection of the enterprise, and all its users, while maintaining the Confidentiality, Integrity, and Availability of all critical business and operational data and systems
• Proposed and Developed the Corporate Information Security Strategy, enabling the alignment of Information Security to core Business Objectives and Organizational Ethos. This strategy facilitated the impact, criticality, and importance of establishing an Information Security Program to be conveyed to all facets and functional areas of the business, expediting the sign off, funding, and establishment of an Information Security Department
• Developed, implemented, and managed a comprehensive IT Policy Framework and wrote all the associated policies. This framework helped facilitate an organizational culture shift, while ensuring alignment with all business needs, legal requirements, and IT standards
• Designed, implemented, and managed a thorough Compliance Framework in order to ensure proper alignment with all J-SOX, National and State requirements. This framework enabled all implemented controls to be deemed effective for the first time in company history, leading to full compliance with all J-SOX requisites
• Managed and coordinated Legal holds and data preservation for both civil and criminal cases. This enabled for the confidentiality and integrity of digital data to be maintained, while adhering to proper chain of custody procedures. Developed a Legal hold preservation process, allowing for the standardization of this critical function
• Designed, implemented, and managed a comprehensive Security Awareness Program, which directly lead to the immense improvement of end user awareness, knowledge base, and the reduction of vulnerabilities. This lead to the increase in user vigilance, reporting of phishing attempts, and potential malware. Periodic Phishing tests results went from 8% phish prone users to less than 2%. This resulted in the Security Awareness Program to operate in a manner that supports long term sustainment, with established Key Performance Indicators
• Designed and implemented a comprehensive Physical Security Architecture solution, allowing for uniformed alignment of all physical security requirements to be met in a concise manner. This enabled for the implementation of baseline requisites, and helped facilitate these requirements to be met enterprise wide, while accounting for within its design to address associated geographical, technical, and personnel implications
• Contributed and collaborated with external contractors on the OEM network architecture, ensuring the proper network design, implementation, scalability, and functionality of these business critical environments were met for the newly built state of the art manufacturing facility. This proof of concept facility, has led to the approval of the modernization of all facilities to be adopted to emulate the design of this facility, leading to increased productivity, capabilities, and overall profitability of these critical systems
• Designed a comprehensive secure access solution for the OEM network environment, interfacing directly with IIoT manufacturing equipment, enabling third party vendor access while mitigating security risks associated with this critical infrastructure. This capability resulted in multimillion dollar savings and consolidation of services, while modernizing manufacturing capabilities, and ensuring operational security
• Managed multiple incident response operations during real time cyber-attacks. This resulted in the detection, mitigation, and establishment of root cause to ensure the proper security controls were adopted to ensure future instances did not occur. The effective and timely response to these incidences, led to the protection of organizational assets, data, and significantly minimized the impact to organizational productivity, and possible financial loss
• Developed and conducted corporate wide Threat Intelligence operations, leveraging both open source and tradecraft methodologies, in order to account for, track, and identify threats associated with the company. This helped ensure the Confidentiality of all corporate data and associated trade secrets, Integrity of the business and protection from reputational loss, and Availability of the data to internal and authorized users, while denying and removing access previously leveraged by threat actors
• Proposed, implemented, and managed Endpoint Detection and Response (EDR) and Vulnerability Management Solutions, enabling for the identification, accounting, and mitigation of critical security threats and vulnerabilities, resulting in the protection of all assets enterprise wide. This led to the substantial reduction of the organizational attack surface, the accounting and management of accepted risks, resulting in a more secure operational environment
• Proposed, implemented, and managed Multifactor Authentication (MFA) and Single Sign On (SSO) Solutions in order to add necessary layers of security, while Introducing additional capabilities for end user ease of use
• Implemented and managed the Data Loss Prevention (DLP) solution, to protect all critical data in-use, in-motion, and at-rest from exfiltration and spillage. This ensured corporate Personally Identifiable Information (PII), trade secrets, and vital business content was secured, tracked, and maintained effectively
• Implemented and managed the Mobile Device Security solution, allowing for the management, protection, tracking, and improved integration of all company owned mobile devices. This allowed for confidentiality and integrity of business content to be maintained, and enabled remote wiping capabilities. This solution helped facilitate the enhancement of overall mobile platform functionality, and led to the introduction of new business mobile operability, leading to a significant improvement of overall end user productivity
• Managed and maintained multiple Security Projects concurrently, while ensuring all deadlines and budget requirements were met and under cost, enabling organizational flexibility to add additional vital security capabilities and functionalities. Created multiyear Security Project timelines to meet current and future security requirements
• Developed and Implemented Key Performance Indicators (KPIs), offering key insights into the effectiveness of the Information Security Program. This allowed for the critical correspondence to Key Business Leaders on the value, protection, and overall Return on Investment the Information Security Program facilitates
• Developed and implemented Risk and Decision Making Matrixes, allowing for the effective prioritization, vetting, management, as well as enabling the facilitation of objective analysis required within the decision making process
• Directly responsible for the management and vetting of all vendors and resellers. This ensured optimal pricing could be attained, resulting in the average cost savings of over 30% off the marked price for applications and systems. This helped facilitate budgetary flexibility, and allowed for additional security controls and projects to be pursued while keeping the information security program well maintained and staying under the allocated budget
• Developed Proposals and Roadmaps for multiple security projects including but not limited to SIEM integration and solution, Cloud Security deployment, Threat Intelligence Platform, Enterprise Firewall Whitelisting, Incident Response and Security Assessment toolkit development, and establishment of periodic Penetration Testing cycles

Confidential - San Diego, CA

Senior Information Security Analyst / NERC Compliance Specialist

Responsibilities:

• Developed comprehensive compliance programs and procedures to fully meet all NERC / FERC standards. This led to a streamlined process and the establishment of organizational compliance standards, saving hundreds of monthly working hours, improving accuracy, and mitigating the likelihood of self-reports and avoidance of fines
• Introduced, developed, and implemented new technical and administrative security controls within the company significantly improving the overall network security posture and expanding their overall cybersecurity capabilities. This led to the overall maturity and integration of Information security throughout the IT Department and SCADA operations center
• Spearheaded the development of the IT policy framework for EDF in order to modernize and integrate governance with the corporate network environment. This allowed for the adoption of enforceable and outlined guidelines for acceptable use by users and outlining all the required technical controls, ensuring the integrity of all IT assets and confidentiality of corporate data and correspondence
• Proposed, presented, and oversaw the investment of over $350,000 into a critical Information Technology shortfall within the organization. This solution allowed EDF to save hundreds of monthly working hours, the investment in another Full Time Employee, and over $400,000 in savings for the company, along with ensuring we were aligned with all compliance standards
• Conducted Information Security Operation within the EDF network environment and over 70 remote sites, leading to the detection, mitigation, and remediation of over 90 security vulnerabilities leading to the improvement of the overall network security posture. Conducted root cause analysis of these vulnerabilities, allowing for information security improvement plans to be developed and implemented

Confidential

Senior Information Security Architect / Information Assurance Officer

Responsibilities:

• Directed and managed team of 18 incident response and cyber security analysts through 4 high priority National Cyber Defensive Operations, leading to the efficient mitigation and detection of hundreds of thousands of threats improving Network security posture to prevent 90% of future threat vectors
• Led 4 Cyber Defensive Operations encompassing diverse cyber platforms including key sites such as the Naval Observatory and Navy BDMS. Direct actions led to the improvement of overall network security posture, the identification and protection of vital cyber key terrain, and the consultation, recommendations and implementation of key infrastructure modifications to improve operability and security. Utilized the Risk Management framework to ensure all systems and sites were compliant and within all established guidelines
• Developed and implemented new Cyber Security toolkits; managing 4 developers, $1M+ budget, recommending, building, purchasing, conducting software development, troubleshooting all newly acquired assets, allowing for the introduction of new technical capabilities
• Performed target emulation, threat neutralization, digital forensics, and malware analysis across multiple networks and operating system platforms
• Managed, tracked and ensured 45 personnel were compliant within the Cyber Security workforce (CSWF) and Information Assurance level compliance, resulting in 100% Security Project completion
• Ensured 2M end users’ network security policies were enforced, to conduct job functions were signed and within regulations, leading to zero IT policy violations and incidences
• Trained and qualified 36 Incident Handlers, Intelligence Analysts, System Architects, Network Operators, Cyber Security Analysts, Interactive Operators, Network Infrastructure Administrator Specialists, Penetration Testers, and Defense Cyber Operators, achieving 100% mission operability and increased cyber capabilities
• Expert in planning and executing Defensive Cyber Operations, to include network surveys, critical asset analysis, policy compliance, threat and vulnerability assessments, and information risk management planning
• Conducted daily Executive Management briefs on current and emerging threats, status updates of ongoing cyber operations, toolset / capability refinement and development, and recommended mitigation solutions
• Managed the development and implementation of network security architecture, policies and procedures for cutting edge and legacy SCADA / ICS technologies being deployed by the Confidential . Assisted in the development and formalization of the security assessment and auditing methodologies, ensuring the overall integrity and security posture for these critical systems

Confidential

Senior Cyber Security Engineer / Project Manager

Responsibilities:

• Created, designed, and maintained a dynamic intranet site and database using HTML, CSS, JavaScript, JQuery, PHP, MySQL, and Visual Basic, allowing for efficient interaction with mission critical content
• Created prebuilt database queries, which improved overall efficiency and accuracy of data analysis
• Researched, designed, and developed defensive operations toolsets and corresponding hardware / software development in order to meet critical incident response requisites and ensure the network security integrity of 2M+ customers 2 weeks ahead of schedule
• Designed and developed Information Security processes, procedures, and secure architecture implementations for multiple cyber platforms and network classifications encompassing SCADA /ICS, Network Operations Centers(NOCs), and multiple Naval sites including ship/shore sites worldwide. This led to Enterprise level enhancements of overall security posture, polices, and led to the modernization of all security controls utilized
• Developed and implemented a comprehensive malware analysis lab, introducing new capabilities to the organization under strict budget constraints and ahead of deadline
• Authored, published, and facilitated of 3 highly technical / guides and 7 corresponding qualification exams, resulting in over 7k dedicated hours among 46 personnel; resulting in the development and creation of highly effective workforce servicing customers worldwide
• Led Incident Response teams for organizational network breaches and attacks; which led to the comprehensive mitigation and neutralization of vulnerabilities, resulting in Executive recognition
• Managed and conducted 36 Cyber Security inspections and audits organization wide, resulting in the improvement of network security posture of all facilities and overall improved network operability
• Utilized change detection, registry, process, and network monitoring tools to identify malicious behavior, with limited capabilities; which led to the detection and mitigation of network vulnerabilities

Confidential

Senior Digital Network Exploitation Engineer / Project Lead

Responsibilities:

• Directly responsible for 6 high priority National Security projects; Coordinated efforts of 14 - person team in the process of executing 1,200+ National Intelligence database queries and the analysis of over 444K files
• Released 35 High priority Digital Network Intelligence reports, and developed 22 adversary network diagrams in support of National Security and contingency operations
• Oversaw and coordinated a multimillion - dollar HVAC upgrade, consisting of the management of 7 individuals over 44 hours; upgrade protected the integrity of the Server farm
• Revised, developed, and created innovative approach to team exploitation target methodologies, which allowed for the decrease in dedicated resources, financial requirements, and personnel hours by 75%
• Developed and facilitated for 65 individuals on basic and advanced digital network exploitation methodologies; thereby meeting 100% of job qualification requisites
• Led four teams consisting of 19 security Analysts through high priority National missions in the research, exploitation, and development of Cyber Kill Chains for contingency operations targeting SCADA and ICS
• Performed hunt, discovery, and counter cyber operations of potential threats; identifying Cyber Key Terrain