SUMMARY:

• Seasoned IT professional with over 21 - years of experience, including security, governance, risk management, compliance, architecture and design, business continuity and disaster recovery, incident response, vulnerability management, identity and access management, process optimization, vendor management, designing and implementing controls in environments subject to legislation and regulation including HIPAA, SOX and PCI, and extensive hands-on expertise with numerous operating systems, applications, databases and hardware platforms
• Skilled project manager with ability to obtain accurate project requirements and implement mission-critical solutions that support business objectives and meet strategic and financial goals
• Proven leader with a strength for identifying talent, mentoring, building and motivating creative teams that work cooperatively to achieve awesome goals

KEY KNOWLEDGE AREAS:

Security frameworks/Standards/Methodologies: OWASP Top 10, CIS Top 20, SOX, HIPAA, PCI DSS, ITIL v3, COBIT, NIST

Networking: Cisco switches and routers, F5 load balancing

Operating systems: Linux, Windows, Mac OS X, Solaris, AIX, HP-UX

Cloud providers: AWS, Azure

Databases: Oracle, DB2

Storage: EMC, NetApp

PROFESSIONAL EXPERIENCE:

Confidential

Information Security Architect, Anaheim, CA

Responsibilities:

• Led Disney Parks and Resorts IT efforts in the area of information security monitoring and regulatory compliance for cloud computing infrastructure and applications. Coordinated the implementation of security tools, documentation preparation, validation, and quality control for AWS & Azure hosted IaaS, PaaS & SaaS
• Integrated & configured Amazon cloud security tools (AWS CloudWatch, CloudTrail, Guard Duty, Config) as data sources for Evident.io continuous cloud security/compliance platform, in order to meet PCI DSS compliance for all cloud migrated systems

Confidential

Senior Information Security Engineer, Playa Del Rey, CA

Responsibilities:

• Designed and implemented cloud & dev ops security strategy, architecture & standards
• Implemented a Data Loss Prevention (DLP) & Personally Identifiable Information (PII) detection solution to safeguard confidentiality, integrity and availability of employee and stakeholder information. Focused on enforcing policies and pro-actively protecting data at rest and in motion, at the cloud and the endpoint level using Cloudlock CASB
• Managed, deployed and enhanced Tenable Security Center (Nessus, LCE, PVS) for vulnerability assessment, threat information and log analysis, SNORT intrusion-detection system, Okta single sign-on integration for cloud applications, Cylance & ESET endpoint protection, F5 Networks Big-IP Application Security Management firewall

Confidential

Senior Information Security Engineer, Fort Worth, Texas

Responsibilities:

• Served as third-tier information security support for identity management, incident response, penetration testing, intrusion detection and security-related problem resolution for all Linux/Unix platform servers
• Maintained SOX, HIPAA and internal security audit compliance and remediation for all Linux/Unix platform servers, including AWS cloud environments
• Partnered with the Windows AD team on the deployment of identity management & unified resource control for the entire enterprise using Centrify
• Managed CyberArk, Qualys, Splunk, Metasploit, Puppet as part of pro-active security assessment efforts, and DigiCert Certificate Manager for PKI & TLS certificate management

Confidential

Information Security Architect, Euless, Texas

Responsibilities:

• Architected, deployed & managed the infrastructure and security standards for 20 concrete production plants in North America. Including Red Hat Linux & Windows servers (physical, VMware ESX virtualized and AWS cloud instances), Oracle Solaris, NetApp storage, Cisco Nexus, Barracuda firewalls, Sophos Endpoint protection, SolarWinds monitoring, Symantec NetBackup software and Meraki mobile device security

Confidential

Senior IT Infrastructure Manager, Westlake, Texas

Responsibilities:

• Managed the team that performed the Chase/JP Morgan data-center uplift project. Including requirements gathering, project planning, and leading the team that upgraded to Linux, Solaris servers, VMware ESX, Windows servers, NetApp storage while migrating them to a new network using Cisco Nexus switching infrastructure at several locations across the US. These systems were all SOX & PCI DSS compliant

Confidential

Global IT Infrastructure Delivery Manager, Irving, Texas

Responsibilities:

• Managed project teams on medium to large-scale IT infrastructure, data center migration, backup/recovery, EDW deployment and regulatory compliance projects (PCI DSS Level 1) for CITI's consumer credit cards organization and B2B lending in Latin America. Budgets varying from $500,000 to $4 million
• Served on the enterprise architecture team to gather requirements, define scope, project deliverables, discover potential risks, address gaps and determine budgetary requirements of IT solutions for the Citi Cards organization
• Maintained communication with all project stakeholders in order to set expectations, determine and schedule project deliverables, issue timely status reports and approve changes
• Developed and maintained project plans, performed budgeting and financial tracking, hardware/software specification and acquisition, and new requests for associated projects

Confidential

Senior UNIX Systems Engineer, Irving, Texas

Responsibilities:

• Provided systems administration for the high-availability infrastructure powering Confidential activities of all stock exchanges and member firms in North America. Platforms included Solaris, Linux, VMware ESX, EMC storage
• Served as Unix/Linux SME for internal and SEC compliance & security audits
• Developed and implemented security standards for all production operating system builds
• Participated in the planning & execution of successful monthly disaster recovery and business continuity tests between Dallas and Chicago data-centers
• Managed Linux & Unix related infrastructure projects within the technology services group, including infrastructure refresh & expansion, software upgrades, Cognos BI dashboard, identity access management (using Vintella) and the Swift secure financial messaging system
• Developed and implemented process improvement strategies for IT infrastructure in alignment with the ITIL V3 methodology

Confidential

Senior Systems Engineer, Huntington Beach, CA

Responsibilities:

• Architected, deployed & managed all Solaris, Linux, AIX, VMware, EMC storage, FileNet document repository infrastructure for the Confidential and Confidential web sites
• Managed project teams that planned and executed infrastructure upgrade projects, including Confidential (online auto loan originations platform). This project raised uptime for Confidential to 99.9% for the next two years and increased gross revenue up to $1 billion dollars in 2004
• Managed the team that achieved SOX compliance on all UNIX & Linux servers. Developed the plan to implement COBIT IT governance framework in the IT organization
• Served as the IT infrastructure SME for the enterprise data warehouse migration team. The successfully completion of the project resulted in several million dollars saved on annual recurring support costs
• Architected, deployed and managed the operating environment for the loan originations risk management scorecard, using SAS Grid and FICO Model Builder software on the Sun Solaris platform
• Architected, deployed and managed the infrastructure for Austin Logistics predictive analytics software. The deployment of this system resulted in a 25% increase in promise-to-pay ratio for the collections department’s call centers

Confidential

IT Systems Manager, Los Angeles, California

Responsibilities:

• Managed all IT resources for the Astronomy division, including planning, budgeting, procurement, deployment and retirement of all hardware and software
• Led three junior systems administrators in supporting departmental IT operations on a daily basis
• Deployed and managed the firewall and network security for the infrared research group, significantly cutting down on the number of attempted system penetrations and significantly increasing group productivity
• Architected and implemented a single sign-on solution for the entire department using SunOne Identity Manager

Confidential

Lead Systems Engineer, Santa Monica, California

Responsibilities:

• Architected, deployed and managed IT infrastructure for The Dallas Cowboys, Wherehouse Entertainment and Pritikin Vitamin Company web sites

Confidential

UNIX Systems Administrator, Culver City, California

Responsibilities:

• Architected, deployed and managed the IT infrastructure for the entire company, including authentication, email, file sharing, printing, backups, firewall, routers and switches.