SUMMARY:

• Information Security Leader with 18+ years of multi - disciplined experience in Healthcare, Banking and Federal Government sectors with a Master of Business Administration (MBA)
• Experienced across business level IS: Identity & Access Management (IAM), Cyber Security/Threat Intelligence (CSTI), Third-Party IS Assessment (TPISA), Security Incident Management (SIM), Information Security Risk Assessment (ISRA), Risk Exception & Corrective Action management ( Confidential ) and Employee Training/Awareness Programs (ETAP).
• 18+ years of career progression beginning as a Junior Network Technician rising through Project Management, Network Engineer and Architect roles to Consultant, Manager, Leadership and Executive Staff roles.
• Possessing experience in deploying and maintaining large enterprise systems (15,000+ devices) in accordance with ITIL, HITRUST, FISMA, FedRAMP and NIST standards while leading operational and project teams.
• Integrity-based leader who has mentored individuals, empowered groups and guided teams through tactical operations, large-scale disasters, information security issues and business continuity exercises.
• Aligns technology and business to ensure execution of cost-effective projects, information security solutions without getting bogged down, managing change without stifling innovation and within budget.

SPECIALIZED SKILLS & EXPERTISE:

Vendor Management: Managed service contracts, RFPs, negotiating SLAs, lease and employment contracts, Governance, Risk & Compliance of SSAE16, COBIT 5, CMDB and ISO 27001 frameworks., Creating and delivering business policy & plans, strategic opinion reports and technical presentations.

Experienced with project methodologies: Waterfall, Sashimi, Agile, Spiral, CPM and PRINCE2.

Security Access tools: Beyond Trust, CA Control Minder, CyberArk and Active Directory.

Information Security Management: Certified Information Systems Security Professional (CISSP).

Investigations Expertise: 832 PC, advanced physical security and OSINT training/techniques.

WORK EXPERIENCE:

Confidential

Controls Risk Manager

Responsibilities:

• Risk Management & Access Controls position that manages day-to-day responsibilities of the Global Security Identity Access Management (IAM) Programs as well as implement the remediation strategy activities to strengthen access controls for the division with $338B of assets.
• Owns the firm’s end-to-end Access Controls Management including: Access Matrices, Provisioning/De-provisioning, Active Directory, Privileged Access Accounts, Access Governance, Single Sign On, Analytics, and API.
• Responsible for providing solutions regarding remediation activities related to audits, exams, reviews, self-identified issue/process improvement projects to further strengthen operational risk management to the banking division.
• Develops Access Roles, Security Access Profiles, Segregation of Duties Management and Monitoring policies (for initial, business-as-usual, organizational changes and auditing/upgrading application product/platform changes, etc.)
• Provides planning, organizing, coordinating, negotiating and implementing complex and detailed analysis, research and reporting to the division executive. Determines the need for transitioning projects into programs then, assuming associated day-to-day risk and controls management oversight to end of initiative.

Sr Manager

Confidential

Responsibilities:

• Directed technical teams in the achievement of the strategic and operational objectives in accordance with ITIL and HIPAA standards.
• Responsible for the hiring, staffing, leading of a diverse, network team through career development, performance and pay incentives of team members.
• Managed the planning, development, installation and operations of the infrastructure by evaluating current and future security requirements.
• Identified, evaluated and resolved financial and business issues.
• Deployed PACS upgrade, 365 upgrade, Cisco ISE 2.0, EPIC and AnyConnect 4.2 solution to the infrastructure.
• Day-to-Day accountability for the daily operations of processes, programs and initiatives.
• Anticipated operational issues and developed preventative measures, and solved problems impacting the arena in a systematic, clear manner that motivated collaboration of subordinates and colleagues.
• Applied technical expertise in areas of marketing, M&A, staffing, RCA and service recovery.
• Reported on budgets, compliance analysis, research studies, feasibility studies, tradeoff analysis, operation studies, and design reviews.

Confidential

Sr Manager

Responsibilities:

• Lead, mentored and enabled the Network Design team of Principal Architects, Senior Network Engineers, Engineering Interns and Business Analysts.
• Strategic Planning of infrastructure forecasting demand, Information Security Risk Assessment (ISRA), capital resources, project portfolio management, technical service delivery, service strategy, roadmaps and compliance standards.
• Owned business segment customer relationship management, ensured a tight alignment between shared services offerings and the ever-changing customer need.
• Worked closely with the business and other IT constituents to solicit and rationalize business and technical requirements.
• Collaborated with the outsourced suppliers to communicate network requirements and reviewed the supplier recommended solutions/projects to ensure recommendations met the business needs.
• Delivered technologies, capabilities, cloud architectures, frameworks, engineering designs, design reviews and use cases protecting Personal Identifiable Information (PII.)

Confidential

Global Information Security & Risk Consultant

Responsibilities:

• Managed Security vulnerability assessments, planning and other Information Security initiatives.
• Oversaw the direction of security functions within applications, voice/data and computing services organization-wide.
• Contributed to C-level audit committee, Application Advisory Roundtable and Cloud Strategy steering committee.
• Advised across Retail, Commercial, Wealth Management, Credit Card and Investment Banks.
• Integrated governance and risk compliance in accordance
• Coordinated with technology and business teams regarding threats, risk, Access Management and information security.
• Customized metrics and dashboards for identifying progress of the Vulnerability Assessment Management Program.
• Offered Cost-Benefit to Risk evaluations in assessing threat mitigation and organization exposures.
• Defined project scope, deliverables and roles and responsibilities with Senior Business Partners and stakeholders.
• Reviewed security architecture, critical path timelines in both SDLC and Agile Epic/Story formats.

Confidential

Enterprise Architect

Responsibilities:

• Provided Enterprise level Strategic Planning with final recommendations to senior management.
• Authored internal white papers on new technology uses for this agency and supporting the agency mission.
• Ensured FedRAMP, FISMA and NIST compliance on proposed technology, architecture changes for implementations.
• Produced bandwidth & application capacity projections for Cloud, Agile, Spiral, ITIL and SDLC type projects.
• Used various Network Management Tools for Next-Gen capacity planning and bandwidth predictors.
• Tested technology solutions for enterprise compatibility using an on-site Network Design Lab.
• Provided Tier IV incident response whenever serious network service issues arise.

Confidential

Lead Cyber Security Architect

Responsibilities:

• Provided the technical direction and day-to-day operations for a networked hosting and application upgrade/migration.
• As senior security point-of-contact, I was responsible for implementations, migrations and testing.
• Proactively managed Information Security Risk Assessment (ISRA) and Risk Exception and Corrective Action management ( Confidential ) between internal towers while creating a results-oriented atmosphere.
• Drove multiple implementation/migrations projects, then established a Configuration Management process ending up with a stable, Life Cycle Management environment.
• Orchestrated the strategic change with customer, vendors, internal engineers and C-level management to ensure all parties were on the same page during the implementation-to-Life Cycle transition phase in an A1 Confidential environment compliant with ITIL, NIST and SSAE16 standards.

Confidential

Senior Network Engineer

Responsibilities:

• Use of Agile, SLA and technology review as the Subject Matter Expert for all aspects of network performance within the scope of contractual requirements, industry/OEM best practices and HIPAA standards.
• Network Testing; identified problems, problem resolution with 3rd party providers and other IT resources; took ownership of defining success metrics and best practices until a problem is resolved.
• Performed Quality Assurance Tests; identified root causes, suggested corrective action and plans of action to address network performance problems; aided in the resolution of problems on an ad hoc basis.
• Provided testimony in open committee forums, (alongside other Audit Team members) findings of technology reviews of network performance standards to the web applications, databases, SAN and Data Centers.
• Delivered remediation advice and guidance to in corporate best practices; supported and aligned efforts to meet customer and business needs; and built commitment for perspectives and rationales.
• Created documentation defining network performance benchmarks for network and review results for publication.
• Performed Statement of Work design, installation/configuration, test/turn-up of predominately small Cisco networks. Supported Application development via configuration/admin of remotely.
• Performed troubleshooting, device erase, IPv6 with RIPng, EIGRPv6 and OSPFv3 routing protocols in complex networks with summarized networks, passive interfaces, load balancing/load sharing.
• Configured Frame-relay and PPP encapsulation with authentication. Implemented NAT. Configured VLAN’s, STP, VTP, Port Security, BGP, MPLS protocols and implemented QoS mechanisms. Setup, configuration and administration of Aruba wireless, Cisco Wireless and Cisco VoIP products.
• Performed troubleshooting using various monitoring tools. Setup site-to-site VPN’s and Zone based Firewalls using Cisco PIX and ASA technologies.
• Performed on-site hands-on installations, configuration & administration of basic phone and Voice Mail services via CLI and Cisco Unity Configuration Manager Express.