Professional Experience

Confidential,Weston, MA 5/2007 to 4/2012
Biotech Company

Position: Director, IT Security and Risk Management
Responsible for building and directing a global Information Security and Risk Management Program that protected the confidentiality, integrity and availability of Company data and provided accountability for access to and actions taken upon information stored, processed, and transmitted.
Key Results:

• Information Security - Established information security standards, policies and procedures that aliened with business requirements, priorities and regulatory requirements; Ensured effective management and enforcement of security policies and the security controls that support them; Cost effectively prevented or mitigated the effects of attacks, errors, and accidents that threatened critical systems and the processes they supported; Provided an information security consultancy; Conducted forensic investigations; Directed a staff of ten analysts and contractors.
• Risk Management - Implemented a risk assessment program targeting privacy matters and risk mitigation; Conducted risk assessments; Created processes to identify, classify and prioritize information risks; Instituted methods for vulnerability detection, remediation and testing; Applied process improvement measures to reduce risks resulting from weak or nonexistent processes.
• Recovery- Developed disaster recovery strategies and plans and drove plan testing; Created disaster recovery service levels based on criticality tiers, recovery time objectives and recovery technology solutions including data replication, log shipping, mirroring and restoration from backups.
• Training and Awareness - Launched a workforce security awareness program; Educated people on the state of security and company security policies and procedures via monthly promotions, table tents, security fairs and workshops.
• Compliance and Incident Response - Ensured compliance with global laws and regulations (Mass Privacy, European Privacy); Oversaw vendor compliance assurances; Provided guidance in preparation for audits and resolving audit findings; Led the security incident response team in prevention, investigation, mitigation and reporting activities; Evidenced appropriate enforcement and sanctions for information security breaches.

Confidential,Boston, MA 6/2004 to 5/2007
Financial Services Company
Position: Information Technology Manager
Responsible for designing, implementing, securing and maintaining corporate and affiliate IT infrastructures consisting of servers, networks, databases, storage and voice systems in both production and disaster recovery data centers; Oversaw facilities management including acquiring, building out and maintaining office space and data centers; Directed a staff of nine IT technologists and contractors.
Key Results:

• IT Service Management - Planned, implemented, secured and maintained corporate and affiliate IT infrastructures consisting of servers, networks, databases, and storage and voice systems.
• IT Security - Utilized policies, procedures, technology and awareness to ensure the company’s information and technology infrastructure were secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to authorized users in a timely manner.
• Business Continuity and Disaster Recovery - Implemented a centralized hot-site for failover and disaster recovery plan testing that was leveraged by company affiliates; Assisted with creation and enhancing affiliate disaster recovery and continuity strategies. Conducted business impact analysis and testing of recovery plans and solutions.
• Facilities Management - Oversaw the design and build-out of office space and data centers; managed the relocation of affiliate offices; Carried-out facilities and data center expansion projects on schedule and on budget using effective project management, operational direction and contingency planning.

Confidential,Malden, MA 2/2003 to 6/2004
Office Relocation Company
Position: Consultant
Responsible for providing innovative service solutions for businesses that needed to expand, consolidate, or relocate office space, data centers, and/or technology infrastructures. Developed client relationships and managed client expectations regarding project details.

Key Results:

• Project Management - Directed time and cost sensitive projects involving the relocation and implementation of LAN/WAN and telecommunication devices, servers and desktops within scheduled completion times and budget; Oversaw the RFP development and vendor selection; Partnered with client IT staff and vendors to provide a common communications channel for vendors.
• Service Delivery - Managed operational risks and identified improvement opportunities that would drive client favor, enhance revenue generation and client retention; Enhanced revenue generation and client retention by proactively troubleshooting, adapting and implementing processes that ensured service was effectively delivered and high client service ratings achieved.

Confidential,Boston, MA 12/1997 to 11/2002
Financial Services Company
Position: Director Technology Services
Responsible for directing the day-to-day operations and management of global IT Services including server administration, networks, storage, help desk, security operations, and disaster recovery; Directed a staff of twenty technologists.
Key Results:

• IT Shared Services - Implemented a global shared services program that delivered technology solutions and support to affiliate firms; Developed technology strategy, established and met service level agreements and ensured optimal reliability and availability of systems, networks and support services.
• Disaster Recovery - Created, tested and implemented disaster recovery plans and procedures; Worked with internal departments and affiliates to identify mission critical systems recovery time and recovery point objectives; Assured regular testing, review and improvement of recovery strategies.
• Staff Management - Recruited and mentored staff and implemented staff career development strategies.

Confidential,Burlington, MA 10/1995 to 12/1997
Advertising Agency/Direct Marketing Company
Position: Assistant Director Technology Operations
Responsible for directing the day-to-day activities of a technology services team that managed servers, networks, storage, and help desk services.
Key Results:

• Technology Operations - Planned and implemented infrastructure technology and application upgrades including the replacement of obsolete systems, the implementation of new LAN/WAN, PBX and call management systems.
• Facilities Management - Oversaw the design and build-out of office space and two data centers including the selection and installation of environmental equipment, office furniture, and employee moves.

**Early career included progressive positions as: Data Center Manager, Technical Support Consultant, Systems Performance Analyst and Programmer at Consolidated Group Inc., Wang Laboratories, Inc, and Systems Development Corporation.

Confidential,University, Bachelors Degree