- Highly experienced security and Risk Management Professional with a record of developing and supporting successful IT projects and solutions incorporating a wide range of applications and technologies. Consistently recognized and recruited by leading consultancies and corporations to help improve organizational effectiveness and efficiency through personal contribution.
- Technically savvy and a quick study in emerging technology, able to quickly assess and utilize the appropriate response to meet the specific needs of the business requirement at hand. A welcome addition to any team, ready, willing and able to function in any role necessary to insure project success and on time project delivery.
- Consistently recognized and tasked to improve organizational effectiveness and efficiency through expertise that aligns the business processes and IT infrastructure to realize cost savings, accelerate performance and sustain strategic flexibility to create a competitive advantage for the organization.
Performance Optimization Process Improvement Change Management IT Strategy
Computer Incident Response Training Hardware Software Standards Compliance Configuration Management Infrastructure Development Client Collaboration Client Relationship Management Project Management Team Leadership Team Development
Information Security Expert Global Delivery Mentoring Risk Management Threat Management Investigations and Forensics
IT Security and Risk Management Specialist
Selected to create, develop and deploy an Enterprise Vulnerability Management Program for a Fortune 100 Research Laboratory. Developed processes and procedures to incorporate a vulnerability lifecycle program using current tools and introduced new toolsets as needed. Provided awareness training to IT staff and managed the risk ranking, triage and resolution of vulnerabilities, working with corporate and third party outsourced staff worldwide. Provided research and threat assessment of existing and emerging threats and vulnerabilities. Provide metric data on corporate threat posture to senior management.
Threat and Incident Manager
Acting as the Threat and Incident Manager for a major hospitality corporation. Updated Incident Response documents to ensure conformance to PCI audits. Managed the relationship with the Managed Security Service Vendors and related IT vendors. Triage and dealt with security events and incidents from multiple sources and vendors to ensure proper remediation. Provide metric data on corporate threat posture to senior management. Worked with third party security management companies as well outsourced IT
Security Operations Manager
Hired to continue the work started as a consultant. Manage oversight of all security operations, forensics, investigations, intrusion detection and incident response. Deployed a global SEIM solution to manage security alerts and developed procedures around it to create and effective Security Operations Center. Work with Human Resources to assist in investigations and provide forensic support. Review IT system changes for appropriate controls. Performed vulnerability assessments and reports on the corporate environment to the CISO with recommendations for remediation. Provided vendor management for the security organization.
Senior IT Security Specialist
Hired to work with a financial firm to identify key operational security functions within the organization, document those process and develop a security operations group. Reviewed security policies as they related to the new organization and provided updates. Conducted a proof of concept for a Security Event and Incident Management SEIM system, developing business and technical requirements, research available products and services, and overseeing the product selection.