Principal Resume

SUMMARY:

Accomplished and passionate Information Security leader with extensive experience and exceptionally broad background. Proven track record building and running global cyber and information security programs for Fortune 15 Confidential companies. Held and maintained Top Secret/SCI clearances, both with Special Background Investigations and full - scope polygraphs, from 1990 to 1995 and from 2002 to 2006.
Security program design/management
Risk/threat management
Security architecture
Cloud security
Threat intelligence
SOC design/management
Cyber incident response and forensics
Vulnerability management
Security policy creation
Penetration testing

PROFESSIONAL EXPERIENCE:

Confidential

Principal

Responsibilities:

Designing and coordinating cyber defense architecture, monitoring and incident response for Confidential software deployed in support of clinics at Confidential .
Led Development of cyber defense architectures for Confidential on Amazon AWS and Microsoft Azure.
Selected 2016 Confidential Confidential representative to Confidential ’s Cyber Storm exercise.

Confidential

Security Researcher

Responsibilities:

Led effort to automate creation of intelligence products from machine-learning data sources.

Manager

Confidential

Responsibilities:

Lead Consultant Specialist

Confidential

Responsibilities:

Oversaw SIEM Governance Board and SIEM Technology Risk and Review Board meetings.
Member of KPIS Red Team, conducting widespread penetration testing on numerous critical Confidential IT systems and applications.
Selected to be one of the initial board members for Confidential education program.

Consultant Specialist

Confidential

Responsibilities:

Recruited to develop and lead enterprise-wide Internal Penetration Testing (IPT) program, responsible for conducting extended, large-scale, black-box penetration tests against enterprise assets, both corporate and clinical.
Conducted internal Confidential for largescale deployments across Confidential.

Confidential

Information Security Researcher/Developer

Responsibilities:

Designed and coded multiple core-business applications, including a system to identify and track Internet hosts conducting malicious activity (primarily botnet activity), a distributed reverse-DNS lookup system, and an application for use by internal analysts to track their analysis and research.
Assisted with design of large-scale web crawler.

Confidential

Senior Security Engineer

Responsibilities:

Confidential

X-Force Developer

Responsibilities:

Researched and developed methods for performing remote detection of vulnerable systems. Led development of vulnerability detection methods for vulnerabilities listed in Confidential IAVA announcements.

Confidential

Global Network Exploitation Vulnerability Analyst

Responsibilities:

Led team of cyber security professionals performing computer and network security research and development, including vulnerability analysis on a wide-range of information security products.
Created intra-departmental education program, teaching information security analysis skills and techniques.
Taught multiple classes to approximately 100 employees.
Class incorporated into department’s new-hire training program.