SUMMARY

• Seasoned Program/Business Continuity/Disaster Recovery/Project Management professional with broad background in variety of operations, banking, financial services, insurance, pharmaceuticals, healthcare, logistics, retail, manufacturing, service and government settings.
• 20+ years of experience as hands - on manager in global management, systems, infrastructure (datacenters, computers and networks) and software architecture and design.
• Experienced in managing blended staffs which architect and develop highly available and highly secured Internet Sites and N-tier applications, as well as in developing, architecting, and managing large scale high availability and fault tolerant computer infrastructures.
• Strong communicator and team builder, able to work with full range of corporate audiences including: C-level, executive, technical, production, sales, customer, examiner, auditor, regulator, vendor, and end-user.
• Has the ability to manage very technical people and translating their requirements to those in the business areas, while translating business expectations for those very technical people. As a customer, managed all types and phases of complex applications/systems development, and implementations using internal teams, vendors, contractor resources, and hybrid organizations.
• As a service-provider, has led large disparate teams from different partners so they became viable forces providing information technology outsourcing.
• Understands people: customers, employees, vendors, regulators, and senior management, and is very gifted at translating what each is saying to the other.

TECHNICAL SKILLS

• Agile/Scrum
• Audit
• BC/DR Planning Software
• BCP Plan Testing
• BS 25999 Business Continuity Management (BCM)
• Budget Management
• Business Continuity Planning (BCP)
• Business Impact Analysis (BIA)
• Change Management (ChM)
• Command Center Plans (CC)
• Competitive Strategies
• Compliance
• Configuration Management (CfM)
• Contingency Planning
• Contract Negotiations
• Controls (General, IT)
• COSO/COBIT
• Crisis Management
• Customer Relations
• Data Center Build Out
• Disaster Recovery Plans (DR)
• Emergency Management
• Emergency Response Plans
• FDA - 21 CFR Part 11
• FEMA
• FFIEC Compliance
• GLBA Compliance
• GRC
• GxP
• High Availability Plans (HA)
• HIPPA Compliance
• Hot/Warm/Cold-Site Solutions
• Incident Command (ICS)
• Incident Management
• Confidential
• ISO9000/Process Standardization
• ITIL v2 & v3
• MIS Operations/Management
• Operations Management
• Pandemic Preparedness Planning
• PMBOK
• PMO
• Process Management
• Program/Project Management
• Quality Applications
• Regulatory Compliance
• Release Management
• Risk Analysis/Assessment (RA)
• Risk Management/Mitigation
• Sarbanes-Oxley (SOX)
• SharePoint
• SSAE 16/SAS 70
• SDLC
• Strategic Planning/Forecasting
• Systems Development/Selection
• Testing Methodologies/Plans
• Vendor Relations/Management

PROFESSIONAL EXPERIENCE

Confidential - San Diego, California

Senior Program Manager

Responsibilities:

• DUTIES: I manage disparate teams of FTEs, contractors, vendors, and client FTEs in six (6) onshore and two (2) offshore locations. Confidential is the IT service management provider for Confidential Financial. I direct all PPH projects. Business Continuity/IT Disaster Recovery, IT Compliance, and all audit activities. Confidential Financial is the nation’s leading independent broker-dealer; they offer an integrated platform of proprietary technology, brokerage, and investment advisor services to more than 14,000 financial advisors and approximately 700 financial institutions. They also support more than 4,000 other financial advisors with customized clearing solutions, advisory platforms, and technology.
• PPH Program/Project Management: Responsible for the management of all PPH and SOW projects associated with the Confidential contract. This includes budget, staff, and resources required to deliver a variety of solutions including infrastructure, voice and video, applications, mobile device management, security, compliance, etc. These range from simple testing of hotfixes to build-out of two (2) new datacenters. A sampling of projects includes: Windows 10 Gold Disk creation, Oracle upgrade, SQL upgrade, implementation of new user’s core system, antivirus management, etc.
• Business Continuity/ IT Disaster Recovery: Responsibility for the creation, testing, and maintenance of Confidential ’s Service Continuity Plan(s). These plans include both BC and IT-DR components. The Plan’s support Incident Response, Emergency Management, Business Resumption, Crisis Communications, Training, Testing, Maintenance, and Pandemic as to comply with service level agreements and regulatory requirements for the customer Confidential Financial. Additionally, as Confidential is Confidential ’s IT operations arm, I support all IT-DR activities for Confidential, in this capacity I support all Confidential application IT-DR Plans (around 150). I also support all Confidential IT infrastructure IT-DR Plans. These include all IT along with voice and video. This includes all DR documentation creation and management, training, testing and maintenance.
• Audit & Compliance: Responsible for the all audit and compliance. This includes SOX, SSAE16, SOC1, SOC2, GRC, GLBA, SEC, FINRA, FRB, FFIEC, Confidential, PCI, Internal, External, Controls, and other audit and compliance activities. The activities are end to end; creation of secure compliant infrastructure, systems, applications, staff, testing, evidence, controls, and all supporting documentation, training, and testing, responding to all requests for evidence and testing from Confidential, Confidential, external auditors, Confidential customers, and numerous regulatory agencies.

Confidential, Oceanside, California

Senior Program Manager

Responsibilities:

• Program Manager managing multiple programs and project managers within the Confidential IT environment. Programs include: Infrastructure Assurance -- Establishment of the processes and environment to baseline application performance for new or changed applications prior to release, BSM -- Define, Deploy and Deliver a Release Management and Service Impact Monitoring Solution, iMVP -- Secure cost savings by increasing utilization of existing Midrange infrastructure through migration and consolidation into virtual infrastructure and decommissioning of unused physical infrastructure, Capacity & Utilization -- Provide a single unified portal with complete drill down from top to bottom of Confidential IT Infrastructure, in terms of operational baseline configuration, capacity utilization and planned growth. This was a 9 month engagement.
• Confidential: creation of solutions, systems selections, documentation, and testing. This was part of their FFIEC/GLBA regulatory compliance requirements from the financial services industry. This was a 7 month project
• Performed as a senior project manager for multiple enterprise-wide IT projects along with acting as both release and capacity managers. Projects included all regulatory compliance (SOX, CFR, GxP & Quality) remediations, Oracle upgrade and encryption for the SAP environment, complete server refresh and application upgrades to all US, European, and South American users. Managing all aspects of release including scheduling, resource management, change management, testing and implementation. Managing FTE, contractor, and vendor teams. This was a 7 month project. Vendors included: HP, Cisco, Citrix, SAP, Oracle, IBM, SunGard, EMC, Cognos, VMWare, BMC, and McAfee. 40/60 HW-SW mix.
• Provided west coast support in the areas of Regulatory Compliance, IT SOX, IT General Controls, Business Continuity, and IT Disaster Recovery. Services provided: audit, reporting, recommendations, solutions and remediation. Projects have been with multiple financial clients in multiple states. This was a 9 month project.
• Performed a complete architecture and process review. Created IT policies which complied with best practices and industry regulations. The purpose was to ensure the infrastructure was satisfactory, where there were gaps, and redundancies, where they could leverage, document the infrastructure and policies surrounding it, and create a plan for moving forward. This was a 4 month project.
• Performed complete business continuity services to multiple constituent organizations. Went into organizations and established business continuity programs. This included all assessments and analyses, creation of solutions, systems selections, documentation, and testing. This was part of their GLBA compliance requirements from the financial services industry. This is an ongoing project.
• This program included the development, documentation of ITIL processes and process implementation plans within the guidelines of ITIL v3, a Confidential ITSM implementation and complete SharePoint upgrade. This included managing a hybrid team of active duty marines, civilian employees, government vendors and contractors. The ITIL v3 technical support services project was organized into four phases: Service Strategy, Service Design, Service Transition and Service Operation.

Confidential, Riverside, California

West Coast Practice Manager, Technology Risk Management Services/ National Practice Manager

Responsibilities:

• Managed numerous technical and financial consulting projects (simultaneously) and consulting services to various business entities.
• These included regulated, non-regulated, public, private, financial, pharmaceutical, insurance, manufacturing, entertainment, health care, educational, retail and government in the areas of
• Enterprise Risk Management
• SAS 70 Audits
• PCI Audits
• Regulatory Compliance
• Controls
• BC/DR
• Sarbanes Oxley (SOX)
• Process Management
• System(s) Selection
• IT Audit
• IT Security Audit
• And included guiding clients through all phases of the processes, including: analysis, planning, assessment, remediation, controls, process improvement and development, testing, testing and audit. Responsible for management of clients, projects, staff, vendors, budget, calendar, governance, and final product.

Confidential - Murrieta, California

Owner

Responsibilities:

• Consultant to various business entities including: regulated, non-regulated, public, private, educational, retail and government in the areas of Enterprise Process Management, Disaster Recovery, Business Continuity, Risk Management, and Emergency Management.
• Responsible for coordinating the development of advance arrangements and procedures to ensure my clients could respond to disasters so that critical business functions could be resumed within a defined time frame, the amount of loss could be minimized, and any stricken facilities could be repaired or replaced as quickly as possible.
• This responsibility includes coordinating the design, development, writing, maintenance, exercising (testing), and implementation of Business Impact Analysis, Risk Assessment and analysis, Emergency Response, Command & Control, Crisis Management, Disaster Recovery, and Business Resumption Plans.
• Industries supported: Insurance, Financial Services, Banking, Healthcare, Service, Retail, Education, & Government.

Confidential - Irvine, California

Senior Business Continuity Consultant

Responsibilities:

• Business Continuity Practice Lead. Responsible for the development ITC’s Business Continuity Practice Methodology, documentation, procedures, and policies for both internal and external customers.
• These responsibilities included the design, development, maintenance, exercising (testing), and documentation within ITC’s Business Continuity Practice. Some are: Emergency Response, Crisis Management, Command Center, Disaster Recovery, Business Resumption, High Availability, Succession, Alternate Site, Risk Assessment, Business Impact Analysis, Voice/Data/Video Telecommunications Disaster Recovery, and other Business Continuity related Plans.
• Projects included: Disaster Recovery/Hot-site plan for a fortune 500 title insurance company, Disaster Recovery Plan for a Major University Data Center, Business Impact and risk assessment/analysis for a pre-IPO casualty insurance company.

Confidential - San Diego, California

Business Continuity Planner/Coordinator

Responsibilities:

• Responsible for the development and documentation of advance arrangements, procedures, and policies to ensure Confidential can respond to a disaster so that critical business functions can be resumed within a defined time frame, the amount of loss can be minimized, and any stricken facilities can be repaired or replaced as quickly as possible.
• Responsible for all facility and disaster related issues at all sites (200), server farms (76), and NOCs (2) west of the Mississippi river.
• These responsibilities included the design, development, maintenance, exercising (testing), and documentation of the overall Emergency Response, Crisis Management, Command Center, Disaster Recovery, and Business Resumption Plans for each critical functional area within the Confidential and all attached sites.
• These Emergency Response, Command Center, Crisis Management, Disaster Recovery, and Business Resumption Plans addressed the three major elements of the recovery process: (1) the emergency response organization and procedures for reacting to and coordinating recovery efforts; (2) the disaster recovery support procedures for restoring key organization resources; and (3) the business resumption procedures for the continuation of critical business processes.
• Performing risk analyses and assessments for all sites, server farms, and NOCs within the enterprise, identifying points of vulnerability and recommending disaster avoidance, reduction, and mitigation strategies.
• Conducted business impact analyses (BIA) and assisted Confidential management in the determination of critical business processes, identified acceptable recovery time objectives (RTO), and identified the resources required for the successful resumption of business operations in the event of a disaster, and the mapping of the overall BCP solutions.
• Assured required records for recovery were identified and properly maintained in the Configuration Management Data Base (CMDB).
• Established disaster recovery testing methodologies plans and coordinated the testing of Crisis Management, Emergency Response, Command Center, Disaster Recovery, and Business Resumption Plans.
• Assured that all recovery procedures were effective for the restoration of mission critical functions.
• Conducted Crisis Management, Disaster Recovery, Emergency Response, Safety, Command Center, and Business Resumption training for staff members in all functional areas and at all sites.
• Provided instructional and informational materials on how staffs are expected to respond during an emergency.
• Developed and maintained standards and procedures for disaster recovery documentation.
• Maintained the library contingency and safety procedures.
• Monitored the effectiveness of procedures during evacuation drills and revised the procedures as necessary.
• Maintained contact with outside contingency planning professional organizations and all local/regional emergency response groups.