SUMMARY:

Technical and business profession with more than twenty years’ experience, including systems administrator, project manager, business analyst, quality assurance, security (PCI/SOX, HIPPA, Risk and IT Audit), as well as educator. Motivator, mentor, balancing the short term department goals with long term corporate objectives, which in turn led to key roles on corporate strategic projects throughout career within fortune 500 companies.

PROFESSIONAL EXPERIENCE:

Confidential

Deerfield, IL

IT Analyst III: Duties include performing third party vendor audits as well as risk assessments, regarding IT security, connectivity, and privacy. Monitor and proactively recommends solutions for correcting issues related to security technology performance and capabilities of vendors.

Confidential

Chicago, IL

IT Senior Auditor: Duties include performing IT audits and risk assessments across the organization, in preparation of external audits. Validate user access requests, change management and general IT controls compliance.

Confidential

Deerfield, IL

Risk Analyst: Duties include performing audits and risk assessments for 3rd party vendor, specifically regarding privacy, SOX, SOC2, ISO 27991/2, ISO 9001 and security controls. Review SOP, training and IT controls for storing data as well as connectivity to Takeda networks. Provided risk assessment rating for business UNIT and worked with vendors to remediate gaps. Supporting the Chief Privacy Officer and dealing with a variety of privacy, data and security issues on a daily basis. Perform assessment in support of US and global markets. Tracking changes in global privacy and security regulations and impact on current business partnerships.

Confidential

Lincolnshire, IL

Project Manager / Risk Analyst: Duties include the analysis, delivery of project services and execute of small / medium projects, initiatives focused on audit and compliance, BAU activities, and service requests.

Performed GAP analysis of current audit work stream and remediation.

Confidential

Chicago, IL Dates:

Risk Analyst: Duties include performing information and technology risk assessment on lines of business throughout the bank based on data and technology used in daily operations, third party vendors. Audit for compliance of ISM and SOX regulations.

• Conducted annual IT control and data risk and audit assessment review.
• Roll out of Archer repository system for ISM assessments.

Confidential

Deerfield, IL

Senior IT Auditor: Duties include assess operational IT risks and abstracts/conceptualizes operational and IT risks to business risks, in order to provide the business with the right level of assurance or advice. Conducts audit activities including audit planning, pre - assessment, fieldwork and reporting. Areas of review included SDLC, Security Governance, Application, Go-Live post-acquisition reviews and WK IT general controls utilizing COBIT standards.

• Developed work programs for Open-Source, Agile, Social Media and Vendor Management, utilizing TeamMate.
• Conducted IT control audit, governance planning.

Confidential

Chicago, IL

IT Project Manager / Risk Analyst: Duties involve project management of application, infrastructure deployment and upgrades in support of on-boarding, ongoing support of JPMC corporate strategic partnerships for efficient payment processing and financial clearing. Processed by an common tools and security processed into Global file format for internal processing and submitted to external clearing . Daily activities were scheduling, budgeting, resource assignment (on shore, off shore and vendor), status tracking through out the SDLC utilizing Waterfall and Agile/SCRUM methodology. Supporting the client banking organization through baseline level of security review for business requirements and RBAC access.

• Coordinated project plans, budgets, resources allocation, risk management and stakeholder engagement, via SharePoint.
• Oversaw deployment of internal security, PCI and SOX related IT security controls including data masking.
• Risk assessment regarding onboarding and continued support of third party vendors.

Confidential

Chicago, IL

Technical Lead / Senior Project Manager Mobile applications. Analyzes, designs, develops, and supports all major information systems. Is involved in determining the strategic direction of systems; determines the protocols tools, languages, and databases to be used; and understands how all data, applications and hardware functions and interact. Is involved in all major systems development and re-engineering efforts. Provides applications and administration expertise in multiple areas, including android, IPhone, IPAD, UNIX-based servers, relational databases. LAN/WAN architectures, and other similar environments. Utilization of agile methodology.

• Coordinate between OLB, mobile development team and offshore vendor in development of IPhone, android and other mobile applications.
• Vendor management of offshore vendors to streamline MTTR.

Confidential

Chicago, IL

Project Coordinator / Technical Project Manager: Duties involve strategic initiatives within government reporting and operations work streams. Facilitate seamless communications and coordination between business sponsors, regulators and IT professional staff on delivery applications meeting new healthcare regulations. Oversee entire SDLC (traditional and agile) process, resource tracking, and schedule along with statement of work. Facilitate JAD sessions for government initiatives related to student health, narrow network and enterprise pharmacy in support of affordable health care law. Managed 5 to 10 simultaneous projects ranging from 5 - 50 resources and budgets under 1M.

• Coordinate activities to build out business and technical requirements, business case development, IT solution design, implementation and deployment for internal and offshore vendors.
• Provide Risk assessment for project implementation as well as initial security RISK assessment, HIPPA, SOX and internal controls.

Confidential

Chicago, IL

IT Project Manager / Risk Analyst: Duties involve host based KEON, Role based remediation across the Corporate Sector enterprise, Active Directory file share / SharePoint remediation, EPV re-certification and SAP. Hold status meetings; keep key stakeholders informed of progress, review logs for compliance, security review/audit. Develop next step of RBAC implementation based on HR roles, to reduce unauthorized access risk across enterprise including compliance to PCI, SOX and internal security risk controls. Managed 5 to 20 simultaneous projects and subprojects ranging from 3 - 15 resources and budgets up to 2M+.

• Coordinated multiple LOB project teams from legacy UserClass access into corporate standards providing no downtime and improved User Access Management
• Risk assessment of Users, based on HR role, across the enterprise thus limiting potential risk of unauthorized access.
• Cost saving to the organization by better utilization of resources, standardization and access control.

Confidential

Lincolnshire, IL

IT Project Manager: Duties involve, requirements gathering, design, and resource allocation of infrastructure groups for implementation. Oversee of project timelines (projection to actuals), goals, negotiate project commitments, oversee technical scope, capacity planning review, coordinate SME activities, ensure project progress with appropriate project communications to stakeholders, mitigation/escalation strategies to limit risk, document best practices for projects with budgets up to 2M. Applications involve offshore pharmaceutical and logistic application development and support, utilizing VDI, VM, AIX and performing security evaluations. Utilization of ITIL, waterfall and agile methodologies within SDLC mid-sized projects. Managed 5 to 10 simultaneous projects ranging from 5 - 20 resources and budgets up to 1M.

• Multi departmental BA, PM and Security evaluation of applications into multi-tier enterprise network zones to support Confidential compliance to US privacy laws.
• Managed security implementation and compliance of HIPPA, SOX and PCI related standards including RBAC.
• Provided risk assessment across multiple development teams, stakeholders and sponsors for best practices to improve development time per release.

Confidential

Hoffman Estates, IL

Technical Project Manager / System Engineer: Duties involve development of hardware and software requirement for internal projects, provide technical solution input, capacity planning reviews, cost estimates, budgeting, resource allocation, scheduling, project tracking, evaluation of hardware technologies, comparing performance to price for proposed platforms. Identify where cost cutting can occur across projects and corporate initiatives before purchases are made, utilizing traditional and gated methodologies. Managed 5 to 20 simultaneous projects ranging from 5 - 30 resources and budgets up to 2M+.

• Standardized on all midrange server builds to facilitate quicker deployment and standard processes, utilizing VMware, SAN storage, Redhat LINUX, MS Windows server.
• Project management of server remediation and consolidation, reducing supported platforms from 10 to 5.
• Developed customized vendor training material to reduce training costs and improve effectiveness/SAP.
• Documented, oversaw deployment and audit of internal security, PCI and SOX related IT security controls.

Confidential

Hoffman Estates, IL

Senior Systems Analyst / Technical Project Manager: Duties involve Project Management and Project Lead for the UNIX administration for Strategic applications and infrastructure support. UNIX administration of SUN Solaris, LINUX, HP-UX, NCR and SCO. Provide assistance and training of new team members in the area of UNIX administration. Project planning, scheduling and gathering of business requirements for redevelopment, redesign and deployment of UNIX servers to meet client applications needs and corporate objectives, utilizing waterfall, CMM and six-sigma methodologies Provide insight and assistance for obtaining level three SEI status, by participating in process improvement initiatives.

• Developed standards for server support to automate admin duties, allowing server to admin ratio 30/1 to improve to 150/1.
• Project managed and built business case of migration of network servers into ITO model which improved availability from 80% to 99% platform uptime as well as meeting security SLA.
• Developed SA courses (SA101) for new administrators reducing training costs and improved processes.
• Security lead for standards, deployment of SOX, PCI and Internal UNIX controls and audit certification.

TECHNICAL SKILLS:

Languages: C/C++, Visual Basic, HTML, Java, Jscript, COBOL, SAS, SPSS, LISP, SQL, Perl.

Programs: MS Project, Project Workbench, Access, Excel, Word, PowerPoint, Uniface, Star-office, SAP, SharePoint.

Operating Systems: Windows 7/VISTA/XP, 2003, 2008, UNIX, Solaris, Linux, AIX, VMWare, NEXTSTEP, Novell.