SUMMARY

• Information Technology Security Global leader with a proven track record of success working for Fortune 500 companies engaged in engineering and technology.
• Responsibilities include managing a multitude of talent, from all aspects of Identity and Access Management, SAP Security professionals to offshore resources.
• Successfully interpreted, translated, designed solutions and implemented security requirements on multiple occasions throughout career.

CORE COMPETENCIES

• Enterprise Security Solution Architecture, Engineering, and Delivery
• Hardware Infrastructure Implementation
• Process Improvement Implementation
• Project and Program Enterprise Management
• System Development Life Cycle (SLC
• Technical and Analytical Leadership
• Salary Administration, Managed Budgets and Staffing
• Setting Goals, People Care and Performance Reviews

PROFESSIONAL EXPERIENCE

Confidential, PA

Senior Manager

Responsibilities:

• Managed project and team of Application Developers creating TE’s in - house written Identity and Access Management system which provided workflow approvals for Non-SAP application. Tool also automatically performed annual recertification of access.
• Manager of SAP Security professionals,responsible for security role design, governance, operational support, projectplanning and execution.
• Defined teh IT Security framework for all SAPimplementations, gain alignment from teh business leadership on teh keysecurity design points in compliance with SOX principals and requirements.
• Evaluated and managed business risks associated with application design and implementingappropriate mitigating controls to address those risks as well as provide recommendations onways to simplify and streamline teh security design.
• Managed all security proposal, cost estimation, design and delivery of projects and strategic initiatives requiring security work.
• Managed project and team to implement CSI’s Vendor product for SOD checking
• Managed project and team of ABAP Developers who created TE’s in-house written SAP Identity and Access Management system which provided workflow approvals, interfaced with CSI for SOD checking and authorizations. Tool automatically performed annual recertification of access and re-authorization of all SODs. Monitored for changes to a user’s HR Job Family, Job Function and Position ID and based on changes would automatically issue request to have accessed reviewed.
• Managed team of ABAP Developers who designed and implemented a tool used by teh business to perform SOD mitigations.
• Managed project and team in teh re-write of all SAP Master, Derived and Composite roles which at teh end resulted in an 88% reduction of SODs.
• Maintained up-to-date noledge of emerging and projected future technology trends and developments to investigate, plan, and implement specifictechnologies, products, methods and techniques related to SAP security.
• Senior Manager and GRC team member responsible for all SOX Internal Controls, teh testing of these controls as well as teh SOX External Audits. Also responsible for teh tracking of all Internal and External Audit findings, annual policy reviews, policy deviations, data classifications, security awareness and training.

Confidential, PA

Security Solution Architect

Responsibilities:

• Fully qualified solutions technically and financially (both cost model and pricing) and for obtaining all aspects of governance and delivery approvals.
• Educated customers on HP’s Portfolio of Security Services, teh proposed solution, as well as providing technology subject matter expertise and consultancy to help teh sales teams provide high value messaging and deliverables within teh sales campaign.
• Produce high quality customer documentation, SOW’s, SLA’s, and proposals.
• Understood business risks and applied proper controls around limits of liability.
• Role required in-depth noledge and experience of HP Security Service Portfolio which includes network security, infrastructure security, security information and even management (SIEM), web & email security, intrusion detection/prevention (HIPS / NIPS), application security, endpoint security, data loss prevention; all which are services delivered on both HP and other security vendor technologies.

Leader

Confidential

Responsibilities:

• Provided Leadership, program and project management, financial and supplier management for Identity and Access Management security architecture and engineering within Global Information Security (GIS).
• Set direction and policies to achieve business goals and objectives. Planning, directing and coordinating strategic and tactical activities of a global IAM architecture and engineering organization.
• Organized activities into projects which ranged from conception to fully operational and sales ready state.
• Managed technical direction and scope for Identity and Access Management initiatives including directory services, web access management, provisioning services, identity assurance, federation, and token management.
• Consulted with EDS teams on Identity and Access Management processes, procedures, business practices, etc.
• Identified and implemented opportunities to leverage EDS resources and expertise, create and manage a pilot for delivering Identity and Access Management consulting service to EDS and EDS clients.
• Created a roadmap and strategic vision for establishing EDS as an industry leader in Identity and Access Management service.
• Controlled and managed supplier relationship and financial activities through contract management processes, statement of work agreements and supplier project monitoring.