Description :

1. Established policies and protocols to ensure the confidentiality, integrity, and availability of information assets.
2. Oversaw daily IT operations, ensuring alignment with organizational security objectives.
3. Collaborated with executive leadership to drive strategic initiatives that enhance information security posture.
4. Managed and optimized the IT infrastructure, including EHR systems, to ensure compliance with healthcare regulations.
5. Functioned as the primary disaster recovery and business continuity officer, developing comprehensive recovery strategies.
6. Designed and executed incident response plans to effectively address security breaches.
7. Conducted regular security drills and assessments to improve incident response capabilities.

Experience

2-5 Years

Level

Executive

Education

M.S. Info Sec

Description :

1. Oversaw security operations for multiple banking institutions, enhancing the security posture across 37 remote locations and corporate offices.
2. Developed and implemented a risk-based security governance framework aligned with business objectives and regulatory requirements.
3. Collaborated with IT and business leaders to establish layered security controls, ensuring the confidentiality, integrity, and availability of sensitive data.
4. Created enterprise-wide security metrics to measure effectiveness and maturity in risk management efforts.
5. Facilitated FDIC exam preparation, providing comprehensive documentation and materials.
6. Designed a robust cybersecurity plan for Duquesne Light, ensuring compliance with industry standards such as NERC CIP and PCI.
7. Directed incident response planning and execution, minimizing the impact of security breaches and enhancing recovery strategies.

Experience

10+ Years

Level

Senior

Education

M.S. Cybersecurity

Description :

1. Recruited to establish a scalable information security infrastructure for a rapidly expanding healthcare organization, ensuring compliance with HIPAA and other regulations.
2. Fostered strong partnerships with stakeholders, including executives and vendors, to align security initiatives with business goals.
3. Implemented advanced access control measures to safeguard sensitive data and ensure compliance with industry standards.
4. Designed and executed a data breach response plan, significantly reducing incident response time and minimizing potential damages.
5. Played a pivotal role in deploying a multi-factor authentication system, enhancing system security across all platforms.
6. Conducted regular security audits and vulnerability assessments, leading to the identification and remediation of critical security gaps.
7. Developed and delivered training programs to enhance employee awareness of security best practices, resulting in improved organizational security culture.

Experience

2-5 Years

Level

Junior

Education

M.S. IS

Description :

1. Executed a seamless migration to a new network infrastructure, achieving zero service disruptions and enhancing operational efficiency.
2. Championed the implementation of 80 SOX control activities, ensuring full compliance with Johnson & Johnson's stringent requirements.
3. Developed and enforced Information Assurance Protection Policies to safeguard organizational data and maintain compliance.
4. Directed incident response efforts, establishing robust standards and controls to mitigate security threats.
5. Led initiatives to optimize security processes, resulting in a significant reduction of information security risks.
6. Coordinated cross-departmental teams to enhance collaboration and streamline security practices across the organization.
7. Implemented advanced security technologies, improving overall security posture and response capabilities.

Experience

10+ Years

Level

Senior

Education

M.S.C.

Description :

1. Enhanced the Information Security program from significant deficiency to Fully Satisfactory during the 2014 FISMA audit.
2. Implemented a secure Windows 8.1 image and Surface Pro 3 rollout organization-wide, improving system security and efficiency.
3. Directed the procurement of on-demand Incident Response assistance, optimizing resource allocation during security incidents.
4. Formulated and enforced policies ensuring system reliability and preventing unauthorized access to sensitive data.
5. Established organization-wide PCI-DSS compliance policies, safeguarding customer financial data.
6. Oversaw the comprehensive Information Security program protecting the data of over 25 million taxpayers.
7. Managed all IT-related program and project leads, ensuring alignment with security objectives.

Experience

7-10 Years

Level

Executive

Education

M.S. Cybersecurity

Description :

1. Developed and implemented security protocols to safeguard organizational assets, resulting in a 25% decrease in security breaches.
2. Collaborated with IT and business leaders to assess and address computing and network security needs within budget constraints.
3. Installed and maintained advanced security systems, enhancing the overall security posture of the organization.
4. Conducted comprehensive security audits and presented findings to management, driving strategic improvements.
5. Enhanced supply chain reliability through improved security measures and protocols.
6. Formulated emergency response and crisis management procedures to ensure organizational readiness.
7. Established a culture of security awareness through ongoing training and communication initiatives.

Experience

2-5 Years

Level

Executive

Education

M.S. Cybersecurity

Description :

1. Oversaw the company's security and compliance operations to meet obligations under HIPAA, ensuring protection of sensitive healthcare data.
2. Designed and executed comprehensive HIPAA policies and procedures to enhance organizational compliance.
3. Developed and maintained the Business Continuity Plan, leading annual tabletop exercises to ensure readiness.
4. Implemented a managed security services program, providing continuous monitoring and alerting to safeguard PHI environments.
5. Formulated the strategy for transitioning operations to Amazon Web Services, optimizing cloud security and performance.
6. Reported operational risk positions to the Board of Directors, serving as the Compliance Officer and enhancing risk awareness.
7. Collaborated with client security teams to effectively manage incidents impacting data confidentiality, integrity, or availability.

Experience

7-10 Years

Level

Management

Education

MBA

Description :

1. Oversaw the operational architecture and management of global network systems supporting Inter.net and Fastbee Global.
2. Led a diverse team of 12 direct and 8 indirect reports, enhancing collaboration across a matrixed global organization.
3. Directed technical specialists to maintain network components for 99.99% uptime across a global infrastructure.
4. Provided security support to the North American Hosting Center, ensuring the protection of 1000 employees and 350,000 customers in the U.S.
5. Designed and implemented the security architecture for a worldwide internet service provider.
6. Established and enforced corporate security policies and practices, safeguarding 600,000 customers and corporate end users in 24 countries.
7. Engineered and maintained all security system hardware and software, ensuring robust defense mechanisms.

Experience

10+ Years

Level

Senior

Education

M.S. Cybersecurity

Description :

1. Chosen by the Board of Trustees to serve as the inaugural CISO for Mayo Clinic, leveraging recommendations from external security experts.
2. Formulated a forward-thinking information security vision tailored for the healthcare sector, complemented by a sustainable five-year business plan.
3. Established an industry-leading medical device testing center, enhancing patient safety and security standards.
4. Developed and implemented a comprehensive Identity and Access Management framework to support evolving business needs.
5. Represented the World Bank as a keynote speaker at multiple international conferences, conducting risk assessments for central banking systems.
6. Collaborated with legal teams to ensure all contracts adequately protect information assets.
7. Designed a dual-tier security model for app assessments as part of the SocialWellth curation process.

Experience

10+ Years

Level

Senior

Education

M.S. Cybersecurity

Description :

1. Developed and implemented a comprehensive risk assessment framework across IT, Operations, and Finance, enhancing overall security posture.
2. Conducted detailed reviews of security reports, offering management actionable insights and recommendations for improvement.
3. Executed an enterprise-wide IT security strategy, integrating security protocols into daily business operations.
4. Oversaw vulnerability assessments, disaster recovery plans, and penetration testing to identify and mitigate risks.
5. Managed a $2 million budget for lab training equipment, ensuring state-of-the-art resources for security training.
6. Provided oversight for compliance with NIST 800-53 controls, ensuring effective implementation and monitoring.
7. Established and enforced new federal regulations for customer data protection, enhancing information security protocols.

Experience

5-7 Years

Level

Executive

Education

M.S. Cybersecurity