Chief Information Security Officer resume example with 20+ years of experience
Cyber security executive with 20 years specializing in securing and ensuring compliance of highly complex technology ecosystems for global organizations within multiple industries. Effectively managed $20M budget across three distinct functions. Proven ability to blend security and IT management while maintaining a business-first approach with executive management.
|
|
Established internal forensics practice enabling the company to save more than $250k in discovery and litigation expenses.
Negotiated $30mil enterprise software renewal deal involving cross-business stakeholders.
Developed and implemented enterprise Incident Response policy enabling the organization to effectively report and manage security events.
Saved more than $1 mil by renegotiating IT software contracts and leveraging synergies and eliminating duplicate solutions.
- Developed enterprise security strategy, including policies and procedures, for Corporate and subsidiaries. Engaged, partnered and influenced line of business CISO and CIO in the execution of the information security program.
- Partnered with CEO and CFO on security threats and controls to manage risk to the organization.
- Spearheaded awareness programs that resulted in a 30% decrease of security events .
- Delivered enterprise security services including: threat intelligence; phishing awareness; forensic and e-discovery investigations
- Established strong partnerships with regulatory bodies, peer groups and law enforcement.
- Directed the migration and support of 8,500 Office 365 mailboxes saving $750,000 annual savings in infrastructure and support costs.
- Governed $4.5M annual Managed IT Services contractor. Led security and governance towers during transition between service providers, including a data center move that resulted in $1M annual net savings.
- Successfully facilitated DR exercise recovering all critical systems at a secondary site.
- Led IT Governance, Technology Infrastructure, Information Security and Records Management team.
- Directed Corporate PMO office with six project managers successfully completing PeopleSoft implementations; Office 365 migrations and treasury systems implementation.
- Established IT SOX compliance program that resulted in external audit reliance that eliminated 50% of IT related SOX testing fees and reduction of impact and effort to the business.
- Examined control environment during M&A cycle and consulted newly acquired executive leadership on general computer control effectiveness.
- Presented to Board Audit Committee on IT Compliance program. Headed Corporate Audit team responsible for IT, financial and operations audits including T&E, FCPA, Information Security and SEC reporting audits.
- Led and directed team of IT auditors performing audits of the following areas: physical security; change / problem management; business continuity / disaster recovery; General Computer Controls and Compliance audits (PCI-DSS, ISO-27001, SOX) while maintaining top quartile associate satisfaction within the team.
- Performed risk assessments for all business units including two banks resulting in revised processes. Obtained satisfactory ratings from the annual Office of the Comptroller of Currency (OCC) review.
- Consulted and advised CIO and IT senior leadership on the remediation of audit findings as well as the implementation of an enterprise IT controls framework adopted across the organization.
- Technical lead for Windows Server environments across Europe and Asia Pacific regions.
- Identified and presented technical solutions for securing and managing enterprise Active Directory environment.
- Developed security policies for Windows Servers and Active Directory.
- Developed and deployed 200+ Active Directory Group Policy (GPO) settings to enforce security and policy settings.
- Managed the integration of Active Directory environments for two large acquisitions.
- Architected and implemented VMWare ESX server farms and virtualized 25+ physical servers saving over $150,000 in hardware costs.
- Developed and wrote corporate incident response policy, acceptable use policy and corporate information security policy and standards.
- Architected and implemented enterprise intrusion detection; antivirus protection and web content-filtering solutions.
- Led information security due diligence and integration initiatives for multiple acquisitions and divestures.
- Managed identity and access management for more than 20,000 users in a multi-platform global environment.
- Developed a security request application that let to faster SLAs and a 40% improvement of staff efficiency.
- Coordinated audit remediation and compliance initiatives resulting in no repeat findings within MCI's 27 mainframe environments.
- Saved over $150,000 annually by consolidating remote access operating expenses and eliminating duplicate services.
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified in Risk and Information Systems Control (CRISC)
Certification in Risk Management Assurance (CRMA)
Certified Internal Auditor (CIA)
Microsoft Certified System Engineer (MCSE)
Check Point Certified Security Administrator (CCSA)
Certified Ethical Hacker (CEH) - expired
Cisco Certified Network Associate (CCNA) - expired
DMA Certified Marketing Professional (DCMP)
By clicking Customize This Resume, you agree to our Terms of Use and Privacy Policy
Your data is safe with us
Any information uploaded, such as a resume, or input by the user is owned solely by the user, not LiveCareer. For further information, please visit our Terms of Use.
Resume Overview
School Attended
- University of Dallas
- Mary Washington College
Job Titles Held:
- Chief Information Security Officer
- Corporate Security Officer and Sr. Director, IT Governance
- Director, IT Compliance and Global Audit
- Manager, IT Audit
- Senior Systems Engineer
- Senior Information Security Analyst
- Security Engineer
Degrees
- MBA
- Bachelor of Arts
By clicking Customize This Resume, you agree to our Terms of Use and Privacy Policy