Chief Information Security Officer resume example

Spearhead security services with focus on optimizing operational continuity for 650+ users in alignment with regulations and organizational objectives. Control $15M budget and drive efforts of five direct / 24 indirect reports - including leaders and specialists in cybersecurity and engineering. Coordinate security assessment / authorization and internal system audits for all enterprise systems and cloud services. Key Contributions:

• Orchestrated development and implementation of lean Enterprise Cybersecurity Program organization-wide.
• Enhanced organizational risk posture with establishment of formal Cyber Risk Management Program, Vulnerability Management Program, Security Incident Analysis / Response structure, and Security Operations Center.
• Established policy, processes, and tools to optimize organizational Identity and Access Management (IAM) as well as Privileged Access Management (PAM) capabilities.
• Collaborated with CISOs across Department of Energy in rollout of Intra-Agency Threat Intelligence Collaboration Program.
• Played key role in external Inspector General audits of EIA systems and unclassified cybersecurity program - serving as senior security official.
• Implemented and enforced Assessment & Authorization (A&A) as well as internal audit processes, covering all internal and cloud systems / services.
• Facilitated deployment of new technologies with introduction of IT enterprise architecture governance processes and solution design framework - expediting efforts via standardization.

Directed team of eight and implementation of $5M budget focused on development of secure, innovative, cutting-edge data processing as well as analysis solutions. Managed strategic planning and allocation of resources to support operational excellence of systems used by 1,000+ users. Key Contributions:

• Established and implemented security controls and compliance requirements for all data processing and analytical systems in accordance with federal and departmental policies and orders.
• Enhanced data analytics and machine learning capabilities with development of Common Operating Environment (COE) for data processing organization-wide.
• Elevated data security, user interaction with data, and delivery of business functionality via consolidation of dispersed business functionality into single system.
• Pioneered development and launch of first-in-government training strategy for critical information system on web-based on-screen video technology.
• Honored with "Project of the Year Award" for implementation of attribute-based access control in complex web-based data analytics solution.

Coordinated and mentored three functional leads and 30 developers / consultants committed to addressing software needs of diverse users. Key Contributions:

• Enhanced project performance analysis and Earned Value Management (EVM) capabilities in Department of Energy through successful and on-time delivery of Project Assessment & Reporting System (PARS II).
• Delivered maintenance cost reductions by negotiating and introducing major product enhancements to facilitate performance data analysis.
• Implemented systemic approach to risk management, achieving smooth integration into full system development life cycle.
• Boosted software releases quality and slashed rework by 65% with introduction of agile project management methodology (Scrum) as well as development team empowerment.