Principal Security Consultant Resume Example SR3 Cybersecurity

PRINCIPAL SECURITY CONSULTANT

Executive Profile

A challenging position in a growth oriented environment, providing opportunities to utilize my people and project management strengths, allowing me to continue enhancing my technical and professional skills.

Professional Experience

05/2016 to Current

Principal Security ConsultantSR3 CyberSecurity － Petaluma, CA

Review the organizations Governance, Risk and Compliance structure to ensure that it is adequate for the size and complexity of the organization Protect data, information, IP and applications from theft and manipulation Review Policies, Standards and Procedures to ensure that they are properly tailored to the organization and are practical and can be enforced Review the Business Continuity and Disaster Recovery Plans to ensure that they are thorough and complete and can be implemented in a Disaster or Crisis situation Review the Incident Response Plan to ensure that it is thorough and complete and has been socialized through the organization for proper implementation Help clients identify and address visible and invisible threats through review of Network Diagrams, Vulnerability and Patch Management scans, Workstation and Server Hardening policies and checklists and Change Management adherence Review the Corporate Vendor Management Program for completeness, including contract review Prepare for the secure adoption of new technologies through proper RFP and Project Management processes.

11/2015 to 05/2016

Information Security OfficerFirst Priority Financial － Santa Rosa, CA

Develop, administer and implement the overall bank wide Corporate Information Security Program (CISP) and monitor and evaluate the effectiveness of policies and procedures related to the CISP.
Oversee the GLBA information security risk management program.
This would include risk assessments for business applications, technical infrastructure, service providers and business processes.
Develop, maintain and test an actionable enterprise wide business continuity and resumption plan.
Develop and maintain the enterprise wide vendor management program.

03/2014 to 10/2015

VP / Information Security ManagerMechanics Bank － Hercules, CA

Manage an Information Security team of a Business Continuity Planner, Vendor Risk Manager, Information Security Assurance Engineer, Information Security Team Lead Manage security related technology including Websense, Dell SecureWorks, TrustWave, MobileIron, Symantec DLP, Quantivate Enterprise Risk Management system Monitor and evaluate the effectiveness of the Corporate Information Security Program (CISP) and develop and implement policies and procedures related to the CISP Oversee the GLBA information security risk management program.
This would include risk assessments for business applications, technical infrastructure, service providers and business processes Serve as a member of the Bank's internal Incident Response Team (IRT), IT Steering Committee and Operational Risk Management Committee.

06/2013 to 03/2014

VP / Information Security OfficerBank of Marin － Novato, CA

Develop, administer and implement the overall bank wide Corporate Information Security Program (CISP) Monitor and evaluate the effectiveness of the CISP and develop and implement policies and procedures related to the CISP Oversee the SOX Information Technology implementation and auditing, including identifying and documenting all controls, determining the key controls and auditing the key controls for effectiveness Oversee the GLBA information security risk management program.
This would include risk assessments for business applications, technical infrastructure, service providers and business processes Serve as a member of the Bank's internal Incident Response Team (IRT) Develop, maintain and test an actionable enterprise wide business continuity and resumption plan.

01/2007 to 06/2013

Information Security OfficerExchange Bank － Santa Rosa, CA

Develop, administer and implement the overall bank wide Corporate Information Security Program (CISP) Monitor and evaluate the effectiveness of policies and procedures related to the CISP Oversee the GLBA information security risk management program.
This would include risk assessments for business applications, technical infrastructure, service providers and business processes Oversee the SOX Information Technology implementation and auditing, including identifying and documenting all controls, determining the key controls and auditing the key controls for effectiveness Serve as a member of the Bank's internal Computer Incident Response Team (CIRT) Serve as the primary contact between the Bank and internal auditors, third-party auditors, and regulatory agency examiners for all information security audits and examinations, and apply audit findings Develop, maintain and test an actionable enterprise wide business continuity and resumption plan Develop and maintain the enterprise wide vendor management program.

04/2005 to 01/2007

Network Security EngineerPacific Coast Bankers' Bank － San Francisco, CA

Developed and implemented unified IDS/IPS/Firewall strategy which included monitoring and alerting Developed and implemented network monitoring and alerting systems utilizing Solar Winds Orion Developed and implemented enterprise wide log collection, correlation and normalization system Developed and implemented enterprise wide vulnerability and threat assessment testing Developed and implemented enterprise wide patch management system for servers and workstations Restructured and Reconfigured backup strategy including Disk to Disk and Disk to Tape solution.

Education

B.S: Information Technology Information TechnologyUniversity of Phoenix IT － San Jose, CAInformation Technology Information Technology as defined by the Information Technology Association of America (ITAA), is the study, design, development, implementation, support or management of computer-based information systems, particularly software applications and computer hardware. IT deals with the use of electronic computers and computer software to convert, store, protect, process, transmit, and securely retrieve information.

Certifications

Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) Microsoft Certified Systems Engineer (MCSE) Cisco Certified Network Associate (CCNA)

Professional Affiliations

InfraGard-San Francisco Chapter *Information Systems Security Association (ISSA)-San Francisco Chapter *Information Systems Audit and Control Association (ISACA)-Sacramento Chapter

Skills

agency, auditing, backup, business processes, CCNA, Cisco Certified Network Associate, Change Management, CISA, Inter-Personal, computer hardware, contract review, clients, Dell, Disaster Recovery, Documentation, Engineer, Firewall, IDS, Information Security, Information Systems, Information Technology, IP, Team Lead, Microsoft Certified Systems Engineer, MCSE, Enterprise, Network Security, Network, Policies, Problem solving, processes, Project Management, RFP, Risk Manager, Risk Management, servers, strategy, Symantec, Team Management, Vendor Management

Resume Overview

Companies Worked For:

SR3 CyberSecurity
First Priority Financial
Mechanics Bank
Bank of Marin
Exchange Bank
Pacific Coast Bankers' Bank

School Attended

University of Phoenix IT

Job Titles Held:

Principal Security Consultant
Information Security Officer
VP / Information Security Manager
VP / Information Security Officer
Network Security Engineer

Degrees

B.S : Information Technology Information Technology

Principal Security Consultant Resume Example

Resume Score: 90%

DISCLAIMER

Resume Overview

Create a job alert for [job role title] at [location].

Similar Resumes