HEAD OF INFORMATION SECURITY, HEAD of IT
A result oriented IT professional and technology leader with over 17 years of demonstrated success in managing & directing technical and business operations in areas of information technology and information security; Developed competency in the complex IT security design, configuration, deployment, administration, management and troubleshooting complex network security configurations; Proficient in leading the dedicated teams for running the successful process operations and experience of developing the procedures and service standards for business excellence; Possesses very strong organizational, people and communication skills.
AREAS OF EXPERTISE
* Strategy, Requirements Planning & Alignment * Information Security Program Management * Change and Transformation Management * Policy, Standard and Guideline Development * Merger and Acquisition IT Integration * Compliance, PCI, ITIL, ISO 27001 * P&L Accountability * International Business Operations * Problem Resolution and Continual Improvement * Disaster Recovery and Business Continuity * Recruiting and Developing Technical Teams * Network and Security Operations Centers
PROFESSIONAL EXPERIENCE
Gartner listed MSSP CONNECTICUT, VIRGINIA, CALIFORNIA, SINGAPORE, UK, MUNICH 2005 - PRESENT
deals in several service lines including: Professional services and consulting, managed and support services, and
technology resale (VAR)
Vice President Engineering, Vice President Managed Security Services
Originally joined as Vice President of engineering and over tenure have held many responsibilities throughout the
organization which have included managing presales, professional services, consulting, and IT. Currently responsible for
delivery of managed security services as Vice President Managed Security Services and leading regional Security Operations
Centers. (SOCs)
MAJOR CONTRIBUTIONS
* Established new SOCs in California, Singapore and Ashburn Virginia which involved recruitment and training of technical teams, process transformation, development and integration with other international teams; Overcame complexities and challenges critical to customers and host countries to maintain track record of opening fully functional SOCs, operating with well trained and tuned team of security professionals delivering excellence in managed security services to regional and multinational customers.
* Led project to attain SAS 70 Type I and II for the MSS organization in the USA
* Developed information security programs and led project achieving ISO/IEC 27001:2005 certification for MSS division in all operating geographies
* Consistently achieved high customer renewal rates and satisfaction ratings
* Planned and executed integration of acquired entities into existing MSS SOC operations resulting in strong economic efficiencies
* Led international operational working group team developing and executing joint master plan after acquisition by global telecom entity.
* Led teams planning and performing numerous large scale and customer facing projects which included system wide infrastructure migration, on boarding 1800 firewalls in one weekend, and migrating over 400 new customers to Managed Services.
* Maintained strong focus on team development resulting in success and leveraging development investments as many former direct reports routinely move into areas of greater responsibility within the organization.
Healthcare technology Vetical- RESTON, VIRGINIA 2000-2005
- deals in healthcare technology, and develops several vertical software applications for small to mid-sized hospitals
Director, IT Security and Risk Management (2003-2005)
Responsible for IT Security and Risk Management initiatives including policy, process and standards development, business alignment, implementation, compliance monitoring, intrusion detection management, anti-virus management, disaster recovery plan, development and testing, business continuity planning, risk assessments and business impact analysis.
MAJOR CONTRIBUTIONS
* Ensured successful audit outcomes by implementing and managing COBIT based framework
* Conducted comprehensive Business Impact Analysis which identified key business functions and systems in need of disaster recovery and business continuity plans and alignment of security program with business objectives
* Significantly reduced downtime and productivity loses caused by security incidents by presenting business case and executing multiple projects encompassing relevant areas of people, process, and technology.
* Ensured reliability and continuity by performing disaster recovery testing and creating disaster recovery plans for key business systems and functions in the areas of support, PeopleSoft Financials, EDI processing and customer facing production systems
* Proposed, drafted and implemented policies and procedures to comply with HIPAA, Sarbanes Oxley and other compliance areas.
Director, Network Operations and Support (2000-2003)
Managed organization of a dispersed group of support engineers into a cohesive team focused on enterprise objectives and implementation of infrastructure changes to meet the needs of business constituents
MAJOR CONTRIBUTIONS
* Planned and executed project integrating over 30 acquired entities, AD domains and IT infrastructures into a central IT infrastructure.
* Modeled the design and implementation a robust and fault tolerant, fully wide area network supporting disbursed sites and remote users to provide a fully meshed, redundant, IPSEC VPN infrastructure
* Managed and led server migrations to centralized data centers including virtualization of systems
* Achieved reliable data recovery capabilities by standardizing and upgrading backup methodologies, equipment and architecture.
PRIOR EXPERIENCES
Consumer Financial Services non-profit, Gaithersburg, MD 1995-2000
Information Technology Officer
Responsibilities and achievements included planning, selling and executing organizational transformation project bringing back office operations and client services from manual and paper based systems to fully automated systems and technology.
Substantial profitability and productivity gains resulted as a result of this transformation.
EDUCATION & CREDENTIALS
BS University of Maryland University College
CERTIFICATIONS
* CISM (Certified Information Security Manager) * ITIL Foundations Certified * Certified HIPAA Security Professional *
TECHNOLOGIES WORKED ON
Statistical Multiplexers, Mini Computers, R91 PICK (database and Operating System), IVR (Integrated Voice Response), LAN/WAN Technologies, Cisco Routers and VPN Concentrators, Firewalls, Ipchains, Tripwiire, Checkpoint, Security Monitoring Systems, Websense, GFI Languard, Microsoft IIA, Windows 3.51, NT 4, 2000, XP, Server 2003, Active Directory, MS SQL, MS Exchange, Linux, Sendmail, Remedy, Vmware, Fetchmail, BASIC, Fortran, C |