Chandler, Arizona, United States
Mission enhancing results and surpassing expectations is a key element of building a successful security program. I utilize NIST framework and CIS standards including supervision and support for incident command and response, forensic analysis, disaster recovery, and cyber resiliency. Evaluate cyber security threats, risks, vulnerabilities, and processes to determine organizational risk. Specialties: Establishing enhanced enterprise security, consolidation of resources, reducing capital expenditures, identifying and reducing risk, applying knowledge of controls, threats, vulnerabilities, design road-maps to harden systems and close vulnerabilities, lead transformation from detective controls to preventative controls.
Teach cyber security best practices, excellent customer service, customer care modeling, resolving customer conflicts, and security awareness
Serve as Senior Security Executive as the Chief Information Security Officer and process owner for activities related to the confidentiality, integrity, and availability of customer, partner, employee and business information. Oversee governance, risk, and compliance activities and develop, implement, and manage a comprehensive information security program.
Founder and virtual CISO (vCISO) leading organizations with a need for cyber security but without the workload or budget for a FTE. Expert Security, Risk, Compliance, Governance and security architecture, assessments, incident response and disaster recovery planning. https://www.trilionitech.com/why-choose-us
Install, maintain, and operate network monitoring and intrusion detection and prevention systems; Conduct Tier-1 analysis of intrusion detection system (IDS) alerts and alarms and traffic monitoring; Investigate unexplained, anomalous activity and make recommendations for mitigation; Issue warnings and alerts for new possible unauthorized access to networks, databases, and systems; Monitor computer incident response team (CIRT) hotlines, e-mail inboxes, portals, and databases; Investigate, analyze, remedy, and report on security events and incidents; Report incident information to the U.S. CERT and MS-ISAC; Collaborate with other local, national, and international CIRTs as needed to maintain security
Manage security platforms and staff within a $40M annual budget. Perform business and security assessments, manage technical leadership of engineers and analysts, perform job position classification assessments, create security organization structure and responsibility charts, review and update data sharing agreements, perform security analysis on vendor platforms, perform detailed risk assessments and develop mitigation strategies, identify staffing gaps and interview and hire qualified candidates, provide technical briefings and assessments to senior leadership.
Enhance security team accomplishments and competence, provide technical and procedural mentoring, perform security assessments for business strategies and requirements, researching information security trends, design architecture/platform changes, identify integration issues, create cost estimates. Implement security systems including intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical mentoring. Ensure compliance to standards, policies, and procedures, develop and conduct incident response training programs, table tops, and exercises. Collaborate with industry partners, SLTT members, vendors, and key stakeholders to reduce threat exposure, increase overall security, and reduce costs by leveraging economies of scale and consolidated purchasing power; Align security tools with the 16 critical security controls for maximum benefit with the most cost effective purchasing strategy.