Oakland, Tennessee, United States
Strategic, proactive IT, Risk, Security & Compliance professional with 20+ years experience in Enterprise-level corporations and more. Unique ability to design and implement security in federally regulated environments using a holistic approach that combines administrative, technical and physical controls. An exemplary leader who can drive change, infuse new ideas and deliver solid business results to take enterprise system performance and productivity to the next level. Core competencies include IT architecture, business continuity planning, identity management, technical infrastructure management, FISMA, PCI, HIPAA, and compliance. Consistently successful in designing and building planned enterprise projects along with scheduling dedicated direct reports within the Information Technology space. Energetic and creative with a special talent for building teams that troubleshoot and resolve complex technical problems. Exceptional interpersonal communication, analytical and organizational skills. Specialties: Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP)
GRC (Governance, Risk, and Compliance) Manager is a key player in ensuring that Methodist Le Bonheur Healthcare adheres to regulatory standards, internal policies, and industry best practices. Overseeing the implementation and maintenance of GRC frameworks, identifying potential risks and developing strategies to mitigate them effectively. With a keen eye for detail, conducting thorough assessments of processes and controls, and recommending improvements to enhance efficiency and reduce vulnerabilities with the MLH team. Collaborating closely with various stakeholders, including executives, legal teams, and auditors, they facilitate communication and alignment to achieve organizational goals while maintaining compliance.
A seasoned leader focusing on Information Security, Audit, and Compliance. Performing Risk Management activities to drive down cyber risk while increasing the overall security posture. - Led enterprise-wide risk and IT security services, ensuring national technology availability and stability for the FRONTdoor Collective workforce and partners across the United States. - Bootstrapping recruitment and outsourcing for Information Security, Audit, and Compliance organizations. - Developed or co-developed a variety of security programs ranging from risk assessments and policy development to the development and optimization of strategic security partnerships. - Spearheading the initiative to achieve SOC2 compliance, demonstrating exceptional leadership in aligning cross-functional teams with rigorous security and privacy protocols, resulting in enhanced trust and credibility among key stakeholders. Worked across the enterprise to implement all SOC 2 trust services criteria of Security, Availability, Processing Integrity, Confidentiality, and Privacy to maintain the corporate security posture. Led the information security department in developing enterprise policies, processes, and procedures effectively in lockstep with the executive and management teams. - Achieved measurable outcomes in terms of team performance, platform alignment, and budget management, reflecting a substantial impact on the overall success of the company. - Championed Identity & Access Management Technologies: Jump Cloud, Azure, Office 365 for provisioning into Salesforce, Hubspot, and Atlassian - Championed DMARC implementation for email protection - Championed DNSSEC for DNS protection - Championed Multifactor authentication for Identity protection
- Served as the Lead of the Identity and Access Management development team. - Responsible for the oversight of a talented team of professionals both onshore and offshore whose mission is to deliver workforce identity & access management solutions and services including Saviynt Identity Governance, Agile Development, SCRUM, and Release testing oversight. - Facilitated conversion to Epic with Saviynt used as the Identity and Access Management Solution - Key projects include leading the development and implementation of an Identity Management program which includes deployment and integration of enterprise applications.
- Served as the Lead of the Identity and Access Management development team. - Responsible for the oversight of a talented team of professionals whose mission is to deliver workforce identity & access management solutions and services including Sailpoint Identity IQ, Agile Development, SCRUM, and Release testing oversight. - Current key projects include leading the development and implementation of an Identity Management program which includes deployment and integration of enterprise applications. - Key integrations are SAP, RSA VPN, GDPR Attestation, CISO Telephony, Archsight, OrderIP, Dice, Citrix, and Omega - SSL Certificate Management - DNS Management - Vulnerability Management leveraging Rapid 7
- Leveraging my IT/InfoSec education and experience in auditing Information Technology systems to reduce Cybersecurity Risk for the organization. - A trusted strategic business and IT advisor adding value to the management teams and board. - Establishing IT governance at the Enterprise - Important IT Audits - IT Governance, SIEM, Router Configuration - Important SOX Audits - SAP - Working with TeamMate conversion to AuditBoard.
Leveraging my IT/InfoSec education and experience auditing Information Technology systems to reduce Cybersecurity Risk for the organization. 3-month stint in the United Kingdom as part of the FedEx/TNT Recovery IT team. Working with Archer Audit Management toolset