United States
Attorney with a specialty in cybersecurity and technology law who focuses on designing, implementing, and supporting large scale cybersecurity and privacy initiatives within the public and private sectors. Over the past several years, I have served as the lead policy advisor for the development and implementation of the cybersecurity governance structure within the Maryland Department of Information Technology’s Enterprise Initiative. I have a strong understanding of the intersection of cybersecurity and information privacy law and policy including risk management, secure implementation, and auditing of IT infrastructure and programs. I hold a Master in Security and Intelligence (Cybersecurity Policy) and a Juris Doctorate degree focused on Intellectual Property and Technology Law.
Leads a team tasked with acquiring favorable SOC 2 Type 1 and Type 2 reports for Skyline. Formulates internal standards, conducts internal audits, writes cybersecurity policy, develops project tasks, and assesses progress with multiple division managers and directors. Formulates risk management processes and conducts security assessments. Responds to external audit requests from customers. Prepares responses to Requests for Proposals (RFPs). Promotes cybersecurity awareness by creating and leading employee orientation cybersecurity training.
Policy Lead supporting the formulation of State of Maryland cybersecurity policy based on Federal Standards (NIST Special Publication 800-53R4 among others). Leads assessment and policy initiatives defining, analyzing, and implementing best practices throughout a variety of commercial, non-profit, and government environments required to comply with a number of regulatory, statutory, and private industry standards, such as: o U.S. Department of Defense (DOD) standards (NIST 800-171), o Electronic Protected Health Information (HIPAA), o European Data Protection and Privacy Standards (GDPR), o Federal Tax Information (IRS-1075), and o Payment Card Information (PCI DSS) Organize strategic approach and service offerings for InfoSec group Previous Team Lead for InfoSec engineering group, including Security Operations Center (SOC) personnel (transitioned to production resource) Coordinated troubleshooting efforts with Operations Manager and project delivery with Project Managers
Provided ongoing relationship management to several State Department of Transportation Agencies. Coordinated troubleshooting efforts with Operations Manager and project management delivery with Project Managers. Further developed ongoing relationships with DOT personnel to identify pain points and reviewed, verified, and coordinated invoicing and client payments. Assisted the COO in analyzing and editing Team Agreements, Re-seller Agreements, and Software Licensing Agreements.
Served as Project Manager for several key initiatives within the Department of Treasury: Project Manager for Mobile Device Management (MDM) – managed a team of engineers through the implementation of a device-agnostic solution to provide secure access to internal Treasury data and messaging services for 500 users. Project Manager for Virtual Desktop Infrastructure (VDI) – managed a team of engineers to develop virtual desktop environments for an additional 2,500 customers and employees. Project Manager for Interdependency and Visualization Project – oversaw the creation and operational maintenance of a report that provided critical updates to CIO and ACIOs on the interdependencies of current projects and milestones Provided business analyst support to the Project Management Office for the implementation of Clarity PPM software v13.3.