It Infrastructure Resume
IT Infrastructure / Operations Manager
A highly accomplished IT professional with 15+ years of experience, providing protection of information assets through risk management, incident management, incident analysis, audit and compliance services. Strong healthcare experience as well as risk management across infrastructure and application management. Industry acknowledged leader in:
- Information Risk Management
- Security Audit & Assessment
- Enterprise Solution Architecture
- ITIL Service Delivery / Mgmt
- Control Framework Design
- IT Governance Development
- PCI Program Compliance
- Web Application Security
- SOX IT Controls Compliance
- Outsourcing
- CERT Management
- Metrics and Service Reporting
Confidential
- Increased Payment Card Industry (PCI) compliance from 34% to 98% as measured by the PCI Priority Approach quarterly report, projects included: Database credit card encryption, web application firewall implementation, vulnerability management, and log management capabilities.
- Established CERT teams and Threat Management teams to address botnets and web application security incidents.
- Assisted in the IT audit remediation and control applications strategy that resulting in an over improvement of 50% reduction in audit findings each year after engagement.
Confidential
- Streamlined governance and compliance through delivery center standards consolidation and directed internal and client delivery security and privacy controls for SAS70, Sarbanes Oxley, PCI, HIPAA, EU and other international regulations.
Confidential
- Directed the security implementation and quality assurance and testing teams for the implementation of a wireless Point of Sale solution for Zales, Gordon’s, Bailey Banks, and Biddle stores.
- Led security and privacy controls for SAS70, Sarbanes Oxley, PCI, HIPAA, and California regulations.
Confidential
- Organized and implemented the information security program for Baylor and was recognized as an industry leader in healthcare security after first year in office.
- Individually developed a security model based on industry standards which became the modeled security architecture for VHA member hospitals and positioned Baylor for an appointment to the US Government’s Homeland Security Health Care Coordinating Council as one of 4 hospital systems appointed.
Confidential, Enterprise IT Risk Management 2010-Present
Confidential, Sr. Manager, Governance - Americas Outsourcing 2006-2010
Confidential, Director, IT Security and Quality Assurance 2005-2006
Confidential,, Security Information Officer, IT Security Director 2000-2005
Confidential, Senior Consultant, Information Risk Management/Audit 1999-2000
Confidential, Senior Network/Systems Engineer 1998-1999
Confidential, IT Operations Manager 1996-1998
Confidential, Network Technician 1995-1996
EDUCATION
BA Speech Communication
CERTIFICATIONS
- Certified Information System Security Professional (CISSP), 2001 and Current
- ITIL Version 3 Foundations Certified, 2008 and Current
- Certified Computer Forensics Specialist (CCFS), 2002 and Current
- Certified Computer Forensic Technician (CCFT), 2002 and Current
- Microsoft Certified Systems Engineer (MCSE), 1999, retired
- Certified Novell Administrator (CNA), 1999, retired
- Cisco Certified Network Administrator (CCNA), 1999, retired
TRAINING
- Information Security Assessment Methodology – National Security Agency
- ITIL Version 3 Foundations – Quint Group
- Computer Forensics and Electronic Discovery – Business Intelligence Associates
- Advanced Computer Forensic Techniques – Business Intelligence Associates
- Auditing Business Applications – MIS Training Institute
- Building a Global Enterprise Security Architecture – MIS Training Institute
- Building an Information Security Program – MIS Training Institute
- Business Management Process Methodology – KPMG
- Enterprise Security Architecture and Information Security Architecture Methodology – KPMG
- Intrusion Detection and Attack and Penetration Tools Training – KPMG
- ISO9000: Overview and Auditor – The Rhyn Group