In this Global Security Executive role, I developed and operationalized the Global Security Governance and Executive Reporting program while overseeing alignment and strategy for all critical security functions of TikTok worldwide.
• Created an executive security reporting program that encompassed all security programs throughout TikTok, enabling board-level visibility for critical incidents and emerging threats, regulatory risk and compliance guidance, and effective escalation pathways for rapid response, awareness, and decision-making
• Successfully spearheaded the comprehensive security integration of the recently acquired global e-commerce company, Tokopedia, enhancing system-wide protection and operational efficiency
• Developed and implemented the global cybersecurity governance program, enabling effective cross-functional collaboration throughout product lines, subsidiaries, and global technology and security teams
- Established and implemented information security governance

Managing a team of 41, with six direct reports, and a $45M budget across all business units, I rebuilt and modernized the Information Security, GRC, Data Privacy, IT Risk Management, and Internal Audit teams and programs from the ground up.
Drove and led technology transformations, security modernizations, and compliance strategy for a global B2B SaaS organization of 3,000 employees across 29 countries
Developed and implemented a Zero-Trust framework, transforming enterprise security posture and ensuring alignment with evolving business needs and industry best practices
Modernized IAM processes at CB, leveraging Okta and BeyondTrust to enhance access management and bolster identity security
Spearheaded the implementation of a modern enterprise IT security and risk management strategy, integrating AWS and CI/CD pipelines to enhance development and operational efficiency
Created and operationalized comprehensive cybersecurity controls and risk management frameworks

Managing a team of 22, with three direct reports, and a $4M client engagement portfolio; leading over 80 Information Security, Technology, Risk, and Compliance engagements, including penetration testing, network audits, and systems optimization for medium and enterprise organizations.
• Directed operational and program development efforts for several $B organizations in the finance, healthcare, and technology industries. Details include: ○ Led the vCISO and vCIO practice, guiding security and technology programs for clients across the Financial Services, state and local Government, Healthcare, and Technology industries ○ Evaluated, managed, and optimized information security, risk, and compliance for enterprise organizations, including Fortune 500/100, resulting in vast cost-savings through process efficiencies and automation ○ Launched new service offerings through strategic leadership, stakeholder engagement, and deep technical expertise, reaching profitability in year one

Launched and led RKL's InfoSec and GRC practice, RKL Risk, providing consulting for IT, InfoSec, regulatory compliance, operational improvement, and strategic planning; managing a team of six and reaching profitability in year one.
• Established and advanced the third-party risk management, penetration testing, and network security architecture services
• Audited security operations and systems, identifying risks and obstacles and recommending custom solutions
• Developed organizational capabilities through training, mentorship, and employee enablement Skills: Data Privacy, Information Security, Pen Testing, IR/DR/BCP Tabletop Exercises, Asset, Vulnerability, and Configuration Management, Security Operations, Technology Risk Management, NIST, HIPAA, PCI, GLBA, SOX

Managing a team of four and departmental budget of $1.5M, responsible for all IT and security requirements for 1500 employees in 30 office locations.
• Implemented and optimized all network infrastructure, systems, software, and technology organization-wide
• Performed internal risk and vulnerability assessments for a 1500-person security-sensitive organization: ○ Collaborating with colleagues, clients, and leadership with an emphasis on business objectives ○ Leading system, network, and vendor audits across all functional groups Skills: Information Security Policies, Processes, Controls, and Standards; Data Privacy and Protection; Hardware and Software Administration for Cloud, Infrastructure, and Endpoint; Firewall, Routing/Switching

Senior Network Engineer

Senior IT Technician