Functional Skills
Change Management / Org Design
M&A Support
Compliance and risk
IT Transformation
Cybersecurity
Business Analytics
Software Skills
Microsoft Visio
Microsoft Access
Microsoft Excel
Microsoft Office
Microsoft PowerPoint
Microsoft Project
Microsoft Word
Certifications
CRISCCertified in Risk and Information Systems Control
CISACertified Information Systems Auditor
CISSPCertified Information Systems Security Professional
Sector Experience
Energy
Financial Services
Healthcare
Life Sciences & Pharma
Manufacturing
Languages
English
Fortune 500
Experience
City National Bank
Management Consulting
First Line of Defense Lead
11/2022 - 6/2023
Lead on a risk assisting in the development of controls, testing and documentation for first line of defense IT controls mitigating identified risk.
The Heico Companies
Information Technology
Interim CISO
2/2022 - 10/2022
Take charge of the CISO role for 3B USD company.
Initial Risk Assessment and Risk Management model.
Vulnerability Management & Remediation
Endpoint Management
IR Planning and Response
Tactical security set up
Develop Security Program and Roadmap to implement it
Initial Risk Assessment and Risk Management model.
Vulnerability Management & Remediation
Endpoint Management
IR Planning and Response
Tactical security set up
Develop Security Program and Roadmap to implement it
USAA
Finance
Risk Management Team Lead
5/2020 - 12/2021
Leading IAM/PAM team for overall OCC consent order compliance. Managing 5-15 resources, contractors, and USAA employees.
Work as a subject matter expert to resolve issues related to documentation of policy, procedures, controls and actual activities and audit evidence.
Work as a subject matter expert to resolve issues related to documentation of policy, procedures, controls and actual activities and audit evidence.
Stanford Children's Hospital LPCHS
Information Technology
Interim CISO
3/2019 - 2/2020
Responsible for a department of 9 personnel upon hire. Reporting to the CTO & CIO. Other responsibilities:
Hire 4 new key security resources
Review current Security Program and build a dashboard to report out on progress and issues to upper management
Address and manage Information Security Operations (Vulnerability Management, SOC/SIEM, Firewalls)
Hire 4 new key security resources
Review current Security Program and build a dashboard to report out on progress and issues to upper management
Address and manage Information Security Operations (Vulnerability Management, SOC/SIEM, Firewalls)
Archer Daniels Midland
Information Technology
Information Security Consultant
9/2018 - 2/2019
Information Security Consultant brought in to define the Governance Policy Management Framework, information security standards and the controls compliance framework for compliance.
Worldpay
Management Consulting
Information Security Consultant
3/2018 - 9/2018
Engaged to assist on the post merger effort to pull the two entities (Vantiv/Worldpay) into one cohesive entity with single change management and information security processes and controls.
Western & Southern Financial
Management Consulting
Information Security Consultant
11/2017 - 3/2018
Engaged to define a information risk management process for both strategic IT Risk and operational IT Risk and policy exception management
Procter & Gamble
Management Consulting
Information Security Consultant
9/2015 - 6/2017
Assist the new CISO with definition of third party risk management with the largest vendors, analyze current compliance, create and implement a remediation plan. Assess information security for the 30 most critical applications globally.