Invitae acquired by Labcorp in 8/2024

Appointed as Head of Cyber Security Operations and IT Operations, directly reporting to CISO and overseeing both IT and Cyber Security Operations teams and programs. Orchestrate 24x7 security coverage through in-house engineers and MSSP resources, enhancing organization's security posture and incident response capabilities.Direct vulnerability assessment and asset management lifecycle, driving robust incident response framework aimed at reducing threat containment times and increasing program maturity. Craft dynamic incident response playbooks tailored to current threat landscapes and attack methodologies, serving as frontline incident response leader and guiding forensic investigations to ensure swift resolution.Define and execute long-term security strategies aligned with business objectives, including setting goals for risk management, data protection, and compliance.Develop and maintain key security metrics and operational dashboards, providing transparent visibility into effectiveness of security initiatives, control measures, and overall impact of security team's efforts.Oversee the selection, implementation, and management of security technologies such as SIEM, endpoint management, external footprint monitoring, and EDR/MDR.Continually assess and improve the effectiveness of security processes and technologies through regular reviews, audits, and updatesEnsure compliance with Information Security Policies and regulatory standards (HITRUST, HIPAA, PCI, SOX) across applications, networks, systems, and cloud services, through meticulous planning, design, development, implementation, and continuous monitoring, reinforcing organization's commitment to robust cyber security governance and operational excellence.

Leading and managing all security operations for the organization, including in house security engineers and MSSP resources providing 24x7 SOC as a ServiceServing as Incident Commander. Also responsible for managing the Incident Response lifecycle and developing improvements to increase program maturity and reduce overall time for threat containment.Establishing a threat intelligence strategy and incorporating it into the existing security operations solution stackWorking closely with the CISO to develop and implement strategies for corporate-wide security initiatives to reduce operational riskImplement attack simulation solutions to identify endpoint, server and networking topology issues identified in the MITRE Attack Framework Driving and managing the vulnerability assessment and asset management lifecycleEnsuring applications, networks, systems and cloud services are planned, designed, developed, implemented, and monitored in accordance with the associated HITRUST, HIPAA, PCI and SOX security controls

Led strategic direction and operational oversight of Security Engineering and Vulnerability Management program, guiding team of cyber security engineers and architects to identify and mitigate high-risk security vulnerabilities.Directed evaluation of potential security breaches, coordinating responses and corrective actions, alongside building successful Vulnerability Management program that drove significant security improvements and showcased team's talent within organization.Fostered collaboration with cross-functional leaders to support enhancements in processes, workflows & tooling, driving prioritization and remediation of security risks and vulnerabilities to ensure comprehensive understanding and mitigation across business landscape.

Oversaw security operations team and program, including vulnerability management, endpoint security, and threat management; conducted thorough assessments and facilitated remediation of vulnerabilities, reporting findings and implementing corrective actions.Acted as Incident Commander, leading Incident Response lifecycle with focus on program maturity, threat containment efficiency, and overseeing skilled team of engineers specialized in CrowdStrike, McAfee, and Rapid7 technologies.Fostered development and leadership of Fusion Center team, delivering daily threat intelligence updates, and defining key performance indicators to measure and elevate Fusion Center efficacy in managing complex client security landscapes.Collaborated with system architecture and product teams to align operational support, improve service offerings, and ensure IT security policies & procedures comply with regulatory standards, including SOX, thereby adding value to stakeholders & enhancing customer trust.

Developed and implemented Trinity Health's enterprise vulnerability management program, enhancing organizational security posture by proactively identifying and mitigating threats across all levels. Spearheaded design, recruitment, and integration of key technologies, establishing robust framework for continuous vulnerability assessment and response, aligned with evolving cyber threat landscape.Directed creation of product roadmaps for critical security technologies, ensuring strategic alignment of vulnerability management initiatives with organizational goals and broader security ecosystem.Managed team delivering vulnerability and web application assessments, while enforcing compliance and guiding resolution of complex security challenges, contributing to safeguarding of centrally managed information systems.

Masterminded and executed training programs in cyber security best practices and processes, equipping diverse range of clients with knowledge and skills necessary to enhance security posture. Conducted thorough reviews of business networks, providing expert consultation on security enhancements, including penetration testing, vulnerability management, and endpoint protection.

Supported and enhanced vulnerability management program for Cisco Systems & Cisco Cloud Services using Qualys, involving configuration, monitoring, and troubleshooting of both scheduled & ad-hoc vulnerability scans, ensuring robust security across enterprise.Pioneered development, design, and implementation of web application security assessment program, targeting both internal and externally facing web applications with Whitehat, improving web application security posture.Utilized suite of security tools (including SourceFire, Solera, Netflow, PaloAlto Logs, Wireshark, Kali Linux, and various external malware scanning tools) for detecting, analyzing, and reporting security events; communicated complex vulnerability scan results and remediation guidance to business units, while providing key metrics and statistics to leadership for enhanced security awareness.

Utilize various security tools to detect, analyze and report on customer’s security events. Tools include, but are not limited to: SourceFire, Solera, Netflow, PaloAlto Logs, Wireshark, and external malware scanning sites and tools.Provide feedback to the Threat Defense platform and processes to improve on the current and future environments and design.Create scripts and other processes to aid in automation of tasks.

Navigated through various IT positions across corporations, including First Citizens Bank, Criterion Solutions, LLC., CB Richard Ellis, Woodhull Hospital, Menorah Home & Hospital, and Newmark & Company Real Estate Inc.