Responsible for spearheading and maturing the cybersecurity posture for MDLand International's ambulatory EHR (Electronic Health Record) and RCM (Revenue Cycle Management) systems. Provides both operational security leadership and strategic oversight to ensure company assests and data remain secure.

Full responsibility for safeguarding company's assests against potential threats and ensuring adherence to regulatory standards and best practices. Managed technical defenses, monitored for security breaches, ensured operations aligned with the industry and IT regulations. Oversaw compliance protocols, served as SME on best practices for data protection and IT-related legal requirements and assessed risk of internal controls, processes and 3rd parties that the company engagess with for IT related solutions.

Aclaris Therapeutics is a clinical-stage biopharmaceutical company that develops novel drug candidates for immune-inflammatory diseases in the United States. It operates through two segments: Therapeutics and Contract Research. The Therapeutics segment is involved in identifying and developing innovative therapies to address significant unmet needs for immuno-inflammatory diseases. The Contract Research segment engages in the provision of laboratory services. In this role, I was responsible for leading, developing and overseeing the Cybersecurity and Information Technology teams by collaborating closely with leaders from across the organization to develop and execute state-of-the-art IT processes, ensuring data security/integrity and transforming strategy into goals and objectives aligned with cost-effective information technology solutions. SOX, NIST, SEC regulations, Governance and Compliance.

Director of IT security for Frontage Labs, providing pharmaceutical and contract research services. Supports the Service Assurance function in implementing the IT Security vision, model and principles across all systems, ensuring compliance with ISO 27001, HIPAA, NIST, GDPR and other appropriate industry standards to support the organizational strategy. Works with the IT department and other business units to guide the selection and deployment of security controls to meet specific security requirements and defines processes and standards to ensure that security configurations are maintained.

Responsible for the development, planning and execution of Freedom mortgage’s enterprise DRaaS and other cloud (AWS) DR systems. Define SLAs for RTO and RPO, to ensure all corporate data is recoverable in near-immediate failover with next to no data loss in the event of a wide-spread disaster event or Ransomware attack.• Partnered with Business Continuity, Audit, and IT Management to ensure that the program meets the business needs as defined in the Business Impact Analysis. • Consulted with IT teams and business teams to align processes and controls.• Led Disaster Recovery tests, acting as the project manager and subject matter expert.• Performed periodic tests to ensure program meets business objectives.

Led all corporate IT initiatives for this PE owned behavioral healthcare organization with facilities in eight states. Functioned as CISO. Managed and motivated team of 10 in support of a completely cloud-based environment consisting of two SaaS EMR applications, MS365/Teams, cyber security, voice/data networks, applications support and IT service support center. Proactively identifies areas where technology can be implemented securely to enhance customer care, improve margins and streamline processes. Financial oversight for all of IT.• Cyber Security – Functioned as CISO; Built a cyber-security defense program from the ground up implementing a layered security tools and solutions approach.• Deployed a web-based employee security awareness training program to ensure client level security practices are followed. Tested employees monthly on security awareness.• Performed remediation of CIS vulnerabilities identified in a third-party security risk assessment report. Improved CIS score from 13 to over 70 in nine months.• Implemented an MSSP for 24x7 defense monitoring and MFA for secure authentication.• Data encrypted 1500 laptop computers and installed tracking software for compliance.

Dynamically led the entire IT infrastructure, cyber security and IT services for this $3 Billion leading producer, marketer and distributor of high-quality branded food products, with 31 distributed manufacturing and office locations throughout the U.S. and Canada. Functioned as CISO. • Cybersecurity – Functioned as the CISO; collaborated with internal audit and governance to build an IT security defense program from the ground up implementing a layered security tools and solutions design. Developed a web-based employee security awareness training program to ensure client level security practices are followed. Annually perform risk assessments and remediation.• On Premise SOC – Built a Security Operations Center utilizing recruited talent, security vendor partnerships and various security tools.• IDP/IDS – Implemented intrusion detection and prevention systems for LAN/WAN/WLAN• Implemented an onsite SIEM for malicious activity monitoring with third party MSSP monitoring• M&A – Performed due diligence and executed on post-merger integration plan to successfully integrate 4 acquisitions securely: Wishbone salad dressings, Gardein Protein foods, Duncan Hines baking products and Boulder Brands (Smart balance). • Infrastructure upgrades – Directed and engineered multiple infrastructure upgrade projects to replace aging LAN/WAN and PBX voice systems with Cisco switches, routers and VoIP providing enhanced security.Enthusiastically mentored and motivated a technical team of 35 in the support of 24/7/365 data center operations, corporate security, database engineering, voice/data networks, applications support, ERP, collaboration tools and IT service support center. Proactively identified areas where technology can be implemented securely to enhance operations, improve margins and streamline processes. Had financial responsibility for infrastructure and security budgets.

Directed full-scope of IT operations for this global $400 Million technology manufacturing, marketing and distribution organization serving major industries in North and South America. Full responsibility for the planning, design, implementation and ongoing support of all IT operations and cyber security. Led and mentored a team of 25 in the support of a 24x7x365 data center operations, LAN/WAN, Lotus Notes, SAP (Oracle) operations, EMC SAN, IT service desk, Internet and web hosting, telecom, application development, cyber security and IT policies and procedures. Collaborated with sister companies in Europe and Asia to align business and technology strategies to ensure cost efficiencies were achieved and best business practices and methodologies were followed.