Director Of Governance, Risk & Compliance, Ciso
Current
Reliant
► Combined teams and responsibilities to form the GRC team which is responsible for performing security, compliance, IT and consulting services both internally and customer-facing► Responsible for IT infrastructure (AWS, offices, servers, workstations), custom SaaS web applications, DevOps Puppet infrastructure, IAM infrastructure, etc.► Created and maintained effective documented programs to manage compliance, vulnerabilities, patching, hardening, disaster recovery, inventory, etc.► Created and maintained many IT policies for information security, change management, IT asset management, acceptable use, BYOD, vendor risk management, code access, etc.► Lead teams to perform penetration tests against infrastructure and web applications exploiting vulnerabilities and producing reports of findings► Planned and led agile sprints to ensure that yearly risk assessment goals are met, new consulting projects are performed, existing responsibilities are met while ensuring employees remain unblocked and can perform their duties by ensuring service availability and effective change management