• Ensuring Cybersecurity Risk across the enterprise is managed utilizing COSO and NIST 800-37 frameworks• Cross functionally managing and guiding teams in risk related efforts such as process changes, data protection, infrastructure, and system security controls• Responsibly in charge of defining all security controls and maintaining GRC Platform in accordance with Industry and Regulatory Requirements such as PCI, StateRAMP, SOC 1 and 2• Tracking and Monitoring of Risk Register while effectively communicating across the organization remediation efforts and timelines• Actively managing the vendor management process which includes review of contracts, agreements, addendums as well as determining risk levels and management of the vendor throughout the lifecycle of the engagement• Leading a team on strategic internal audit programs while providing guidance on a day-to-day basis• Creating and implementing risk management programs engaging with executive level team coordinating communications and policies

• Accountable for the successful passing completion of the audit program performed throughout the year with external audit firms• Reporting effectively across leadership vulnerabilities and remediation efforts as well as projected timelines and status• Guaranteeing quality control of changes through management of the Change Advisory Board (CAB) • Serving as subject matter expert for Cloud Security Product Portfolio to safeguard cloud offerings• Coordinating active threat workshops and tabletop exercises including disaster recovery and incident response• Developing and reviewing policies, standards, and documents to support the cybersecurity program. Additionally, creating policies and documentation around incident response plans and recovery.• Supporting other members by actively providing training and awareness

• Adhering to NIST 800-53, PCI, SOX, SSAE18, CJIS, HIPAA standards and compliance• Own all aspects of AWS and Azure cloud security including vendor integration, platform integration and monitoring for cloud platforms • InsightVM (Rapid7) to scan networks and assess vulnerabilities. F5 for WAF management and fine tuning• Implementing secure practices in AWS, Windows Azure, and private datacenters• Reviewing vulnerability management program and remediating vulnerabilities as necessary• Proactive event review of SIEM, syslog and other logging systems, as part of threat hunting initiative.• Reviewing and analyze logs on a daily, quarterly, and yearly basis for applications, firewalls, and operating systems.

Utilizing VMWare and vSphere to provide customers a data centers with hosted environment for our applications. Deploying and Managing Citrix StoreFront and XenDesktop to provide customers applications through VPN connections from site-to-site. Managing Windows and HP-UX(Unix) environments by providing proper networking, SAN configurations, disk configurations, backup recovery models and update policies.• Ensuring that we're adhering to PCI, SOC, HIPAA compliance and NIST 800-53 Standards• Experience in implementing operational automation using PowerShell and Bash.• Utilizing Domain Trusts and proper Active Directory permissions• Troubleshooting network errors to identify issues with ports or connectivity • Deploying applications through Citrix Delivery Controllers to provide appropriate groups with specific applications

Responsible for developing high availability environment through localized virtualization and Microsoft Azure services as well as developing and maintaining web applications for internal and external use. • Manage XenServer servers working in conjunction with NAS Device to provide virtualized environment for Windows & Linux domain infrastructure• Installed & Maintain Nagios Network Monitoring to monitor all critical network services• Active use of Microsoft Azure for the purpose of hosting websites and deploying offsite disaster recovery of core servers • Utilized Redmine for trouble ticketing and resolution• Upgraded Exchange 2010 to Exchange 2016, Forest/Domain Functional Levels to 2012 and actively maintained active directory • Implemented pfSense utilizing OpenVPN and other firewall services along with creating appropriate NAT and firewall rules• Maintained websites utilizing PHP, JSP, jQuery, Bootstrap as well as supporting data querying languages for SQL & MySQL

Manage servers with roles and applications including IIS, Domain Controller, Active Directory, File share, Terminal/Remote Desktop Services, Exchange 2007 and above, SQL 2003 and above and other industry specific applications. In addition to being responsible for a team, I am also in charge of bidding, designing, scheduling, and purchasing of new hardware equipment and software. Planned and implemented redundant system and maintained software updates, overseeing of licenses and implementing environments over office workstations as well as remote operators.

Responsible for managing all workstations and providing onsite and immediate support to staff within the company. Rebuilt existing webpage onto new platform, migrated domains and unified hosting for websites. Created scripting based upon industry specific technology (Intelligent Series) which provided help desk with call flow and standard procedures.• Implementation of station specific procedures such as IP configuration, VPN Connection configuration and management, setup and deployment of applications and POTs line testing. Troubleshooting using network commands• Create new users maintaining privilege levels on Active Directory• Installation and deployment of virtualization clients. Ensure integrity of scheduled backups as well as responsible for regular backups configured.• Configure redundant backups using SAN and NAS• Implement metric based reporting to monitor System Support and Management through proactive means