Chris Nowell Email & Phone Number

Calgary, Canada Area

• Provided business-focused IT Security leadership to find, fix, and prevent security and compliance vulnerabilities
• Certified by the Court of Queen's Bench as an expert witness in the general area of cyber security specifically the general vulnerability of electronic devices
• Oversaw compliance and security audits
• Led the development and execution of automated information security assessment tools, infrastructure strategies, network, services, and disaster recovery processes
• Completed ISO 27001, PCI, and risk assessment reviews
• Managed information security requirements in AWS, Microsoft 365, Azure, GCP, Google Workspace, Jira, and Bitbucket with global development teams

San Francisco Bay Area

• Oversaw and directly involved with disaster recovery, BIA, risk assessment, PCI compliance assessment, and corporate security initiatives in an environment with over 175 primarily cloud-based systems and over 2,000.
• Designed and implemented systems, procedures, policies, and processes to guarantee uninterrupted studio operations.
• Reduced PCI DSS compliance burden and scope while increasing security by segmenting systems and directed the implementation of IT Security and operational controls
• Developed and managed information security program covering sensitive client and corporate data, software development practices, application infrastructure, vendor management, Personally Identifiable Information (PII).
• Collaborated with other departments and companies to deliver effective information service and security
• Negotiated improved vendor security controls with existing vendors and developed contract templates for future vendors

San Francisco Bay Area

• Accountable for overall IT and Information Security, critical infrastructure compliance, governance, strategy, staffing, and budget
• Developed IT staff and collaborated with other departments to design and implement Windows-based infrastructure, including Active Directory, Exchange, SharePoint, SAN, WAN, LAN, web sites, network-based backups.
• Managed information security incidents and reported state of security to executive leadership
• Evaluated and selected hardware and software for purchase
• Managed Intranet and Internet web development, SAP security and customization, firewall implementation, Windows 8.1 workstation deployment, Windows 2012 server upgrade, SEIM deployment, and IT security projects
• Developed strong understanding of NERC and CIP requirements

Global

• Earned top project award for designing the global security risk assessment program, which tripled risk visibility and eliminated over half of the related operational disruption for over 450 entities
• Collaboratively negotiated strategic process improvements with vendors and key stakeholders to prevent repeat audit findings that accounted for over 52% of security-related control weaknesses
• Interfaced and aligned processes among Internal Audit, Information Security, executives, vendors, and IT managers to influence information security direction and processes
• Developed reliable global annual and quarterly statistical reports, IS audit schedules, budgets, and project plans
• Managed, advised, and led high-risk audits on every continent except Antarctica

United States, Canada, Mexico, Brazil

• Supervised, trained, interviewed, and reviewed technical information security audit team members
• Led projects in the USA, Canada, Mexico, and Brazil with top exceptional performance annual appraisal
• Initiated and led a process improvement and vulnerability analysis initiative, which automated 86% of server testing time and earned the corporation’s top performance award
• Served as subject matter expert for Linux, Windows, Active Directory, SQL, ASP, and VB.net
• Customized audits for SOX compliance, military, manufacturing, corporate, and shared services

Edmonton, Canada Area

• Supervised and trained staff on IT audits in the energy, finance, health, and insurance sectors
• Presented written and oral recommendations to analysts, managers, and executives
• Developed IT governance framework in alignment with COBIT, HIPAA, C-SOX (Bill 198), SOX, and NIST
• Gained extensive experience in anti-malware defenses, physical and logical security of applications, operating systems, databases and networks

• Managed web and.net development projects and support teams
• Developed and managed project budgets, requirements, deliverables, and relationships
• Performed security, risk, data, business, requirements, cost, and time analysis

• Supervised computer lab proctor teams and prioritized conflicting business priorities
• Demonstrated ability to handle concurrent and time sensitive projects
• Resolved conflict and provided customer support in top-level help desk role
• Developed web and desktop applications

• Performed risk assessments, designed security policies, and provided security education
• Maintained and improved network and server security
• Implemented application virtualization through low-cost thin clients
• Installed Windows Server and Lantastic-based networks

• Worked with Information Security to audit security compliance, during a virus outbreak, and Y2K
• Analyzed and reported business impact of IT failures and served on the Change Advisory Board
• Assessed, designed, developed, and implemented security and network-monitoring applications

• Installed, customized, and troubleshooted Windows 95 workstations
• Repaired and maintained audio, video, and computer equipment
• Demonstrated problem solving skills

Mba, Business Administration, Management, And Operations

Bs, Computer Science