I consider myself semi-retired as I would like to enjoy a whole lot more time away from a desk. I traveled substantially over my career, and I wouldn't mind picking up some short-term consulting jobs from time to time, participating on quarterly advisory boards, etc. I have worked for service providers who's clients are primarily in the defense contractor (Defense Industrial Base / DIB), foreign governments, and finance industries so I am familiar with the most oppressive of regulatory controls.

• Cybersecurity Strategy, Chief Architect, and Author of the System Security Plan (SSP).• Controls liaison for cyber insurance underwriters, Audit, Legal, and HR.• Mentoring Regional Security and Privacy Officers (RSPOs) and handling customer escalations. • Renewal of cyber insurance policy (in partnership with Finance).• Policy updates, and management of policy exception requests.• Board and C-level status reporting for (reputational) Scorecards (BitSight, BlueVoyant, etc.)• Technical owner / operator for Network Access Control (NAC), Internet of Things (IoT) firmware management, in support of real-time asset inventory population into ServiceNow. • Consolidated global vulnerability management programs delivering consolidated dashboards and improved audit reporting.• Assist sales and delivery teams with customer conversations when necessary.

CISO for a $3.0B global IT services, security, software and technology company.• Leading an Information Security team with above average CMMI score. Team consists of Identity and Access Management, Security Operations, Compliance & Remediation, and Risk Management.• Work with the Department of Defense, NSA, FBI, ASIS, and other entities on threat intelligence. • Interact with the Chief Privacy Officer to coordinate due diligence review, breach determination & required notifications. Praised for assisting many customers through similar incident management events. • Develop & enhance an information security management framework using appropriate elements from: ISO 2700X, ITIL, NIST, GDPR, and others. Ensure policies and procedures align with these controls.• Lead the NIST 800-171 compliance program. Wrote the System Security Plans and facilitated POAM remediations. Achieved NIST STIG compliance rating of 99%. Defense Security Service (DSS) “superior” rating. Participate in DIBnet and Infragard. • Improved endpoint compliance using policy-based Network Access Controls which will reduce incident and audit costs. • Implemented a Federated Identity solution with device fingerprinting and Multi-factor authentication (MFA).• Deployed digital signatures (S/MIME), MailTips, and Quick Steps, greatly reducing phishing incidents.• Work with auditors (SOX, ISO, PCI, WebTrust, and other programs), cyber insurance carrier, lending institutions, and customers to address cybersecurity questions.• Moved endpoint management services (SCCM, SEPM, Cybereason, and the forensics lab) to a cloud-based model, enabling near real-time viability of endpoints and the ability to isolate an endpoint to the forensics lab if an event requires investigation. • Expanded coverage and reduced cyber insurance policy premiums.• Preparing to roll out / pilot testing AppLocker whitelisting to prevent "day zero" malware.

Architecture and deployment of Microsoft Cloud OS Network (COSN) on Cisco UCS platform for go-to-market offering around Unified Social Business (SharePoint and Skype for Business). Additionally responsible for Skype for Business environment and Video Conferencing solutions.• Built Microsoft Cloud OS Network (COSN) on a Cisco UCS platform as a revenue generating customer service offering known as "Ensemble". Signed up Unisys as a SMART LRS reseller to compliment the offering.• Migrated locations from legacy PBX to Microsoft Unified Communications (Lync/Skype), greatly reducing telecom costs and improving user productivity.• Selected, integrated, and deployed Video Teleconference Room (VTC) equipment. In regions where the SMART LRS or Microsoft Surface Hub were not available, I designed, tested, and deployed equivalent solutions using commodity parts at a fraction of the price.

Responsible for defining IT strategies and showcasing Unisys' Intellectual Capital. Develop innovative solutions for enhancing competitiveness, increasing revenues, and improving customer service offerings.• Provided technical direction for turning purpose-built government encryption “Stealth” product into an enterprise product. Identified use cases, deployed product, and specified further product roadmaps. Sales consulting. • Architected redundant data center design, minimizing disaster recovery objective from 4 days to 2 hours.• Implemented Stealth, a Unisys' proprietary security solution for server isolation via encryption domains, protecting our core business servers (a.k.a. "micro-segmentation").• Selected a Federated Identity platform enabling single-sign on with simple and effective multi-factor authentication for use with other cloud service providers• Architected and deployed IaaS cloud model, enabling rapid provisioning through orchestration and automation which eliminated many lengthy manual processes and enforced IT Security standards via template deployments.

Responsible for global network architecture (supporting internal operations, customer services, and call center operations). Departments included: Converged Networking, IT Security, Systems & Storage, End User Systems, and Engineering Lab. Worked with numerous contractors, vendors, and customers globally.• Responsible for internal operations consisting of: 3k internal network infrastructure assets, 13M+ IPv4 addresses, 8 ASNs, dual-MPLS carriers, 223 facilities, 17 call centers, and 12 data centers. • Contributed to 3 year $1B debt reduction objective by: 1) Right-sized telecom, saving $36M in the first 18 months, 2) Maximized infrastructure lifecycle within service level objectives, 3) Large outsourcing effort, with no operational impact, 4) Audited business requirements against opex, ensuring dissolution where business value no longer existed, 5) Eliminated loosing vendor reimbursement process, 6) Migrated to Microsoft Unified Communications eliminating costly PBX and trunk services. • Deployed secure solution to enable government clients (GFE hardened systems) and BYOD users alike to remotely access services using single sign-on multifactor identity management approach. • Process changes: ITSM, change control, Architecture Review Board, and eliminated many exception processes.• Re-architected event monitoring (Tools & Automation) and security products resulting in $3M opex reduction. Increased profit margins on customer service offering using the same approach. • Security Operations: CERT, Defenses in Depth (SEP, IDS, SIEM, DDoS appliances, 300 AD GPO), IAM (FIM, PKI, SAML, SecureAuth, Safenet, TACACS, Webtrust audits), FISMA remediation. Updated Acceptable Use policy. Security Awareness Course content updates and compliance tracking. SOX signatory. Interfaced with FBI, ASIS and others as necessary.

Oversee operations for a Supply Chain, Distribution, and Logistics Software as a Service Provider (SaaS).• Increased uptime from 85% (customer observed) by rebuilding from the ground up. Implemented monitoring tools, and achieved over 99.99% uptime.• Developed change management, standard operating procedures, and on-call processes.• Designed and implemented geographically diverse disaster recovery plan supporting 4 hours failover objective.• Architected expansion projects in China, UK and high-side DIACAP hosting for the Department of Defense.

Managed three departments: System Administrators (UNIX and Intel), Data & Voice Infrastructure, and IT Security. Implementation and management of IT products and services for this 24x7x365 operation consisting of an 80% virtual workforce, multiple call centers, and a large integrated customer base. • Rebuilt the LAN/WAN, BGP4, server and storage infrastructure in support of 99.999% up-time objective for internal operations, customer interfaces, and support portals, and hosted environments (ITIL Service Delivery). • Shortened maintenance window by 4 hours and reduced offsite tape storage costs by 50% through tech-turn.• Implemented security controls totally eliminating virus propagation within the network. • Owned “ITIL Service Support” (configuration, incident, problem, change, and release management) toolset. Integrated Incident, and change management. Positive trending occurred even as the number of services increased (GEITS acquisition) and support staff decreased. Trouble tickets were reduced by over 50%.• Managed Mitel, Nortel, Octel/Avaya, and Aspect Call Center ACD environments. Implemented call accounting, VoIP, facilitated audit, and performed contract negotiations for an annual opex reduction of $8M.• Virtualized servers and consolidated SAN and NAS, reducing data center footprint by two-thirds and reducing opex by $1M. Leveraged excess capacity to start data center outsourcing offering. Instantly generated $2M+. Had to immediately upgrade public power feeds, UPS, and PDU to accommodate customer demand. • $5M in annual opex reductions through contract renegotiation, telecom audits, and process changes.

Responsible for aligning strategic and technical direction for Rare Medium Inc, its venture capital and incubator companies, its customer web hosting facility, and Rare Medium Group (parent company). Responsible for service delivery and daily operations of hosting environments. Establish operating procedures. • Redesigned infrastructure to support hosting environment. Resulted in 4x more capacity, 5x more speed (for supporting real-time media services), with a 100% availability objective, all at 1/3 the previous cost.• Implemented interactive streaming media web servers and collaboration tools, reducing conference calling expenses by 50% and video conferencing expenses by 95%.• Implemented network and application monitoring tools in support of 24x7x365 customer support. • Implemented security and access controls for corporate users and hosted customers which included financial institutions, hotel reservation systems, eCommerce retail sites, and B2B exchanges.

Responsible for the technology development for this start-up application service provider. Defined and streamlined processes, while identifying business partners familiar with the regulations of the education industry.● Directed a staff of developers for specialized online eCommerce project.● Implemented proactive tools to monitor eCommerce site availability. (SiteScope and MTS)● Redesigned infrastructure to support fault-tolerant application service provider environment.● Controlled all functions of IT, accounting, and purchasing; consisting of 18 staff members.● Streamlined distribution process through distributor ghost loads and direct shipments to student’s homes.● Negotiated vendor contracts for products and services.● Implemented interactive distance education and streaming media web servers.

Directed all aspects of data and voice communications. Managed vendor contracts and outsource services (mainframe, web hosting, and contract staffing). Managed internal staff of 11, plus project-based contractors. Controlled all processes for network services and data center operations. Consolidated new business acquisitions into existing infrastructure. Primary technical liaison for business partners, vendors, and subsidiaries.• Managed complex multi-platform data center environment consisting of UNIX, Windows NT, Novell, AS/400, and MVS/VSE systems.• Implemented SNMP and RMON proactive monitoring tools resulting in problem avoidance. • Implemented a set of network management tools to support Help Desk functions and automate software distribution. Reduced desk-side support and minimized software roll-out efforts.• Established a change control process for SAP implementation and ongoing IT functions. • Redesigned entire data infrastructure (token ring to Ethernet conversion, upsizing mainframe MIPS allocation, re-architected mainframe gateway, and the dual homing and resizing frame relay private virtual circuits, IPX and SNA to IP, and SDLC to Frame Relay) to support legacy mainframe and AS/400 systems during migration to SAP. Eliminated chronic downtime, and reduced overall costs. • Led SAP infrastructure team to deploy $33 million ERP project. Responsible for selecting and building a centralized three tiered environment and calculating WAN bandwidth requirements for deployment to all remote locations. Set the groundwork for the fastest successful SAP implementation to date. • Upon acquisition by Pennzoil, successfully transitioned business services and infrastructure to the new Pennzoil–Quaker State headquarters In Houston, TX. Planned Quaker State data center relocation, and IT support structure shutdown. Completed 3 months ahead of schedule.

Managed a staff of senior network specialists, customer service engineers, and LAN administrators. Responsible for designing, implementing, and managing all aspects of business systems connectivity and security. • Implemented proactive network and application monitoring tools. Provided problem resolution as well as baseline and trend analysis reports. Responsible for monitoring the supporting infrastructure and global core services.• Updated and monitored the firm's DNS, SMTP, Web Server postings, routers, and Firewall systems.• Provided internet, intranet, and extranet access as specified by security requirements, including firewall management and router-based packet filtering.• Interacted with domestic and international communications carriers to design WAN links and additional value added services.

Selected out of over one-hundred internal candidates for this unique position. Managed an internal staff of 36 performing installation and support of technical projects worldwide. Extensive proposal, presentation, and project management experience. Extensive international travel.• Migrated network from AppleShare to Novell allowing internal consultants using Macintosh systems to freely share documents with other consultants and clients. • Installed mainframe gateway to outsourced provider over WAN, replacing costly X.25 dial pad.• Led implementation for the migration of largest 3com network environment to third largest AppleShare / Macintosh network.• Designed, implemented, and automated the backup of portable systems upon network connection.• Designed Middle Eastern WAN communications through leased U.S. military IBS Earth Station (satellite) channels, and KuwaitNet (a local ISP).• Numerous project management roles, including back-end systems development, product roll-outs, and technical infrastructure implementations. • Set global standards for numerous systems, applications, and processes, including: WAN, LAN, PBX, mainframe gateway, remote access, security, voicemail, video teleconferencing, power failure, and data backup.

Based out of Singapore, responsible for technical operations in Australia, Asia, and Japan. Initiatives were to develop regional practice standards including desktop systems, telephone, LAN/WAN, and video conferencing systems. Extensive international travel.• Designed and implemented international WAN infrastructure to support the firm's core services.• Enhanced technology to meet company standards while successfully relocating the Hong Kong office. Worked with architects to plan a data center environment that met all required building codes, systems and support vendors for physical shut down and move, and local utility companies for electrical, phone, and international frame relay services.• Implemented ISDN connectivity between Sydney and Melbourne telephone systems, allowing the two offices to share a voicemail system, and reduce long distance toll charges by routing calls over a private line.• Planned, budgeted, and implemented standard telephone, and voicemail systems for all offices, reducing complexity for consultants as they traveled from office to office (hotel concept).• Implemented internationally integrated badge reader access system, allowing traveling consultants 24-hour access to any regional office.• Introduced video conferencing rooms to regional offices, greatly reducing the cost of international travel demands for regional consultant meetings.

Manage all aspects of microcomputer, telecommunications, and video conferencing systems for the local office. Hired for my knowledge of Windows, Macintosh, Novell, and Wide Area Networking (which was just starting to emerge outside of the financial industry). Booz Allen & Hamilton wanted me to connect them to their customers. Extensive international travel. • Plan and implement system strategy for the Dallas office to allow for full integration into firm-wide corporate systems and telecommunications objectives.• Troubleshoot and support all computer and networking functions and provide technical support to all users.• Administer four AppleShare file servers and one Microsoft Mail Server.• Installed and administer an AT&T PBX, Octel Voice Processing, and CLI Video Conferencing System• Served as project manager responsible for converting the Florham Park (finance office) from a 3-Com network to and AppleShare network with Macintosh to mainframe gateway integration. • Provide installations, upgrades and user support for a variety of software packages and hardware.Implement telecommunications orders, troubleshoot technical issues, and perform moves, adds, and changes.• Experienced PBX fraud and effectively halted illegitimate calls from the AT&T Generic 1.• Traveled extensively (50%) to other global offices, resolving technical issues.• Led the Dallas office into a higher level of technologies by making it the first to have a 10BaseT network, upgraded all Macintosh systems to System 7, and deployed a Novell file server for Macintosh / Windows file sharing. This became the model for the new corporate standard. I traveled to over 40 countries implementing the model.

Pre-sales consultation, service, support, and post-sale installation of computer and networking equipment at customer sites in the Texas area. Main responsibilities include Macintosh and Windows connectivity as well as cross platform integration via Novell servers.

Managed sales, service, and administrative operations for the Dallas branch office. Worked with customers to fill short-term rental requirements for seminars and projects. Direct contact for major corporate sales. Processed rental, lease, and corporate credit applications. Provided third level technical support as necessary.

Did language conversions for Automatic Teller Machines. Wrote an inventory control system, and used my telecom wide are networking knowledge to help the owner build a touch-tone bill payment system that is still in use today by many public utility companies.

Installed and maintained Automatic Teller Machines. Learned wide area networking skills two to three years before it reached other industries.

Computer assembly, customer support, and on-site installation services.