Director Information Security
CurrentI hold the most senior Information Security position at enVista LLC, a global transportation and logistics consulting firm. I am responsible for all aspects of enVista’s enterprise Information Security program.• Ground-up Information Security program implementation including strategy and roadmap definition, staffing assessment, and budget alignment to enVista’s objectives and risk tolerances• Provided quarterly cybersecurity briefings to enVista’s executive committee• Hired and lead team of security professionals and provided security guidance to network team employees• Championed organizational compliance with internal control and customer requirements including SOC 2 Type 2 attestation, NIST CSF alignment, and a ISO27001 readiness assessment• Executed Information Security incident responses• Lead multiple Security projects as part of post-divestiture transition of services activities• Collaborated with General Counsel’s office to perform reviews of contracts for Information Security and privacy requirements and Acceptable Use Policy implementation• Managed Security vendor selection, contracting, implementation, and on-going governance• Oversaw the implementation of managed detection and response (MDR), threat intelligence monitoring, continuous attack surface monitoring, and email security solutions• Sponsored continuous vulnerability management initiative.