• Expertise in developing security strategies aligned with business objectives, considering risk tolerance and compliance requirements. • Ability to assess and prioritize security risks to the organization and develop strategies to mitigate them. • Managed the successful delivery of numerous cybersecurity projects within time and budget constraints, resulting in enhanced security protocols and systems for multiple clients. • Led cross-functional teams of engineers, developers, and cyber security experts, fostering a collaborative environment and boosting team efficiency. • Developed and maintained strong relationships with stakeholders, ensuring their needs were clearly understood and prioritized in project strategies. • Achieved excellent client satisfaction through regular communication, feedback collection, and ensuring the delivery of high-quality cyber security solutions. • Experience managing security incidents, including investigation, containment, and remediation. • Proactively identified potential project risks and formulated mitigation strategies, resulting in a high risk aversion across all projects. • Knowledge of threat actors and their tactics, techniques, and procedures (TTPs) and the ability to use this information to improve security posture. • Familiarity with incident management tools, such as SIEMs, log analysis tools, and forensic analysis tools. • Experience ensuring the privacy of sensitive data, such as personally identifiable information (PII). • Knowledge of cloud security best practices and experience implementing and managing security controls in cloud environments. • Ability to lead and mentor security teams, manage stakeholder expectations, and communicate effectively with all levels of the organization. • Developed and tracked key performance indicators to continuously monitor project progress and success rates, enabling data-driven decision-making.

• Develop and implement comprehensive cybersecurity strategies that align with business objectives and protect against emerging threats.• Conduct threat assessments to identify and evaluate the risks and vulnerabilities associated with an organization's network, systems, and applications.• Design and implement secure IT architectures and infrastructure that meet regulatory compliance requirements and protect against cyber threats.• Manage and conduct security assessments and audits to evaluate the effectiveness of existing security controls and identify areas for improvement.• Develop and implement incident response plans that enable organizations to respond quickly and effectively to cybersecurity incidents.• Conduct penetration testing to identify vulnerabilities in IT systems and infrastructure and recommend measures to mitigate them.• Ensure that organizations comply with relevant cybersecurity regulations and standards, such as HIPAA, PCI-DSS, and GDPR.• Provide security awareness training to employees and stakeholders to educate them on cybersecurity best practices and policies.• Stay up-to-date with emerging cybersecurity trends, technologies, and threats, and advise organizations on how to adapt their security strategies accordingly.• Collaborate with cross-functional teams, such as IT, legal, and compliance, to ensure that cybersecurity is integrated into all aspects of an organization's operations.

• Continuously review, evaluate, and rollout security tools and security administration tools; configure, implement, monitor, and support security software/systems that will help ensure compliance with regulatory, industry, and corporate policies and procedures (Including to but not limited to IDS/IPS (Host/Network/Wireless), secure file transfer, data loss prevention, full disk encryption, firewalls, log management/correlation, secure password storage/retrieval, application whitelisting, and vulnerability management)• Design, develop, integrate and sustain an identity and access management solution to manage individual principals, their authentication, authorization, and privileges within or across system and enterprise boundaries, increasing security and productivity while decreasing cost, downtime, and repetitive tasks• Work directly with Information Security Manager and others in the planning, development, and maintenance of corporate data security plans, policies, and procedures; helping to identify and document business unit information security requirements and ensure corporate information security plans comply with regulatory requirements• Monitor all authorities, permissions, Firewalls, event logs, and other administrators for all platforms to identify abuse/misuse of elevated privileges• Provide input for Information Security related topics as needed on corporate-wide Information Security awareness and communication campaigns• Collaborate with Information Security practitioners, Technical Support Center staff, and others as appropriate to ensure the security of the network infrastructure, servers, desktops, peripherals, and mobile computing devices• Ensure security best practices are identified and integrated into all facets of projects, including network, system designs/configuration, and implementations• Establish and maintain Information Security related disaster recovery plans, and participate in the planning and execution of scheduled exercises

• Responsible for configuring vulnerability assessment tools (primarily Rapid7 insightVM and AppSec but have experience with Nessus), performing vulnerability scans, researching and analyzing vulnerabilities, identifying relevant threats, providing corrective action recommendations, summarizing and reporting results. • Address vulnerabilities including system patching, deployment of specialized controls, code or infrastructure changes, and changes in build engineering processes.• Perform penetration tests on computer systems, networks, web-based and mobile applications.• Provide guidance for the selection of third-party security service providers/vendors.• Identify and evaluate risk, vulnerabilities, and threats to systems and applications.• Interfaces with network and server administrators, desktop support staff, IT staff, developers, and non-IT departments on security issues, requirements, and policies.• Strong relationship building and communication skills with leadership, peers, and customers.• Gather information and collaborate with IT and non-IT staff to assess and solve security issues for networks, servers, and applications.• Analyze business needs and researches security solutions.• Aid and guide junior security analysts to help complete their tasks or complete team goals with the customer in mind.• Analyzed system risk to identify and implement appropriate security countermeasures.• Audited networks and security systems to identify vulnerabilities.• Improved operations by working with team members and customers to find workable solutions.• Experience working with ServiceNow.• Maintained industry knowledge through continuing education, training and monitoring of industry publications (OWASP, CVSS, NVD, CVE).

• Identify, assess, and respond to cyber security threats and Investigate incidents that occur.• Investigate and determine the effect of observed cybersecurity incidents on a network.• Coordinate actions required to mitigate and eliminate cybersecurity threats.• Review firewall rules, document changes, and complete reports requesting needed changes for PCI audit.• Learning from Forensic analyst about current tools and techniques (Encase and FTK).• Experience with SIEM technologies such as Q-Radar.• Provided excellent service and attention to customers in face-to-face encounters and through phone conversations.• Designed, implemented and maintained security systems and controls.

• Coordinated 100's of criminal investigations per year with special emphasis on traffic crashes and fatal crash cases as a Crash Reconstructionist.• Boosted community safety by performing motor vehicle accident investigations including DUIs and fatal crashes.• Testified in court multiple times per month in support of department cases.• Informed shift officers of special areas of emphasis, including properties to watch and noted criminals understood to be in patrol areas.• Reviewed paperwork and case files submitted by subordinate officers to verify accuracy and conformance to strict policies.• Trained and mentored new police officers as a Field Training Officer on department procedures and expectations to maximize the understanding of the new police officer's daily duties.