Digital and Tech Information SecurityLead a team of OT security experts supporting Haleon's Digital and Tech Information Security organization * Design Security solutions into OT Manufacturing sites to maintain the highest level of service availability and keep our security controls ahead of our business demands, while pushing for more standardization through automation * assesses, improves, and maintains the cybersecurity posture of Global Manufacturing Operational Technology (OT) environment including Industrial Control Systems (ICS), Factory Automation systems, and research and development environments * Define and develop the logical design and information security management strategies vital to store, move, and manage data in a new target state * Analyzes, designs, and develops roadmaps and implementation plans based upon a current vs future state * Develop and implement measures, tools, and technology to monitor compliance with company security policies and procedures, laws and regulations * Define, design, apply and support security controls to OT systems in our sites and own and define the architectural security standards for OT. * Leads the research and analysis of new security trends relating to OT security network * Optimize operational excellence and ensure best practices for security are followed * Define and monitor metrics to assess the overall value/maturity of cybersecurity investments * Hires, develops, and retains a critical team of technical security thought leaders * Creates OT strategic direction for the company, estimates all aspects of delivery and garners buy in from leadership and critical business partners. * Manages security vendors and KPIs to hold them accountable to Haleon’s security and business objectives * Provides leadership, technology guidance, collaboration, and mentoring of key stakeholders and teams; develops and motivates to create a positive culture and working environment

Office of the CISOIdentified and proposed specific security strategies, initiatives, and remedies necessary to align technology infrastructure with corporate objectives * Conducted Security product assessments to rationalize overlapping security products reducing overall expenses and improving the workforce efficiencies and focus areas * Lead in divestment contractual language reviews * Lead in vendor management for all security products * Responsible for negotiating contracts with security vendors, including but not limited to quotes, POs, initial contracts, contract amendments, and other various agreements language * Developed requirements templates for security product owners to ensure success between vendor and associated technical engineering and architectural teams * Conduct critical security product proof of concept technical analysis, reviews, and scoring * Lead technical security RFP’s for the organization * Created and maintained inventory control for security products and working developing database and automation for continuous improvement * Created tool and services rationalization strategies and planning for defining security capabilities of our security products and where we have gaps and/or overlap, allowing for efficient utilization of our overall resources * Analyzed all legacy contracts and SOWs to validate one time transitional and annual run budgets

Enterprise Security Architecture ServicesDeveloped a security controls framework defining what, when, where, and why security controls should be utilized in the enterprise per functional business use cases * Created new standardized Security Technology baseline documentation supporting the security standards at a detailed technical detail * Provide the requirements for system baselines * Developed standard architecture diagrams and end to end security controls check list for all security services, allowing for compliance validation, security posture and risk awareness * Proactively provided security consultation at the beginning of requirements development * Conducted security final reviews on all critical infrastructure and network engineering efforts * Accountable for Security Technical Reference architectures enterprise wide * Created strategies and planning for innovative TLS encryption/decryption zones with security service chains, cloud security proxy solutions, Firewall automation, and micro-segmentation

Data Security and Information ProtectionDeveloped reusable application, infrastructure and third party security assessments to evolve the company's comprehensive security framework * Ensured adoption of security industry best practices to improve overall security posture * Worked in active partnership with stakeholders to understand business requirements and develop supporting security principles and objectives * Coordinated with leaders of infrastructure and application services, Enterprise Risk Management, and Release/Change Management to ensure an integrated approach to driving security requirements beginning at the planning phases of new and ongoing technology initiatives * Created new security standards that align to strategic frameworks (NIST, ISO, PCI, etc) and support higher level security policy requirements * Developed metrics that demonstrate current risk state, indicators of progress, and business alignment

Data and Security ServicesLead highly skilled data and security network engineering teams. Support development of business drivers, business case, and high level program implementation planning * Translate customer business issues and opportunities into technical solution/business requirements * Build and communicate the value proposition of the end to end solutions * Accountable for enhancing network capabilities, assisting business units to increase revenues * Driven to add functionality to the company while reducing operating expenses in parallel * Focused on data and security network engineering operational excellence

Data and Voice ServicesManage a data network architecture team that performs architecture reviews, develops detailed engineering designs, creates deployment plans, and owns standardization of overall global technology path * Identify and propose specific strategies, initiatives, and remedies necessary to align technology infrastructure with corporate objectives * Focused on overall network reliability allowing more time for business units to seamlessly communicate with the internal and external customer base

Global Architecture ServicesCreate network and security designs for customers and provide support and guidance in delivering products and services * Identify and propose specific strategies, initiatives, and remedies necessary to align technology infrastructure with corporate objectives * Design network and network security solutions for regional customer base * Develop conceptual solution architecture using combination of standard products and third party suppliers to produce end to end customer solutions * Lead subject matter expert responsible for developing solutions and recommending services to critical Fortune 500 company accounts * Key member of strategic sales team responsible for selling into a top 5 account for Verizon Business * Proposed marketing and sales strategies to maintain revenue base and win critical new business

Design and Planning Vendor management and influence of carrier network designs and MPLS Dual Carrier Strategy * Tier 4 escalation for complex network outages *Scalable Cisco IPS design and deployment for 300+ sites * Network Admission Control (NAC) Content Distribution Network (CDN) * IP Video on Demand platform testing and feasibility study * QOS Standardization design to support Voice, Video and mission critical business applications * Intelligent Call Management (ICM) High Available transport strategy Carrier Routing System (CSRS-1 IOS XR) * Large Data Center integration * High available and redundant BGP core infrastructure Cisco content switch solutions design * Created IOS Standards for 3750, 4500, 6500, 2800, 3800, AS5850, AS5400, and 7200 platforms * Merger and Acquisition assessments and integration planning * Arbor IP netflow collector integration ATT AVPN MPLS conversion

Security Consulting ServicesHigh-Level configuration and implementations of customer equipment * Provide 3rd level and on call technical support for all major network and network security vendor equipment, Fishnet's core infrastructure, and customer networks * Lead engineer on a Successful wireless deployment at a major University campus * Design experience with Bluecoat, ISS, F5 (BIGIP), Checkpoint, PIX, MPLS, BGP, QOS, VPN Concentrators, ACS, Site-to-Site VPN's, Radius, TACACS, Websense, Ciscoworks, and proxy PAC files * Top earnings consultant 3rd Quarter 2005 through 1st Quarter 2006

Network EngineeringDesigned, project management, implemented and functionally tested 2nd carrier VPN solution for network connectivity between 100 remote offices and corporate data centers * Implement router and switch configuration changes, including BGP, OSPF, EIGRP, Frame Relay, ISDN, QOS, SNMP, TACACS, and VLAN's * Provide advanced technical support for ATT and Verizon MPLS networks, complex routing, LAN, WAN, VPN connectivity, and redundant architectures

Network DesignProvide Tier III technical/engineering support for all Layer 2-3 technologies during the design, implementation and maintenance on Qwest Solutions products and services * Security experience including VPN technology, concentrators, PIX, Checkpoint, CBAC (formerly IOS firewall feature set), standard, extended, and reflexive access lists * Mentor senior customer engineer team and resolve high profile customer escalations * Conduct in-house and on-site customer presentations and network operations center tours, including training of NMS systems and performance/design audits * Provide presentations for potential customers and sales teams

Signal DivisionResponsible for maintaining and troubleshooting telephone systems, switchboards, patch panels, FM radio communications systems, and radar communications equipment * Authority control of communication equipment, encryption coding and decoding of high priority message transmissions, and instructing secure channel communications for over 120 military personnel