• Responsible for Information Security, to include responsibilities as the HIPAA Security Officer• First dedicated information security hire and role in the company's 83 year history. • Ensure compliance with HIPAA, PCI and other applicable regulations and contractual obligations• Investigated HIPAA and security events, partnering with HR and Legal.• Lead the IT Security Group to review the security program, ongoing security initiatives, and security related policies and procedures• Perform functions required by HIPAA for the Security Officer• led the approval and implementation of HIPAA incident management capabilities• Coordinate annual security audits using external partners and develop Plan of Actions and Milestones to address findings• Identified, acquired, and drove static code analysis capabilities, to include integration of 10 internally developed application • Identified and drove Annual Secure Code Development for the development team, in addition to annual funding of SANS boot-camps and certifications for lead developers.• Led and acquired funding for de-identification courses & certifications for business intelligence and data analytics team• Led the selection of a Cyber-security/Common Security Framework and assessment partners to achieve• Designed and built the Information Security Strategic Plans.• Implemented annual 3rd party security assessments and compromise assessments• Identified and led the implementation and staffing of the data loss prevention/protection program• Implemented and built the technical vulnerability management program• Represented Information Security during numerous compliance audits, leading to positive remarks from auditors• Designed, built and implemented the vendor and 3rd party risk management program• Responsible for standard Information Security Management work: Policies, budgeting, contract review, security control audits, control identification, projects, staffing, etc.

• Lead for compliance and endpoint security tools protecting 30,000+ assets• Represented the Global Security Office in the Eating Our Own Cooking initiative, for two beta product deployments• Service manager for the deployment of a compliance technology in the Next Generation Secure Data Center • Establish and implemented an 24x7 on-call model for Security Operations and Engineering• Led a team of security engineers for endpoint and server protection technologies • Led significant service and tool performance improvements.

• Led the service operations of support tools, infrastructure, and applications for a global support organization with 6,000+ employees.• Represented Support Services’ data privacy and risk management activities as part of safe harbor• Led the business continuity management program across 26 global enterprise support sites• Led the reduction of the number and duration of technology events affecting support and customer experience by 35% and while reducing the average duration by 84% over a 2 year period• Established and managed a 24/7 on-call Incident Manager Team• Managed the continuity of support services and customer experience, during business impacting events • Performed technology assessments of knowledge management and federated search capabilities• Responsible for business technology administration and release management process.• Designed and developed a Service Catalog, to better align technology systems to service delivery and SLAs• Developed and led the creation of a governance and tracking system to improve incident, event, problem, business continuity, and service management for Technology Management• Designed, developed, and managed the “Impact Dashboard.” Applied measurable KPIs to technology events in business terms, to prioritize corrective action plans.

• Led and managed the Operational Security for the EDS' Symantec account• Managed two global teams of engineers and architects (approx. 30 individuals)• Create and maintain security processes, procedures, workflows, documentation, knowledge management, KPIs and CSLs service management components.• Worked closely with the team and leadership to ensure successful employee transitions to outsourced roles (maintained a six month transition period of 100% retention)• Worked closely with all stakeholders to ensure Critical Service Levels and Key Metrics where defined and delivered.

• Managed a global team of highly skilled security operations professionals, providing 24x7 support. (20 personnel in Germany, US, UK, and India)• Collaborate with the Symantec CISO, InfoSec, GRC (Governance, Risk, & Compliance), Threat Response Team, and Security Engineering to maintain the integrity of Symantec’s infrastructure.• Maintain, manage, monitor, and review the deployed security technologies within the Symantec environment• Ensure the effective deployment, management and administration of firewall, authentication, encryption, VPN, security information managers, vulnerability assessment, and compliance technologies.• Managed and led Service Level management, planning, coordination, and reporting of Security Operations.

• Drove the development and support of a $7 to $12 million per quarter pipeline for compliance and security.• Interacted with customers at the executive and engineer levels, as part of the services sales process for consulting engagements. Presented to CIO and CISOs at global 500 accounts• Develop new security, compliance services and opportunities. Included consulting with customers on Security and Compliance technologies and offerings to determine need, scope, quote, and deliver. • Work with field sales and executive teams to create, present, sell, and deliver on-site staff augmentation and short-term consulting engagements.• Responsibilities included customer security solutions enablement, policy and procedure creation, security best practices, content filtering, virus remediation, incident response, security education, authentication, firewall rules, IDS/IPS, email security, SIEM implementation, and other security services for customers.• Supported customers in leveraging security solutions, to meet their compliance requirements

• Supported large breadth of Symantec security products to named accounts. Provided consulting support on security technology implementations, incident response, malicious code remediation, policy and procedure creation, and other security related issues. • Senior instructor and workgroup lead for antivirus, content filtering, and messaging security technologies.• Created and published over 200 technical knowledge articles