David Severski work email
- Valid
- Valid
- Valid
- Valid
David Severski personal email
David Severski phone numbers
I work to make organizations of all sorts better through the use of applied security risk analytics and modern IT practices (particulary cloud and configuration management technologies). As a seasoned information security veteran. I have provided security management expertise across diverse industries -- retail, aerospace, finance, energy, and healthcare -- and in a variety of roles. I have developed broad expertise in a number of technical areas, including cloud architectures, software-driven security management, and security architecture. My goal continues to be to leverage my passion for continual learning and improvement to provide evidence-based information security risk management to my organization.Specialties: Data analysis and visualization, cloud technologies, process design and refinement, information security risk management, team development and leadership, compliance (HIPAA, PCI-DSS, NERC CIP, etc.) and secure network architectures.
-
Partner EmeritusCyentia InstituteWorcester, Ma, Us
-
Senior Security Data ScientistCyentia Institute Jul 2019 - Present
-
Lead Risk Data ScientistStarbucks Jul 2017 - Jul 2019Greater Seattle Area -
Information Security Risk And Data Science ConsultantIndependent Aug 2016 - Jul 2017Greater Seattle AreaAs a freelance consultant, I work with a variety of organizations to apply data-driven security risk management principles to make better products and services for their customers and employees.• For a commercial security vendor, proposed, architected, and implemented features that leveraged existing data sources to provide host level risk metrics and to add novel methods of explainability for machine-learning threat detection alerts.
-
Manager, Information Security ProgramSeattle Children'S Apr 2010 - Jul 2016Greater Seattle AreaManager for the strategic and governance aspects of the institution's information security risk program. Through a combination of data-driven analysis, visualization, and expert knowledge, my team directly supported the CISO and the board of directors to bring evidence-based guidance to decisions at all levels of the organization.• Created, implemented, and manage the ongoing data discovery and risk analysis program. Providing guidance to the full catalog of business applications, the data types and volumes present, and the quantified risk profile of those applications.• Led team of analysts in providing quantified analysis of enterprise technical risk posture and control options.• Internal advocate on data visualization, statistical analysis, and data-driven approaches both in and out of information security.• Advocate on cloud technologies, DevOps practices, and baked-in security.• Responsible for full incident response lifecycle, ensuring proper response and post-mortems to drive control improvement.• Developed extensive internal and external threat intelligence program providing prioritized remediation, eliminating noise from spurious alerts and uncovering previously unknown issues. -
Instructor (Uw Professional And Continuing Education)University Of Washington Mar 2010 - Oct 2010Co-instructor for capstone course, focusing on building secure environments and emerging security trends. -
Senior Security Analyst/Program Manager (Consultant)Seattle City Light Sep 2008 - Apr 2010Greater Seattle AreaAs an expert level consultant, I helped Seattle City Light implement an information security program meeting the new NERC CIP requirements across the power production and systems control division. Through a combination of high level policy documentation as well as on-site detailed technical implementation, my small team enabled SCL to successfully pass their first CIP audit with no significant deficiencies, setting in place a sustainable set of practices to safeguard the tenth largest municipal power system in the nation.• Developed compliance mapping of NERC CIP regulations to industry standard frameworks (ITIL v3, COBIT, and ISO 27002), providing comprehensive control guidance, audit assistance, and strategic road mapping.• Project manager, compliance expert, and technical adviser on major access control system forklift upgrade. Coordinated diverse internal and external groups to satisfy immediate business, operational, and compliance needs while increasing the maturity of IT service delivery.• Developed a comprehensive body of information security policies and practical guidance that supported operational units while meeting compliance obligations. Advocated and worked across business units, from line level to C-suite officers. -
Volunteer/Presenter/StudentIndependent 2003 - Jun 2009While pursuing my MBA program at Seattle University, I have continued to participate in the local security community through events, presentations, and volunteer work. I am particularly interested in the promotion of general security awareness and good corporate governance as expressed through security program development.
-
Security Operations Program Manager (Consultant)Microsoft 2007 - 2008Greater Seattle Area• Expert level resource on identity management and vulnerability scanning programs, focusing on business process improvement and the impacts upon technology architecture.• Created project vision proposal and documentation for vulnerability management ecosystem throughout the Microsoft Online hosted environment.• Project Manager for compliance-related event logging systems across all hosted properties -
Supervisor - Enterprise SecurityNordstrom Dec 2004 - Dec 2005Greater Seattle Area• Managed a team of ten security analysts, architects and engineers and developed a coherent enterprise-wide strategy for a formalized information security program.• Developed close ties with business and IT governance bodies to identify business risks present in information systems and business processes. Worked to formalize processes around a framework of controls (including ITIL, COBIT and ISO17799) to mitigate risks and improve business agility.• Built awareness of security issues and support for solutions across upper management and business units.• Faced with multiple compliance efforts (i.e., HIPAA, PCI-DSS, SOX, etc.), served as project manager for IT security issues and provided subject matter expertise on regulatory interpretation to senior business leaders and technical guidance to implementation teams.• Drove IT security architecture projects on enterprise-wide topics such as patch management, vulnerability scanning and remediation, incident handling, encryption strategy, incident response, firewall change control and IT risk assessments. -
Senior Security ArchitectNordstrom Feb 2004 - Dec 2004Greater Seattle AreaSenior Security Architect within Nordstrom Enterprise Security.
-
Network Systems ConsultantIns Feb 2001 - Feb 2004• Security and networking consultant with major assignments to northwest financial, software, and aerospace companies.• Selected projects included web proxy services with content filtering and policy enforcement, WAN and MAN design and migration, all aspects of network security and design, multiple platform firewall design and implementation, satellite communications, Windows Active Directory design and roll-out, network address allocation and DNS systems, and satellite telemetry systems.• Selected internal accomplishments include preparing and delivering internal training including DNS and encryption technologies as well as CISSP preparatory materials
-
Systems Administrator - Production OperationsGo2Net Jun 2000 - Feb 2001• Liaison for customer and business needs with diverse technical groups within the company.• Escalation point for technical problem analysis and resolution of system security and customer usability issues.• Enhanced security and performance of the web based systems while ensuring continued service. -
Production Operations ManagerText-Trieve Oct 1997 - Mar 2000Greater Seattle Area• Managed internal resources and outside contractors in the development of main company product line with aggressive quarterly CD releases and monthly e-commerce releases.• Created e-commerce back-end to an all new e-commerce product as well as the secure on-line ordering system.
-
Ecms Support ProgrammerExpeditors International May 1995 - Oct 1997Greater Seattle Area
David Severski Skills
David Severski Education Details
-
Business Administration -
Economics
-
Associate Of Arts
Frequently Asked Questions about David Severski
What company does David Severski work for?
David Severski works for Cyentia Institute
What is David Severski's role at the current company?
David Severski's current role is Partner Emeritus.
What is David Severski's email address?
David Severski's email address is da****@****ens.org
What is David Severski's direct phone number?
David Severski's direct phone number is +120698*****
What schools did David Severski attend?
David Severski attended Seattle University, University Of Washington, Seattle Central Community College.
What are some of David Severski's interests?
David Severski has interest in Business Ethics, Information Technology, Backpacking, Privacy, Information Security, Yoga, Civil Rights And Social Action, Politics, Environment, Cycling.
What skills is David Severski known for?
David Severski has skills like Information Security, Data Visualization, Amazon Web Services, R, Chef, Security, Risk Management, Tableau, Network Security, Computer Security, Governance, Pci Dss.
Who are David Severski's colleagues?
David Severski's colleagues are Naresh Naresh, Carolyn Gimarelli, Melanie Trichel, Mit, Amanda Appiah-Yeboah, John Sturgis, Lindsey Butler.
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial