Douglas Gerhardt Email & Phone Number

London, GB

New York, NY, US

New York, NY, US

• I developed and managed comprehensive ISMS policies, including encryption, information security, physical security, and acceptable use, enhancing company-wide data protection protocols.
• Collaborated with legal teams to ensure IT systems met stringent data protection regulations (GDPR), mitigating risks in compliance audits and client reviews.
• Oversaw secure development lifecycles by reviewing and approving code designs, pen tests, and scans, ultimately signing off on critical security changes and production releases.
• Enhanced global security operations by directing key projects such as Secure AWS Cloud Infrastructure design and Encryption Key Lifecycle Management.Select Achievements
• Designed and implemented state-of-the-art encryption infrastructure for new data center to support compliance with MIFID II and GDPR regulations, safeguarding sensitive PII and avoiding regulatory fines. Successfully.
• Spearheaded design and implementation of complex encryption infrastructure and security controls for MiFID II and GDPR compliance, ensuring secure data access and handling across Europe and Asia.

London, GB

• I developed and managed comprehensive ISMS policies, including encryption, information security, physical security, and acceptable use, enhancing company-wide data protection protocols.
• Collaborated with legal teams to ensure IT systems met stringent data protection regulations (GDPR), mitigating risks in compliance audits and client reviews.
• Oversaw secure development lifecycles by reviewing and approving code designs, pen tests, and scans, ultimately signing off on critical security changes and production releases.
• Enhanced global security operations by directing key projects such as Secure AWS Cloud Infrastructure design and Encryption Key Lifecycle Management.Select Achievements
• Designed and implemented state-of-the-art encryption infrastructure for new data center to support compliance with MIFID II and GDPR regulations, safeguarding sensitive PII and avoiding regulatory fines. Successfully.
• Spearheaded design and implementation of complex encryption infrastructure and security controls for MiFID II and GDPR compliance, ensuring secure data access and handling across Europe and Asia.

• I reported directly to CIO, overseeing comprehensive information security management across services, suppliers, and customers. I also spearheaded the development of security policies, including Incident Response and.
• Led Information Security Incident Response Team, assessing impact, risk, and required actions during incidents; managed vulnerability assessments, prioritizing remediation strategies and patching guidance.
• Collaborated with Legal to ensure compliance with Data Protection regulations such as HIPAA and ISO27001, ensuring IT systems aligned with security and privacy requirements.Select Achievements
• Designed and implemented secure infrastructure, including fully Kerberized environment across Windows, Linux, and Mac systems with centralized Active Directory management and policy control.
• Served as Subject Matter Expert (SME) for Security Audits, RFPs, and Certifications such as PCI-DSS v3 and ISAE 3402, providing expert guidance on resilience, disaster recovery, and secure development practices across.

London, GB

Review, challenge and recommend changes to current security architecture. Design/implement/document new security tools and capabilities. Administrate/manage/maintain compliance/logging tools owned by IT Security. Provide approval for configuration changes that require IT Security approval. Act as security consultant for IT and other projects. Take.

London, GB

• Design and support security infrastructure. Create and manage access control policies and procedures. Provide IP and telephony network, setting up and supporting firewalls and managing access rules as well as log.
• Designed and deployed security matrix of access rights for all high-privilege users, bringing access control into compliance with external auditor requirements.
• Successfully executed complex firewall consolidation project, replacing position firewalls with clustered Checkpoint / Nokia devices with DR fail-over feature.
• Proactively sought product training to gain necessary expertise to execute consolidation project with minimal disruption to critical business activities.

London, GB

• Provided mission-critical support for IT infrastructure, managing SAN, IP, telephony, IP network, server, mail server and backup functions. Managed technical tasks associated with back office user outsourcing (from.
• Achieved significant savings by automating checks to run hourly and generate alerts to support team, which decreased labor costs and improved team responsiveness.
• Skillfully executed back office user transfer, managing all technical tasks without disruption to business.

New York, NY, US

• Provided user support at various sites, working with Novell and Microsoft Networks. Conducted troubleshooting to resolve Windows XP, Office XP and Exchange issues. Configured BlackBerry devices, connecting them to.
• Resolved user issues promptly with expert troubleshooting.
• Ensured access to mission-critical information by providing vital desktop support.

• Managed company network and related services, proactively researching technology improvements, developing business case and presenting recommendations to key decision-makers. Implemented and managed Smoothwall firewall.
• Achieved significant upgrades using in-house skills, avoiding costly outsourced services.
• Consistently delivered improvements while seamlessly providing access to vital information.

BR

• Oversaw training center network, maintaining and administering system. Decreased system vulnerabilities by deploying antivirus software using Unicenter TNG. Continuously assessed system and infrastructure and made.
• Increased performance capabilities with new training center network tools for approximately 300 hosts.
• Strengthened security by deploying new antivirus tools.