Develop and design security frameworks, a service catalog, and service definitions for a major energy company to create consistent and efficient processes contributing to an overall improvement in the ability of the company to maintain and improve its security postureProvide security consulting services for a major credit card company related to the design and implementation of a security compliance process creating an improved ability to meet regulatory and internal security requirements while reducing time and costs associated with complianceKey accomplishments:• Supported compliance efforts of a multinational Aerospace & Defense manufacturing company in response to US Department of Defense, UK Ministry of Defense, France Directorate General of Armaments, and European Union GDPR requirements and built an internal control framework to address multiple regulations and frameworks to allow business units to respond to one questionnaire but have reports for individual requirements• Conducted reviews of a large National Credit Union based on the National Credit Union Agency’s Automated Cybersecurity Examination Tool (ACET)• Acted as interim CISO for an Aerospace & Defense manufacturing company until a permanent CISO could be hired. After that, supported the new CISO in developing policies and procedures, InfoSec metrics, supported SOX audits• Managed a team of 5 senior consultants at a large utility company to create and implement a security services structural framework (based on ITIL, CoBiT, and senior managers’ input) to streamline operations, increase productivity, and lower the cost of operations• Worked as a trusted compliance advisor and security architect for a major credit card company to design and implement an overall security compliance process as an integral part of the architecture resulting in more efficient compliance reporting.

• Created a highly successful commercial website generating $6 million in revenue annually while meeting schedules and budgets• Successfully designed and deployed and outsourced hardware environment in less than 2 months — on time and on budget — built for success (i.e., scalable, redundant, supportable and robust) and designed for security (i.e., both hardware and process security established from the beginning) to ensure company objectives could be met according to business plan presented to the investors• Built a talented team of developers and database administrators who launched first revenue-generating application in 3 months — also on target and on budget — including an ASP.Net-based website, SQL Server database, and ASP.Net-based management interface for all functionality as well as an effective reporting system to provide decision makers with timely data so decisions could be made based on timely data to ensure the company’s success o Subsequent revenue-generating applications were all built also on schedule and on budget and included websites, databases, and management interface for all functionality and including integration into the reporting system• Documented all technology policies and procedures including standards, a comprehensive System Development Life Cycle (SDLC) to ensure compliance with regulatory requirements (GLBA, SOX, etc.) as necessary as well as to ensure the company was positioned for sale• Assisted in the profitable sale of the company after two years by providing detailed support for all technology-related aspects of the sale

• Developed and maintained a best practice information technology enterprise architecture with security incorporated as a fundamental architectural principle at all points to enable the company to improve its overall IT efficiency while improving the approach to security throughout the organizationThis contributed to the efficiency of the IT organization which in turn was cited as a consideration when the company was acquired• Established a standards process and facilitated its implementation throughout the organization to ensure consistency, improve efficiency, and promote transparency within the organization• Created the capacity planning program to support the bank’s systems and ensured that growth was managed in a cost-effective and sustainable manner• Implemented near-real-time call center reporting on performance down to the agent level This improved the efficiency of call center operations and helped to reduce operational costs by reducing the average call time and telecom costs• Ensured compliance with regulatory requirements (GLBA, SOX, etc.) to ensure audit and regulatory requirements could be met at all times• Developed a “do not call” process improving customer satisfaction and reducing complaints and at the same time reducing costs by eliminating calls from the call center

• Developed all technology aspects of highly successful commercial website generating more than $20 million in revenue annually including a Java-based website and Oracle database with security processes incorporated into each update and revision to provide continuous improvement to business functionality over time while managing costs and meeting schedules• Managed budget, vendors, consultants, and business partners to successfully meet business objectives efficiently and in a timely manner

Project manager for various technology projects done under contract.

Language Training Coordinator for 5-star hotel in China: trained staff in English

Career Officer: Retired as LCDR• Duty stations included:- 1973: Boot Camp, Recruit Training Command, San Diego, California- 1974: Defense Language School (DLI), Monterey, California- 1975: CTI "A" School, Goodfellow Air Force Base, San Angelo, Texas- 1975-1977: CTI2, Naval Security Group Activity (NSGA), Misawa, Japan- 1978: Officer Candidate School, Newport, Rhode Island- 1978-1980: Ensign (ENS), NSGA, Ft. Meade, Maryland- 1981-1983: Lieutenant (LT), NSGA, Misawa, Japan- 1983-1985: LT, Commander, U. S. Naval Forces Japan (COMNAVFORJAPAN), Yokosuka, Japan- 1985-1987: LT and Operations Officer, NSGA San Vito dei Normanni, Italy- 1987-1988: Lieutenant Commander (LCDR), National Security Agency (NSA), Ft. Meade, MD- 1989-1993: LCDR and Director of Special Intelligence for Supreme Allied Commander, Atlantic (SACLANT), Norfolk, Virginia, a major NATO command. Responsible for physical and procedural security for all Special Intelligence units in SACLANT