Chief Information Security Officer
Current- Manages a team responsible for the organization’s cyber security posture and a team responsible for the efficacy and accuracy of the companies’ software security products.- Follows NIST CSF, SOC 2 Type 2, and CSA CCM for ensuring the security of the organizations SaaS infrastructure.- Develops security roadmaps for continual improvement in the organization’s security posture.- Drives risk mitigation through tracking KPIs across monthly and quarterly initiatives.- Key security initiatives achieved:-- Rolled out multi-factor authentication to the entire organization.-- Built a robust computer security incident response process and plan in coordination withcompany executives.-- Decreased reported phishing incidents by 95% year over year through training andimplementation of phishing prevention systems.-- Implemented companywide vulnerability management program and drove MTTR for criticaland high issues to less than 2 days.-- Drove vulnerability escape rate (VER) to less than 1 per month for all risk levels and closerto zero for critical or high issues.-- Implemented numerous security solutions over the past few years such as SIEM, cloudsecurity posture management (CSPM), Enhanced Detection and Response (EDR), SecureWeb Gateway (SWG), and numerous other homegrown technical controls. -- Revamped company information security policies