Strategic Planning and Governance• Leads strategic planning, risk assessment, and policy development, aligning security initiatives with organizational goals.• Ensures compliance with relevant regulations and security standards. (i.e HIPAA, CJIS, FERPA)Tactical Operations• Manages day-to-day security operations, including incident management, system monitoring, and vulnerability assessments.• Maintains effective and operational security controls.Vendor Management• Collaborates with vendors to assess security measures and negotiate contracts.• Implemented vendor risk management strategies to safeguard organizational data.Built and Managed Security Team• Recruited, trained, and retained a team of skilled security professionals.• Handles personnel issues, conducted performance evaluations, and facilitated professional development and mentorship.Security Awareness and Training• Developed and executed security training programs and awareness campaigns.• Fostered a security-conscious culture among employees.Incident Response and Recovery• Leads incident response efforts during security breaches.• Coordinates with various teams and communicates with stakeholders for timely incident resolution.Compliance and Audits• Conducts compliance assessments.• Workes with auditors to ensure adherence to security protocols and regulations.

Small Business IT • Medical Billing • Medical Practice • Medical Association • Call CenterSystems Managed • Windows Server 2000-2016 • Hyper-V • Remote Desktop Services • SQL Server 2008 • Windows XP,Vista,7,10 • Active Directory • Group Policy • Practice Management (Lytec, Medisoft)

Developed and Implement Standards • IdAM (ADFS / AzureAD) • Source Controls (TFS) • Automated Deployment (TFS) • Message Formats ○ HL7 ○ XML • Message Passing Protocols ○ Web Service ○ REST • Technical Lead Server 2003/2000 Retirement Project • Technical Lead Server 2008 Retirement Project Health Systems Integration • Certified HL7 V2.7 Chapter 2 Control Specialist • Meaningful Use ○ ELR (NBS) ○ Immunization Reporting (NMSIIS) ○ Syndromic Surveillance (SQL Server) • Immunization Queries for Surveillance Application • Implemented EMPI ○ Designed HL7 ADT interfaceSystems Managed • Orion Rhapsody Integration Engine • SharePoint 2013, Online • Team Foundation Server 2013, 2015 • Legacy NMSIIS • New Mexico Electronic Disease Surveillance System • PRISM (STD Surveillance System)Provided Input for System Design and Operation • Cisco ISE • SCCM • Palo Alto Firewall • Oracle Identity Management • Oracle Database Server (Solaris) • Oracle Application Server (Solaris) • WAN Architecture Change Management • Voting member on CMR boardSoftware Development • Implemented New EMPI (.NET, C#, MSSQL 2012) • Legislative Bill Analysis System (SharePoint, JavaScript and Workflow) • PowerShell Scripting • SQL Query Construction • SSIS Packages

• Lead Paramedic on Ambulance • Training EMTs on the job • Advance Life Support ○ Inter-Facility ○ Pre-Hospital

• Web Application Development • Data Scraping and Analysis