Eric Moné Email & Phone Number

Barrington, Rhode Island, US

Engaged with technical personnel, management, and director-level management to define deliverables, requirements, scope of work, statement of work, and strategy of the engagement. Performed as an individual contributor, lead consultant, or project manager working with internal staff, as well controlling third-party resources. Conducted organizational.

Barrington, Rhode Island, US

• Performed as an individual contributor, lead consultant, or project manager working with internal staff, as well interfacing with third-party resources engaged by the organization.
• Conducted information security program assessments, and provided recommendations based on gap analyses results (ISO/27000 Family, COBIT, ITIL and Hybrid combinations).
• Performed security risk assessments (Octave Allegro, NIST SP800-30/53, ISO/27005, and Hybrid combinations).
• Completed compliance requirement engagements for logical and physical controls required by the Payment Card Industry - Data Security Standard (PCI-DSS), Graham-Leach-Bliley Act (GLBA) Safeguards Rule, Health Insurance.
• Analyzed security programs for data protection environments for the confidentiality, integrity, and availability of information assets, whether it be logical and/or physical. Assessed data classifications, data.
• Reviewed, analyzed, and provided recommendations for improvements to information security policy sets, including the creation of privacy policies and privacy management programs.

Valley View, OH, US

• Performed an assessment and “pre-audit” prior to an SSAE16 SOC2 Type 2 Audit Report engagement with a big four accounting firm. Completed the assessment and audit of logical and physical security controls. Produced the.
• Facilitated a Statement on Standards for Attestation Engagements (SSAE) SOC2 Type 2 Audit Report “pre-audit” program to evaluate and confirm the technical security and operational controls that are required to submit.

• Research for prospective customers. Market products and services to those prospective customers, and make initial contact. Engage the customer to discover their key requirements for present and future strategy. Create.
• A 116 unit residential complex IP-based video surveillance system with forty-two high definition cameras. Including the placement of cameras into elevators. Installed physical security barriers, and HID. Integrated.
• An automotive dealership with eleven distributed locations that required the implementation of sixty-six high-definition cameras with motion detection and alarm system integration.
• An educational institution with six separate locations requiring forty-eight cameras with minimal operating capability in order to decrease the communications bandwidth utilization, and to reduce the storage.
• Implemented and connected multiple customers to an outsourced IP-based video surveillance monitoring provider that is United States Department of Defense (DOD) certified.

• Performed as the Director of Security to build an information security program from the ground up in a Greenfield environment in order to ensure the confidentiality, integrity, and availability of all company and.
• Managed the capital and expense budget.
• Managed the quarterly internal and external penetration testing for compliance with the Payment Card Industry - Data Security Standard (PCI-DSS) requirements.
• Implemented a data security program to protect the confidentiality, integrity, and availability of internal company and customer information assets. Interfaced with customers to implement the customer’s security.
• Performed security risk assessments.
• Authored the complete information security policy set.

US

• Senior IT project manager responsible for ensuring the on-time delivery and cost effective implementations for infrastructure and applications projects.
• Managed projects of up to 32 employees, including the management of contractors, consultants, and vendors.
• Defined and created project plans, project scope statements, statements of work, work breakdown structures, deliverables definition, division of labor, and milestones. Managed the execution of the projects.
• Managed project risks, project budgets, project employees/resources, and delivered projects within their targeted budget and on-time delivery release objectives.
• Engaged with project sponsors, stakeholders, and senior executives.
• Consulted with the lines of business in order to define and understand their business and technology objectives and strategy.

Hyderabad, Telangana, IN

• Performed a focused and short-term audit of Rockwell's ITIL Program as it relates to Sarbanes-Oxley (SOX) Section 404 compliance, applicable to the change management system and the configuration management system.
• Assessed the security controls, business and technical work flows, approval flows, and documentation requirements for the ITIL configuration management and change management systems for assured compliance with.
• Analyzed and identified Sarbanes-Oxley Act (SOX) Section 404 requirements for the processing occurring in the configuration management system and the change management system, including the identification of existing.
• Produced findings reports and remediation recommendations for reporting on the analysis of found control deficiencies.

• Consulted with clients to define deliverables, requirements, and schedules in order to develop the approach, scope of work, and the statement of work foe engagements. Work with, support, and consult with employees on.
• Performed compliance engagements for the Payment Card Industry - Data Security Standard (PCI-DSS), Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule, and the Graham-Leach-Bliley Act (GLBA).
• Defined control environments and delivered remediation recommendations reports, and roadmaps, to compliance.
• Performed as the information security policy lead consultant responsible for the creation, modification, and updating of client's information security policy sets.
• Acted as a virtual CISO, outsourced to clients, in order to manage the client’s information security programs.
• Managed, as virtual CISO, directing client’s information security programs, policies, processes, practices, and procedures, including the management and monitoring of the client’s third-party provider’s contracts and.

• Project manager for a $5B metals recycler with 29 locations throughout the United States and Canada. Responsibility included administering the project budget, exception management, and vendor management in addition to.
• Managed the full migration of a vertical-market ERP system from HP/UX to Linux, which also included upgrading the currently installed ERP software version that was not supported by the vendor, and was three versions.
• Ensured that the project management responsibilities were driven by adherence to the Project Management Institute (PMI) Project Management Body of Knowledge (PMBOK) standards.
• Managed third-party vendors, consultants, and contractors.
• Performed consulting on technical and operational security controls with the information security team, and the information systems audit team