Leading critical infrastructure assessments for the federal governement for cybersecurity to ensure mission, organizational, and cybersecurity alignment. Improving operational efficiencies for critical infrastructure IT operations. Key areas include: FISMA, NERC-CIP, CCMM, IT/OT convergence. Cybersecurity and Risk Management Mentoring for two PE firms.

Led the CyberSecurity, Fraud Prevention, Technology Risk, and Internal IT functions at Nexus Systems, LLC, a leading provider of integrated accounts payable (AP) and procure-to-pay (P2P) and payment applications. -Performed Key Due Diligence Activities in the above areas to ensure the successful acquisition of Nexus Systems by Bottomline Technologies and Thoma Bravo.- Acted in the role of CISO to include Vulnerability Management, PenTest remediation, Policy Management, Access control and Security investigations.- Conducted key Risk functions to include 3rd Party Risk management, OFAC, FCPA and AML assessments. - Developed and Implemented Fraud Prevention processes that ensured Digital Trust with existing and new clients with virtual card fraud rates 10x below industry average.- Ensured correct international law interpretation and implementation to include Canadian, Australian and EU (GDPR) laws in order to determine hosting and operational requirements.- Internal and External Audit- Business Continuity planning and Disaster Recovery- Compliance (SOX, PCI/DSS)- Framework Implementation (COBIT, ITIL, COSO)- Implemented and completed first ever SOC 2 Type 2, SOC1 Type 2, and PCI-DSS compliance assessments for Nexus Systems. Conducted 8 SSAE16/SSAE18 SOC 1 Type 2 assessments with zero material findings over 8 years of operations. - Impetus for implementation of key processes and systems to include selection and implementation of best practice service desk tools and processes (ITIL based). Customer satisfaction went from unmeasured to initial rating of 95% to over 98% within months of taking over Service Desk Operations. - Ensured contractual compliance and delivery to clients to include new functionality and capabilities.

Governance, Risk, Compliance and Corporate Strategy Executive. Provide consulting services for GRC and IT support to include: SOC Reporting Support, Risk Management, Compliance (SOX, GDPR, PCI-DSS, HIPAA, SOC2, NIST Standards, BSA), Corporate Strategic Planning, Facilitation, Clients and Tasks Include:- SOC 1 Type 2 Support for MUFG.- Strategic Planning for Data Analytics.- Security Gap Analysis for a Major CRM provider.

Leader for IT based support at the company. Provided IT management support for the USDA Food Safety Inspection Service in the areas of Configuration Management; Data Center Operations; Enterprise Architecture, Security Management; Virtualization; Data Warehouse Optimization and Systems Development Life Cycle. Oversaw key efforts in development of the EA. Developed the first ever set of operational guidelines for test lab in the Data Center management to support standing up a production like test center at FSIS. Operational guidelines included identity, security, change, configuration, release and account management procedures, capacity planning, virtualization and provisioning. Lead author of a study to assess current data warehouse Extract Transform and Load (ETL) procedures that took nearly a full day to complete, rendering the original warehouse unusable for large amounts of time and developed solution recommendations. Findings included an inefficient load procedure, missing software patches, lack of technical support and obsolete software known to cause problems occurring at the agency. Recommendations in the report would decrease ETL times by over 75%. Provided key leadership in Implementing, Operationalizing and Enforcing the Systems Development Life Cycle, to include mentoring, authorship and training. Supporting key roles in Change Management, Configuration Management and Test Planning and Execution.Lead author for key white papers in the areas of Information Systems Governance, Cloud Computing and Information Security. Developed corporate practices in data analysis and visualization to include IBM I2 toolsets to detect financial fraud in customer agencies. Provided technical solutions proposals for the Department of Housing and Urban Development, the Food and Drug Agency, the Commodities and Futures Trading Corporation, Department of Education, Department of Agriculture, the Securities and Exchange Commission and Department of Commerce.

Independent Consultant / Contractor for IT services. Servicing the IT, Federal Government and Financial Industries. Providing acquisition, business management and IT support to JetBlue. Providing information protection and acquisition expertise for the Dept. of Veterans Affairs. Department of VA work included implementation of Enterprise Wide Security Requirements, including first ever crosswalk for universial compliance, incorporation of information security needs into acquisition of services, providing recommended updates to VA security policy and tracking of Security findings to resolution. Provided COBIT and SAS70 support to a software development company. Provided consulting services for a Dell Computers to improve their managed services offerings, making them more competitive with their peers on large hardware contracts.

Headed the first ever significant outsourcing of JetBlue assets and processes. Divested and outsourced JetBlue's IT functions in the areas of Data Center operations, Network Operations, and IT Service Desk. Oversaw the transfer of those functions, to include all assets. Developed the business case for outsourcing vs. maintaining service in house. Reviewed Data Center Operations and deficiencies in the data center design to include reliability, network, disaster recovery, continuity of operations, hardware and software configuration and change management and capacity planning. Oversaw first ever Enterprise Architecture As-Is documentation of the Data Center and Networks. Managed the Release, Partner Selection Process and Contract Negotiations on the first ever outsourcing initiative at JetBlue since company inception. Included the migration of all Data Center, Data and Voice Network and Service Desk Operations and improvement of service delivery, resiliency, and redundancy of operations. RFP was released 11 December 2008 and Migration started in June 2009 with a provisional agreement. Formal signature of the contract was in August 2009, resulting in a complete, comprehensive 6 year contract in less than eight months. After award, headed up the Financial, Contract Amendment and Service Desk Migration Areas. Press release: http://www.computerworld.com/s/article/9138965/Verizon_to_manage_JetBlue_s_network_data_centers_and_help_desk?taxonomyId=73

Manager for a major international technology firm in the banking industry, focusing on resiliency, reliability and security. Teams led: Configuraton Management, Systems administration, asset management and COTS service management. Manager for the Enterprise-wide development and test systems both in the United States and Internationally. Owner and developer of the complete development and test budget to include planning, business case development, capacity planning and execution. Inherited an unplanned budget model that frequently went over budget and still did not meet service requirements to a process that reduced expenditures by over 50%, planned for and met capacity and software needs and maintained reliable operations. Operated an enterprise environment of over 300 servers (HP/UX, AIX, Windows and Sun) to include the seamless migration to a new data center in the United States while maintaining international operations at secondary sites, Supported major enterprise development and test efforts resulting in the delivery of revolutionary services to the international banking industry. Briefed C-level executives and Directors regularly on technology roadmaps, financial forecasting, asset management and resiliency based projects.

Lead technical agent in the development of the future Enterprise Architecture for the United States Marine Corps including development of a software architecture that was based upon transaction processing and messaging software between disparate systems. Worked within the Defense Information Infrastructure Common Operating Environment and ensured interoperability between Joint, Naval and Marine Corps systems through implementation of standards, development and review of requirements and participation in change control boards.

Program Manager for contracts supporting a major government organization to provide Independent Verification and Validation, technical training, and architecture analysis for future systems in a low bandwidth, wireless environment. Systems Engineer for the functional design of Planning Systems for a multi billion-dollar contract.

Task Lead for a multi-company team of 33 personnel supporting a major government organization. Management included leader for the Integration of Software, Software Testing, Security Analysis and CM of mission critical software. Sole author of the Public Key Infrastructure implementation strategy for a worldwide, secure network of decision support and planning systems .

Managed the migration of the Marine Corps component of a world wide top-secret Mainframe Based system to a secret, global client-server based system. The actual planning and migration of the system was completed within a year, including operational installations at thirty five sites worldwide. This included site surveys, network planning and design, upgrade of infrastructure, server installation and test and operational support.

Led units of 20 - 40 Communications, Data and Technical Maintenance personnel. Planned, Installed, Operated, and Maintained multiple voice and data systems to include wireless, TDMA, and real time based. systems. Received the Navy Commendation Medal for support of the Position Location and Reporting System, a large computer and radio network that provided messaging and location support through a network of over 300 transponders and a centralized computer system.