Felix Santos Email and Phone Number

Currently available for hire to return to the workforce.

Direct report to the Chief Information Security Officer managing the Cyber Security Threat Management activities and the Information Security Program for the SEAGATE Cloud Computing Services which included 14 international data centers and the installations in the MS AZURE, Amazon Web Services, FISERV Data Centers and IBM Cloud Service partners. This represents 70,000 customers in the Backup and Disaster Recovery Evault Service-Development and implementation of distributed Cloud Security Architecture including Intranet and Extranet B2B Partner Secure Networks such as Microsoft AZURE.-Subject Matter Expert in special security regulations and compliance including FISMA, HIPAA, PCI DSS, Safe Harbor, Export Control, SOX and SSAE-16 Audit Standards.-Technical operation of Security Assurance Tools such as SIEM, Firewalls, VPN Systems, Intrusion Detection and Prevention Systems, PEN Testing and Vulnerability Assessment Systems.-These skills were demonstrated by the development of the client Information Security Program, the development of the Technical Security Architecture, management of the Cyber Security Team, and the installation of the Security Architecture monitoring and management systems. -The security programs were based upon the deployment of the Cloud Security Alliance controls, compliance to the ISO 27001:2005 information security standard and special integration of the HIPAA, PCI, SOX and FISMA security guidelines. -The most recent technical security implementation included the integration of Palo Alto Firewalls, CISCO/ Sourcefire IPS, IBM SIEM for all security events and the Tenable Vulnerability Management system.-The technical risk management of the security networks was analyzed with the Red Seal Risk Manager and verified with internal and external pen testing with CORE Impact tools as well as third party engagements.-A sample of best practices was published as an eBook to our clients in 2012 "Trusted Data Assurance in the CLOUD".

Chief Information Security Officer and IT Director of Information Security for all security activities reporting to the Chief Operations Officer.Development and implementation the Information Security Program for FISMA, HIPAA, PCI and GLBA compliance.Development and implementation of the Information Security Architecture including network security infrastructure, intrusion prevention, vulnerability and risk assessment.Implementation of Payment Card Industry compliance controls.Represent the Business during audits by the Dept. of US Treasury, Centers for Medicare & Medicaid Services and Financial Services Clients.Security Clearance: Dept. of Treasury - Secret

Served as CISO or Director of IT Security for selected clients to manage security activities in global IT security operations in the Bay Area.Developed and implemented the Corporate Security Architecture including security infrastructure, intrusion detection, and security policy enforcement as required by client needs.Responsible for day-to-day management and oversight of the Information Security team and 24x7 Information Security Incident Response team.Established the compliance requirements for clients as specified for compliance to FISMA/FIPS200, HIPAA, GLBA, VISA PCI, CA SB1386, CA AB1950, Sarbanes-Oxley, DCID 6/3, NISPOM, and other regulations. Served as the Risk Assurance Auditor and/or manager for clients during certification of ISO 17799:2005 or SAS70 reviews.Served as Technical Security Advisor to Security Product Startups such as OneSecure, Recourse, SKYBOX and others.

Information Systems Security Officer and Information Security Site Manager (ISSM) of the DOE Special Compartmented Intelligence Facility (SCIF).Established the design, development and implementation of the International Assessments Division intelligence information systems architecture.Responsible for staff management for operation of the classified and unclassified network infrastructure in the International Assessments Division complex.Fiscal management of the International Assessments Division Operations budgetInformation security policy implementation of the Special Compartmented Information Facility at LLNL.Incident response handling of Special Compartmented Intelligence (TS/SCI) events at LLNL.Security Clearance: DOE Q/TS, TS/SCI, Others