F. James Miller, Cissp, Cmmc Ccp, Cgrc, Ccsp Email & Phone Number

Manassas, VA, US

• Overseeing the strategic direction, operations, and budget of the enterprise-wide information security and compliance program, encapsulating mission, vision, and strategy alongside information risk management and IT.
• Established a comprehensive information security program meeting NIST-CSF, FISMA, PCI-DSS, GDPR, ISO and CMMC standards, fostering a secure digital transformation.
• Directed strategic IT initiatives, including architecture guidance for digital transformation, and managed key vendor relationships in alignment with industry standards.
• Enhanced SOC operations through automation and comprehensive vulnerability assessments, coupled with a robust incident response strategy for continuous improvement.
• Mentored IT staff, promoting a culture of excellence, innovation, and learning, while ensuring compliance with critical frameworks like NIST RMF and GDPR
• Managed comprehensive Incident Response processes, from identification and investigation to containment, eradication, and post-incident analysis, fostering a culture of continuous improvement and information.

Manassas, VA, US

• As Director of Cybersecurity and GRC, led the strategic, operational, and budgetary aspects of the enterprise-wide information security program, integrating mission, vision, and risk management with IT compliance..
• Defined and executed the IT Security Department's strategic direction, significantly enhancing digital security transformation efforts and establishing robust, cross-functional collaboration to bolster PII protection.
• Streamlined global security operations by implementing a centralized Security Operations Center (SOC) with SIEM and vulnerability management solutions, leveraging Azure Sentinel and other advanced tools, leading to.
• Enhanced compliance and risk management by developing and maintaining processes in line with the NIST Risk Management Framework, achieving compliance with standards such as NIST SP 800-37, NIST SP 800-53, NIST SP.
• Spearheaded the development and enforcement of comprehensive corporate-wide policies and training programs for Information Security, Incident Response, and Disaster Recovery, including specialized phishing simulations.
• Developed corporate wide information security awareness training, including regular phishing simulations and targeted training for critical departments.

Manassas, VA, US

• Directed global IT infrastructure, encompassing strategy, budget management, end-user support, information security, compliance, and data center operations. Key accomplishments include:
• Enhanced end-user support processes, including a call center and ticketing system, boosting first-day resolution rates from 40% to 70% through the development of a comprehensive knowledge base and training programs.
• Led information security management, overseeing patch management, encryption, security training, and penetration testing, streamlining Identity and Access Management practices and enhancing data protection.
• Spearheaded the transition to cloud services, optimizing infrastructure management and achieving increased service uptime, while shifting 60% of capital budget to operational expenses.
• Designed a virtualized infrastructure with multi-site redundancy, ensuring 90% of services ran on a highly available platform, improving system scalability and operational efficiency.
• Implemented redundant network connections, achieving 100% uptime for switching infrastructure outside of maintenance windows, ensuring consistent network reliability and performance.

US

Responsible for the enterprise resource planning system, (MFG/Pro), and supporting team, including end user support and training. Responsible for the implementation of the Service & Support module in MFG/Pro for recurring maintenance of medical devices, allowing for automated tracking and processing, reducing overall process hours by 50%. Upgraded &.

United States, Connecticut, US

Performed process analysis, system specification and development of custom programs with the enterprise resource planning system (MFG/Pro). Developed field sales reporting system consolidating data from multiple ERP systems used by global field sales organization. Owned automated workstation imaging and deployment reducing technician effort from 5 hours to.