• Tasked with developing an information security vision and strategy that is aligned with organizational priorities and the strategic and operational governance processes. • Lead strategic information security planning to achieve business goals by prioritizing initiatives and coordinating the evaluation, deployment, and management of current and future technologies using a risk-based assessment methodology.• Provide regular reporting on the status of the information security program to a variety of audiences including senior management and the board of directors.• Create a risk-based process for the assessment and mitigation of any information security risk in the ecosystem consisting of supply chain partners, vendors, consumers, and any other third parties.• Develop, define, and communicate policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices and regulatory requirements.• Manage the information security organization, including hiring, development, retention, and performance management.• Participate in feasibility studies and conduct risk assessments for software and systems under consideration for purchase and make recommendations.• Develop, track, and control the security services’ annual operating and capital budgets for purchasing, staffing, and operations.• Manage and contain information security incidents and events to protect corporate IT assets, intellectual property, regulated data, and the credit union’s reputation.• Coordinate the development and implementation of incident response plans ad disaster recovery policies, procedures, and standards to ensure that business-critical services are recovered in the event of a security event; provide direction, support, and in-house consulting in these areas.• Promote and oversee strategic security relationships between internal resources and external entities, including government, vendors, and partner organizations.

National Cooperative Bank – Hillsboro, Ohio Information Security Manager, VP 2018 - DateThe Information Security Officer is primarily responsible for assisting the Chief Information Officer (CISO) in the development, implementation, maintenance, and monitoring of the Banks' Security Program. This program will protect the confidentiality, integrity, and availability of NCB's information systems, its employees and customers data. The IS Manager is a subject matter expert for all information security platforms and plays a lead role in implementing the Banks information security architecture and strategy, enforcing IS policies and procedures to ensure compliance, investigating information security events and the daily operational management of the Information Security team. The Information Security Manager focuses actively on the promotion of a culture of information security through education on both broad and narrow Information Security subjects.• Active Member of the Architecture Review Board; Participate in the creation of and the maintenance of the bank's security architecture design and strategy • Active Member of the Information Security Steering Committee; Participate in the coordination of corporate security initiatives and projects• Participate in the creation of maintenance of the bank's security documents including policies, standards, baselines, guidelines, and procedures. • Responsible for providing oversight, coordination, and management of information security initiatives, projects and day to day technical oversight of operational support. • Oversee the deployment, integration, and configuration of all new security controls. Additionally, tasked to ensure the continuous improvement of existing security solutions within the bank's architecture.

As a Senior Information Security Analyst, I worked closely with IT teams and business units to identify and specify the security requirements, standards, and controls for development platforms, computing environments, software, hardware, technologies, and tools. Provided security consulting in identifying and implementing new uses of security technologies and processes that assist and support business unit objectives.• Participated in planning and design of enterprise security architecture, Business Continuity Plan, and Disaster Recovery Plans• Collaborated with IT and Business teams to develop roadmaps that support IS and the business• Develop, and maintain standards, policies, procedures, and solutions that mitigate risk, service availability, and encourage efficiency• Participated in the design and execution of vulnerability assessments, pen tests, and security audits• Performed limited pen and security testing including reporting, of recommendations of vulnerabilities• Provided security guidance to outsourced MSSP operation of firewalls, IDS, anti-virus and SIEM tools• Review and monitor logs and reports of devices. Develop resolution plans for all identified risks• Monitor for security breaches, security violations and modify procedures to prevent future issues• Participated in IDing anomalies that indicate an attack, threat or weakness, participate in CSIRT team• Maintained a professional communicative relationship with clients and management to provide information throughout the incident, problem, and change management cycles• Coordinated efforts of external audits and assessment activities. Provide input for audit response and guidance on solutions to achieve and maintain security compliance, to mitigate security risks and to correct compliance deficiencies• Created clear and coherent written reporting and remediation guidance, compliance reports using security tools that would satisfy security, FFIEC, GLBA, and PCI compliance requirements

The vCIO is a strategic relationship manager assisting clients in the development and execution of an IT plan that will ensure clients achieve their business objectives. As a vCIO, I regularly met with client executives to assist them in the creation of a strategic IT Roadmap that translates the client’s business goals into IT initiatives. I worked with our technology engineers to ensure the best solution for the client’s technology needs. The opportunities are forecasted as part of the sales process and then coordinated with Services to ensure the strategy is implemented.• Created Evergreen processes for client's IT infrastructure • Development of Strategic IT Roadmaps for client’s infrastructure• Created electronic client "notebooks" for both internal and external use. • Supported multiple regulated and non-regulated industries as a virtual Chief Information Officer.• Managed a portfolio of up to 20 clients • Managed clients in the financial, electrical, health and manufacturing lines of business

As an Information Risk Lead within the Digital Technology team my daily responsibilities included; Vendor Risk Management and Cyber Security management for the Digital line of business. I was directly responsible for all risk activities around all Digital Third-Party Vendor relationships and Third-Party Vendor application risk management. I managed a small team of Business Analyst responsible for Project Management for the Digital Thrid Party Cyber Security team. My team was directly responsible for the Vendor Application Development Managers within the Digital Line of business that we supported. Additionally, my team was responsible for the development of Standard Operating Procedures (SOPs) for several of the Digital LOB applications. • Performed vendor’s on-sites reviews assisting in the identification of issues, documenting remediation of identified issues to completion. • Managed the Digital Cyber Security Third Party Management book of work. • Managed the Digital Cyber Security Third Party Application project. • Developed Vendor Application Security Development Management job requirements including roles and responsibilities. • Managed a small team of Cyber Security Project Managers

JP Morgan Chase Bank & Co. - Columbus Ohio Information Risk Analyst, Consumer Banking Technology Systems 2015 – DateAs an Information Risk Analyst within the Consumer Banking team my daily responsibilities include; management and coordination of onsite reviews of third party vendors, ensure risks are identified, logged and tracked to remediation, daily interaction with information owners, delivery managers, sourcing, vendor management, disaster recovery, and third party external assessors. We work with these teams to ensure proper scoping, and identification of potential risks to the Global Bank and working to remediate all findings. • Performed vendor’s on-sites reviews identifying issues, documenting remediations and managing remediations to completion. • Managed a portfolio of 397 vendor profiles for the Consumer Banking book of work.• Managed the IT Risk portion of contract negotiations within our line of business. • Assisted in development of the Consumer Banking Third Party Oversite Process and procedures• Developed Remediation Plan strategy to reduce the amount of past due remediation plans• Reduced the number of onsite reviews required for the Consumer line of business.

JP Morgan Chase & Co. -Columbus Ohio Information Risk Analyst, Consumer Banking Technology Systems 2012 – DateAs an Information Risk Analyst within the Consumer Banking team my daily responsibilities include; conducting onsite reviews of third party vendors, ensure risks are identified, logged and tracked to remediation, daily interaction with information owners, delivery managers, sourcing, vendor management, disaster recovery, and third party external assessors. We work with these teams to ensure proper scoping, and identification of potential risks to the Global Bank and working to remediate all findings. • Performed vendor’s on-sites reviews identifying issues, documenting remediations and managing remediations to completion. • Managed a total 397 vendor profiles for the Consumer Banking book of work.• Managed the Consumer Banking GAP Process• Assisted in development of the Consumer Banking Third Party Oversite Process and procedures

Responsible for managing the daily operation of the Priority One Management team including Incident Management, and Root Cause Analysis. Managed customer impacts by leading Technical and Business bridges to drive resolution or mitigation of issues. Developed and managed required staffing levels, policies and process to ensure appropriate response by businesses and resolvers during technical outages. • Established new processes to action the tickets in the queue in a logical manner, thus allowing associates to focus on resolving tickets in the queue. Ticket queue was reduced from 60 days behind scheduled to be caught up to current day within 45 days.• Assisted in the development of job descriptions and requirements when the PAC team and Priority One Management (P1M). Identified associates skill sets and mapped them to the teams newly identified positions.• Managed a team of 9 –15 IT professionals involving setting staffing levels, conducting performance reviews, identifying skills development, and executing disciplinary actions. Developed team skills which resulted in the members being able to work issues without supervision; allowing management to focus on strategic initiatives rather than daily production.

Responsible for coordination of all communications of critical outages to all lines of business within the Global Bank Infrastructure teams. Additionally, my staff coordinated all necessary dispatches with both internal technical representatives and external vendors to avoid or minimize impact to the Global Bank internal and external clients. • Managed Priority One Management’s vision of relentless commitment to minimizing customer and client impacts related to infrastructure outages. Managing this commitment resulted in multiple spot awards including Infrastructure & Operations Above and Beyond Awards, recipient of multiple W3 Awards and multiple Global Bank Service Star Awards, Consistently received the highest IOC Customer Satisfaction Ratings (above 90%) and were considered a “Best Practice” by the Gartner Consulting Group. • Decreased overall IT expenditures to the corporation by maintaining strict adherence to +/- 3% budget forecasts. • Responsible for the development of global metrics and P1M metrics database. Successfully implemented consistent reporting across the entire P1M team, working with peers in Chicago, New Jersey, Chicago, Asia Pacific (AP), and Europe (EMEA).• Created team efficiencies and implemented changes resulting in cost avoidance of additional head count while absorbing consistent ticket volume increases. • Directly responsible for departmental audits, business continuity, and disaster recovery functions.• Participated in strategic planning and tactical execution to implement the Incident Management Process for the combined Global Bank enterprise.

YUSA Corporation is a direct supplier of rubber products for Honda Corporation. My job responsibilities included the scheduling of several pieces of equipment, the daily ordering of needed raw materials and supplies, scheduling and administration of up to 36 employees within the Tube Straight line, and the training of all new associates. As a Team Lead I was responsible for the overall production and delivery of up to 100 thousand dollars of product annually. Assisted in the overall budgeting for the Tube Straight line. I was also responsible for identification and implementation of new processes to support the companies goal of “Continuous Improvement” outlined by Senior Management’s Six Sigma training recommendations. Additionally I was responsible for the creation of improvement plans or any necessary corrective action for employees reporting to the Tube Straight Line.

As a Technical Support Team Lead I worked for several major on-line service in several different Computer formats including Windows 3.0.1, Windows 95, Windows NT 4.0, and Mac Os 7.5 to 8.0. My duties as a Technical Support Team Lead representative included the trouble shooting of members computer system (both hardware and software) in conjunction with the on-line services, and acting as an escalation point for customer service and technical troubleshooting for the associates on my team. Additionally I was responsible for the training of any new team members as they started accepting calls.

I was in charge of the every day operations of a grocery department with daily sales totaling in excess of one million dollars of sales per day. I was responsible for the administration, training and scheduling of Grocery department associates. As a Co Grocery Manager I was responsible for running crews of 7-20 team members, controlled the flow of stock by managing the ordering and inventory of the departmental stock quantities, shipping and receiving of all products, and reported daily status report to management.

US NAVYAviation Structural Mechanic• Shift Lead for the Paint and Finish department, supervised a crew of 3 to 4 enlisted personnel• Plane Captain for US Navy A4 aircraft rating.• Performed routine inspections on both A4 and F/A 18 Aircraft• Performed corrosion removal and painted both A4 and F/A 18 aircraftSchools:Boot CampAMS A1 SchoolCorrosion Control SchoolPaint and Finish SchoolF/A 18 FRAMP School United States NAVY Eperience:Enlisted: 3-91 to 1-95Type of discharge: HonorableRank/RATE: E-3 AMSAN