Creating a resilient Cybersecurity Strategy in response to a dramatic increase in threats. + Define and Deliver our Data Protection Strategy to create assurance of the corporation’s cybersecurity capabilities. Execute governance for partners, product streams, and technology deployment, reducing costs by 15%+ Improve Security Assurance - Zero Trust deployment, security assurance program, and a vulnerability and threat management team, which reduced security incidents by 80%+ Integrating DevSecOps processes into engineering teams.

Directed the multinational cybersecurity program and safeguarded critical business services. Led initiatives to ensure compliance with SOC2, GDPR, and ISO 27001.+ Initiated 24/7 Security Operations Centre, migrating to Azure Sentinel, continual SOAR and playbook development, integration to crisis management within the organization. Established Threat Intel programme, based off of the MITRE ATT&CK framework. Reduced response time by 70%.+ Designed and implemented cybersecurity posture. Expanded the team in response to the company’s rapid growth, building and developing a diverse team across 5 continents.+ Deployed ZeroTrust, Multifactor Authentication, Endpoint controls, SSO (Okta) and the vulnerability management program while updating corporate policies and building our roadmap. Drove credential theft incidents to zero.+ Kept cybersecurity costs consistent by automating 40% of manual efforts, despite doubling physical infrastructure and migrating to both Azure and GCP.+ Created Information Security Policies, including Acceptable use policy, AI-use policy, and Contract security requirements.

$40M+ CAD operating budget | $262M CAD capital budget | 5 direct and 50 indirect reportsRecruited to execute NATO’s cyber security strategy and improve capability to defend interests of 1B+ allied citizens.• Modernized NATO’s 30+ nation members' cyber security capability; largest cyber security investment in NATO history.• Drove business changes. Reorganized Cyber Security Centre. Authored 25+ job descriptions for the SOC and hired 46 contractors to upgrade 22 cyber security-related business services.• Gained approval from 30+ nations with disparate ideas and cost expectations without delay or compromise. Managed political interference, business demands and resource limitations.• Directed deployment of services. Determined anticipated pricing, initiated international bid competitions and awarded capital projects of €4M to €22M to vendors.• Delivered “Cyber Command Situational Awareness” capability despite others being unsuccessful after two attempts and €15M spent. Interviewed key stakeholders to pinpoint challenges. Designed iterative, growth-based approach to deploy capability.• Led meetings with investment committees, standards groups, finance, budget authorities, and strategic stakeholders within NATO to develop “agile” methodology to meet Nations’ needs for transparency, effective use of funds, and multi-national regulations.• Transformed NATO’s business model for member nations’ projects and programme deployments. Educated and empowered partners from each institute, and teamed with national delegates to address contentious challenges.

• Directed initiatives to create Canada’s largest foreign signals intelligence capability. Gathered insights and built team of global experts. Advocated for and secured funding that increased capabilities and provided solutions for multiple legal frameworks.• Created global platform. Led three in-house software development teams and aligned with multinational telecom service providers; integrated legal requirements across jurisdictions; established operational support, and oversight for Canadian police, military, and signals intelligence agencies. Organized 24/7 security operations centre (SOC), and trained staff to enforce and report per ministerial authorities.• Deployed Security Services to over 120 Federal Departments, including the “Government Online”, the largest IT initiative in the world at the time.• Authored and published 7 federally binding IT security standards.