- Manage a global team of security engineers that support the security suite of tools for the enterprise which includes EDR, SIEM, DLP, PAM, Vulnerability management, Cloud security, Email security, Web Gateway, Identity Protection, Firewall security, and other technical needs for the security department.- Hire exceptional individuals, establish developmental plans, coach to the needs of the team, perform reviews, and support their projects and initiatives by removing blockers and helping them establish successful paths.- Establish and develop strong vendor relationships, and partnerships with key business and technical resources.- Develop and maintain program level roadmaps for strategic advancement of the security department and ensuring compliance with enterprise regulations.- Drive team growth and program maturity through operational improvements, automation, and targeted development opportunities.- Lead projects for security technology integrations while developing and enabling the team to independently support security projects.- Establish effective process and drive automation to reduce operational time, reduce organization risk, and increase productivity.- Establish and utilize metrics that ensure successful administration and operational response.- Provide architectural oversight, direction, and effective implementation for global security solutions.- Evaluate enterprise architecture, systems, networks, and data to determine effective security controls and solutions.- Interpret and give recommendations on controls to meet compliance and regulatory requirements for NY State/SOX/GDPR/NIST/etc.- Assist in development of security policies, standards, and procedures.- Serve as a high-level technical security resource on enterprise network, system, and application implementation projects.- Effectively communicate complex security problems and recommended solutions to an audience with varying levels of security and technical knowledge.

- Provide architectural oversight, direction, and effective implementation for global security solutions.- Serve as a subject matter expert (SME) for a variety of security tools to include design, implementation, operation and maintenance of security tools and solutions.- Security SME for ongoing support of Azure and O365 solutions to include; Azure Sentinel, Azure Advanced Threat Protection, Azure Security Center, Cloud Application Security, Security & Compliance, and O365 security.- Evaluate enterprise architecture, systems, networks, and data to determine effective security controls and solutions.- Interpret and give recommendations on controls to meet compliance and regulatory requirements for NY State/PCI/GDPR/NIST/etc.- Assist in development of security policies, standards, and procedures.- Evaluate and recommend new and emerging security products and technologies.- Understand current and emerging security threats and design security architecture to mitigate threats where possible.- Serve as a high-level technical security resource on enterprise network, system, and application implementation projects.- Serve as a high-level technical security resource for other departments within the Security division.- Effectively communicate complex security problems and recommended solutions to an audience with varying levels of security and technical knowledge.- Develop process and documentation to support ongoing security systems operations, maintenance and problem resolution.

- Security project lead for proof of concept and security technology implementations.- Security SME for enterprise next-gen firewalls to include; policy and rule reviews, policy and hardening recommendations, and URL filtering management.- Lead for patch rating and vulnerability management.- Security SME responsible for the management of the enterprise EDR solution including; client and policy management, and user training.- Security project lead for proof of concept and implementation of a web proxy with SSL inspection.- Effectively integrate and administer security tools such as Azure security solutions, EDR, UBA, vulnerability scanners, forensics and others.- Create documentation, process flows, policies, and standards to mature the Information Security program.- Create processes and playbooks utilized by the Security Operations Center (SOC) and participate in IR as needed.- Stay up to date on the latest threats and exploits, and effectively use intelligence to evaluate their effect on the business.- Respond to alerts, user tickets, emails, and calls in a timely and professional manner while working effectively as a team or independently with little supervision.- Participate in security assessments as required to identify gaps and vulnerabilities.- Problem solving and remediation of complex problems.

- Manage the enterprise intrusion detection system to analyze traffic for network security incidents- Administer the company spam firewall and web filter appliances- Security project lead for proof of concept and implementation of a security information event management system(SIEM), denial of service(DoS) mitigation solution, mobile device management(MDM), and Azure cloud migration- Manage the enterprise SIEM including; create and modify rules, queries and correlations to alert for various high threat network events- Manage a cloud hosted DoS mitigation solution and web application firewall (WAF) - Create documentation, policies, and standards to mature the Information Security program- Create incident response(IR) documentation, create and present IR training, and participate in IR as needed- Respond to alerts, user tickets, emails, and calls in a timely and professional manner while working effectively as a team or independently with little supervision- Problem solving and remediation of complex problems

- Manage the University anti-virus solution installed on 2100 endpoints. Duties include creating policies & deployment packages, monitoring virus activity, and creating reports- Implemented a data loss prevention solution to prevent the loss of personally identifiable information. Manage scans for SharePoint, Exchange, file servers, endpoints, and public facing web server- Utilize an enterprise vulnerability scanner to provide monthly reports for presentation to administration that identify potential threats and vulnerabilities and make recommendations on patch and vulnerability management- Implemented a security information and event management server to correlate events from various servers and firewalls to proactively monitor the security and information technology infrastructure. Create and modify rules, queries and correlations to alert for various high threat network events- Installed and modified a Linux based audit and incident tracking system for the Information Security Department that is utilized for metrics for IT Security strategic planning- Implemented an intrusion detection system to analyze traffic for network security incidents- Increase user awareness by maintaining the IT Security website and Twitter account , as well as creating Security Awareness presentation used for new employees and annual security awareness training- Assist the ISO with risk assessments and audits on existing and proposed systems, as well as, documenting and providing recommendations- Develop policies, procedures, and standards for the enterprise environment