As a Sr. Director of Identity & Access Management, I head the operations and strategic development of the Identity and Access Management (IAM) function at HCSC. I lead and manage the daily activities of various teams with a headcount of over 40 personnel accountable for delivering services in areas of Identity Management, Role Based Access Control (RBAC), Manual Access Provisioning, Privileged Access Management, RSA Multi-Factor Authentication, Mainframe Top Secret Security (TSS), Virtual Directory Services (VDS), Delina (Centrify), and zOS DB2 security. During my tenure, I have planned and executed a major upgrade of CyberArk 10.10 to 12.6 and conversion of legacy Active Directory to new Active Directory. I have maintained 79 HITRUST controls to ensure certification and support of SOC1/SOC2 as well as devised and implemented key controls for monitoring off-shore access compliance. I have also reduced new hire access during onboarding from 10+ days to less than 2 days. I consistently drive organizational development efforts to increase efficiency in operations and service delivery. Thus, I hired three managers to ensure proper delegation and span of control within Identity & Access Management areas and established a new Directory Services team.

As a Sr. Manager of Privileged Access Management, I provided leadership and oversight on all identity access and privileged account processes as well as managed and guided a diverse pool of technical team members supporting Privileged Access Management, Mainframe Top Secret Security (TSS), and zOS DB2 security. Among my core accomplishments in this position, I can list my pivotal role in the conversion of Broadcom CA Privileged Access Management to a new CyberArk 10.10 platform and the expansion of the use of the Privileged Access Management discipline beyond the traditional infrastructure

In this role, I served as a cybersecurity leader within the IAM Team who owned all aspects of operations for the Identity and Access Management service, developed an appropriate access and governance framework, and delivered security solutions to facilitate secure and controlled access for Corporate and Community workers across 2 primary headquarters and 1000 Community locations. I successfully integrated the next-generation Identity Management cloud-based solution to consolidate on-site solutions into a single off-premise solution to meet high availability and security requirements. I also increased the scope of Sarbanes-Oxley 404 IT Controls to nine control objectives and led the team to achieve a defect-free Sarbanes-Oxley audit.

As a Manager of IT Applications - Identity Management, I effectively sustained the Enterprise Identity Management environment across 2 primary headquarters and 1100 Community locations by managing and developing a dedicated Identity & Access Management (IAM) Team. In this role, I facilitated the implementation of the leading-edge Identity Management architecture and contributed to the execution of a full Identity Management Assessment and the IAM roadmap development in close collaboration with an external consulting firm and internal partners. I also oversaw 80,000 identities with Entitlement Mapped data from 52 target systems that allowed for bi-annual user accreditation to meet regulatory requirements and forwarded the team to achieve a defect-free Sarbanes-Oxley audit.

As a Manager of IT Service Delivery - Identity & Access Management, I was responsible for delivering an Identity and Access Management (IAM) strategy and roadmap, maintaining and optimizing security solutions to achieve the business objectives, and supporting the definition and integration of operational processes for Kohl’s Department Store with 200,000+ identities. I led a team supporting the current generation IBM Tivoli Identity Management system and spearheaded the implementation of the next-generation IBM Tivoli/Lighthouse solution in a SaaS environment.

Worked with Senior Security team to developed a new consolidated Identity & Access Management (IAM) discipline providing required access within the company in a controlled, cost effective manner; worked with HR to define processes and authoritative master data; led 4 successful releases.Participated in Discovery workshops to plan and create long-term security services focused on capabilities and the enabling technologies, e.g. Authentication, Directory, Authorization, Active Directory, IdentityIQ, OpenSSO.Provided required IAM expertise as an adjunct member to the Enterprise Architecture team.Worked with management to identify and address 9 significant controls-related deficiencies by implementing new sustainable processes and utilizing existing COTS software.

Led Global Operations Center team of 32 indirect reports and Manager providing 24x7 infrastructure and application monitoring and escalations, Job Schedulers supporting global business process automation within the SAP ERP system, and Security Account Administration and Windows Security teams to ensure proper user access within the defined Service Level Agreement (SLA).Successfully reduced service delivery cost by consolidating 4 teams into 2 with the elimination of 3 management positions including my own.

Worked with Directors to create the initial SAP Support Center and team within a $6M budget. Led SAP Center team of 6 direct and 50 indirect employees and a managed service provider (HCL) to provide 24x7 support.Managed Tier 1 Help Desk and Tier 2 Break/Fix teams providing first call resolution and system stability for areas of Basis (core technology layer), Business Warehouse (BW), Customer Relationship Management (CRM), Finance (FIN), Human Resource (HCM), Interface (XI) and job scheduling.

Enhanced and extended IT infrastructure functionality by supporting “Steady State Production” activity and allocating resources in support of new Business Unit Initiatives and IT Internal projects.Reduced IT incidents by 80% by strengthening Service Recovery, implemented team mentoring and standardizing processes and procedures, far exceeding original goal of 30% incident decrease.