Leadership position covering all aspects of Cyber Security.

A highly skilled and innovative information security professional with more than 20 years of experience within a business responsible for protecting millions of individuals personal, health and financial information. Responsible for Alight’s security architecture and engineering teams including cloud security , application, data and endpoint security. • Leader of security architecture team responsible for deploying and migrating Alight’s application and infrastructure into AWS and Azure• Leader of endpoint security architecture and engineering team responsible for strategy and deployment of advanced endpoint solutions including: EDR, CASB and advanced endpoint protection• Leader of data security architecture and engineering team responsible for database activity monitoring, data loss prevention, data discovery and encryption solution execution and strategy. • Leader of application security architecture team with responsibilities including static, dynamic and open source penetration testing solutions with a focus on embedding security early within our SSDLC. • Responsible for assessments of merger & acquisition target’s security programs.• Leader of global risk & compliance program including GRC solutions and strategy. • Presentation of risk profiles to senior executes thru an advanced metrics program.• Responsible for multiple managed service provider relationships including financial and day to day delivery accountability.

Information Security strategy involving data loss prevention, vulnerability management, incident response, and penetration testingManagement of a high number of client on-site assessments focused on information security program architected to protect millions of individuals personal, health and financial information. Authentication and Fraud prevention strategy for Pension and 401(k) outsourcing businessRegulatory compliance strategy involving PCI and HIPAA governed applications and infrastructureManagement of incident response program involving centralized a security event information management system and advanced threat detection solutions Developed global information security policy and standards that cover all aspects of information security and privacy Consults with key internal and external business partners on implementation of services based on policy and standardsManagement of 360 risk management cycle including detailed risk descriptions and managed policy exceptions involving key internal and external partners.Sponsors key information security topics inclusion into annual security awareness training Compliance management of infrastructure cloud providers including detailed metric program that measures agreed upon service level agreements.

Data loss prevention program design and implementation including enforcement paradigm and incident response processCustomer Identity Management Strategy including authentication, authorization and fraud prevention strategy for customer base greater with more than 10 million usersVulnerability Management for large and diverse infrastructure involving Window, Unix, Novell, and z/OS operating systems along with an assortment of middleware, database and application deploymentsRACF paradigm design, administration and compliance supportManagement of SAS 70 audits for various operating system, database and application deployments. Anti-Malware strategy and program implementation and management

1999–2004 Delivery Group Manager of Application OperationsManaged staff of 3 teams totaling 15 associates.Team supported application with more than 10 million external usersApplication Security Paradigm Analysis and Administration24 x7x 365 Application Operational Support Disaster Recovery Testing and Business Continuity Planning for application infrastructure Application Performance Analysis and Stress TestingApplication Architecture Design and Implementation Capacity Planning

Managed staff of 6 developers, and QAsDesigned, and Managed projects developed in Object-Oriented Cobol in a DB2/CICS environmentApplication performance specialist in Batch Processing, DB2 table, Index, and Access Path Design, CICS throughput

Object-Oriented Cobol DevelopmentDB2 table design