• Conducted Penetration Testing for: Network/Applications, Web Applications, Infrastructure/APIs, and Wireless networks.• Identified cyber threats, analyzed operational impacts, and communicated impact and risk to appropriate stakeholders.• Identified and managed existing and emerging risks.• Identification of gaps and vulnerabilities in applications and infrastructure. • Provide reporting and guidance to application shareholders and executive management.• Perform application security assessments and project risk assessments• Identify requirements and recommend system security configurations for new and existing applications.• Responsible for testing and validating the design and effectiveness of the ISEC controls. • Experienced with Tools including: Kali, Metasploit, Nmap, Nessus, Burp Suite, Wireshark, Recon-NG, Aquatone, Hashcat, DirSearch, DirB, OneSixtyOne, BaRMIe, EyeWitness, Nikto, SSLscan, Spiderfoot, enum4linux, Aircrack-ng, Python, Bash, etc.

• Performed Risk analysis for new and proposed SaaS Software. • Provided oversight to IT operational teams for standards, policies, risks and vulnerabilities.• IT liaison for SOC and PCI audits for multiple IT teams.• Worked on design, rollout and implementation of Metric Stream tool for Enterprise.

Led and participated in multiple security projects (Privileged Access) with global IT partners, providing planning, documentation, and Risk and Gap analysis across Client’s global footprint. Coordinated with working group members, application support and operations teams on various projects impacting the Privileged Access management program. Designed and implemented Metric and reporting processes as well as trend analysis. Provided in person and web-ex training for over 17000 users. Documented and maintained program related training and awareness materials and communications. Facilitated multinational discussions and meetings to drive initiatives and program issues to conclusion. Provided 3rd level support for EMER-Access reporting and auditing tool.

Responsible for managing the planning and delivery of software solutions into the production environment in over 100 countries globally. In order to prevent incidents due to software deployments I was responsible for reviewing project plans, business environments, support contracts, test plans and analyzing project risks. My main responsibility was to ensure that all new projects coming into BP were ready for deployment to Production and and that all IT Risks had been identified and mitigated as needed. This involved working with the Project Managers, Application Managers, System Architects and Support groups to ensure everyone was on the same page and that a clear and complete set of tasks and deliverables were defined. I was responsible for ensuring that the projects that went live were fully tested and in compliance with BP security and software policies.Key Responsibilities:• Managed and oversaw Project Transitions from design through to operation.• Ensure that all Digital Security risks are identified, documented and mitigated where possible.• Reviewed new projects and applications for Application access and security issues, DR planning andend to end business process mapping.• Manage Transition Management demand and ensure the appropriate resources are available forproject transitions.• Presented project progress and High operational risks to Upper Management and leadership teams.• Identified, planned and executed transition process improvement to increase process efficiency, maximise value add to the organisation and also reflect environment, IT&S Standard and wider organisation changes.• Ensured that the Operational Integrity standards are adhered to.• Acted as Service Management Subject Matter Expert within IT&SiF on an on-going basis supportingnew Application Managers and Project Managers• Implemented Service Improvement initiatives to improve operational performance

As Enterprise Infrastructure Release Manager led and coordinated planning and deployment of software and hardware into Development, Testing and Production environments. Managed all Installs and Changes for Facilities, Datacenter, Networking, Telecom and Security Groups as well as the Windows, Linux and Unix support teams. I Managed Day to Day Changes, patches and upgrades as well as monthly patching and Emergency Patches. Ensured that any changes to the infrastructure adhered to all Digital Security and Access Control requirements. Responsibilities included Business Analysis, Planning, Coordination and Communications, Schedule Building, Tasking, and Deployment of both Software and hardware installs thru multiple environments and multiple locations with minimal impact and downtime. Responsibilities also include Team Management, Conflict resolution, Issue Reporting, Identification of impacted business users, units and facilities. Negotiation of timetables with business partners, developement and testing to reduce system unavailability durations. Participated in weekly Post Implementation Review meetings to identify issues from past releases and design and implement controls and processes to eliminate those issues in future releases. Also responsible for executive level reporting for all Internal Infrastructure changes and deployment related issues.

Designed and implemented Change Controls and ITIL practices into the Oracle Database environments for LGB&S. Reviewed and approved new changes to existing testing and production environments.

Consultant - Oversaw the merging of the Change Management and Release Management Teams successfully into a new Change Management Center of Excellence based on ITIL principles. Led process improvement teams working to reduce workload duplication and streamline processes. Acted as a liaison for the Change Management Center of Excellence and the IT Operations division.

Oversaw all changes to 15 Dell manufacturing facilities in North/South America, Europe, and Asia as part of 2-person team which included serving as liaison for IT development, testing, and manufacturing. Analyzed, prioritized, and scheduled all Requests for Change (RfCs) to manufacturing environment. Negotiated “Release Windows” for downtime to manufacturing facilities. Reduced planned and unplanned downtime. Produced reports and metrics regarding deployments and manufacturing uptime

Provided operational support to branch managers of 8 remote sites in New York City to include conducting financial investigations, processing service requests, and performing account research.