• Responsible for all IT infrastructure hardware and operations for the enterprise including information security, cloud services, server/storage infrastructure, WAN, telephony, systems availability, and systems recoverability• Develop, implement, manage, and enforce security policies and procedures as mandated by HIPAA, HITECH, PCI-DSS, FERPA, OPWDD, NIST, SOC2, and other applicable regulations or requirements• Ensure information security and industry best practices are implemented and revised as needed• Manage the IT Department’s Infrastructure employees, including the Systems/Network Administrator, System Technician, and User Support Technician teams• Prepare, manage, and forecast annual IT hardware capital and operational budget • Manage and maintain contracts and vendor relationships• Renewed CISSP (Certified Information Systems Security Professional) certification• Developed interviewing and hiring standards based on best practices• Reworked job descriptions, hiring parameters, and compensation for all positions to standardize the department and increase the candidate pool• Lead and participated in numerous initiatives and projects including: o NIST SP 800-53, SOC2, HIPAA and other gap analyses and remediationo Organization wide Cybersecurity Businesses Risk Analysis and remediationo Developed and implemented Information Security internship programo SIEM system deploymento Developed and implemented IT Disaster Recovery and IT Incident Response Programso Designed and implement the upgrade to new site to site WAN connections for a significant cost savings and to provide maximum redundancy and securityo Assisted in development and delivery of a Security Awareness training programo Migration to new telephony and mobile providers for a significant cost savingso Standardized and updated technical documentationo Redesign of wireless (WiFi) networks maximize available network bandwidtho Single Sign On for line of business applications

Teaching graduate and undergraduate evening/online cyber security and other Informatics courses.

Security Practice Manager | Project Manager 2005 - 2017 ADNet Technologies (formerly SAGE Computer Associates), Albany NY• Information Security, network and systems reviews, tests, and audits for client’s risk management and compliance, including HIPAA/HITECH, Sarbanes-Oxley, PCI DSS, and SEC compliance, as well as Business Continuity / Disaster Recovery • Incident response and investigations• Information Security and general technology articles, presentations, and lectures• Project manager for simultaneous successful projects, completed on time and under budget involving multiple stakeholders, sub-projects, varied technologies and multiple contractors and vendors• Project technical architect for Information Security, systems integration, and networking, and projects• Assisted with MSP service department management• Assisted with employee hiring and management• Assisted with department budgeting• Vendor management• Pre-sales engineering and sales• Achieved and renewed CISSP (Certified Information Systems Security Professional), CSSP (Certified SonicWALL Security Professional) and CCSP (Cisco Certified Security Professional, retired) certifications