Reporting to CTO. Lead initiative to assess, budget, and plan for FedRAMP High and NIST 800-171 compliance. Responsibility to provide business value and lead enterprise IT Infrastructure, IT Services, and Operations as well as CISO function. Responsible for IT planning, IT strategy, IT systems, information technology infrastructure operations, Help Desk, networks, etc. Strong strategic direction in implementing Artificial Intelligence Gen AI /LLM Security Policy, Framework, and Controls based on NIST, MITRE ATLAS, and OWASP. Oversaw all aspects of Infrastructure Engineering projects, ensuring timely completion and alignment with company standards. Lead Ransomware Resilience initiative and maturity assessment to proactively identify and mitigate risk from ransomware threat. Accountable for Vendor and Partner risk management, focused commitment, and performance. Partnership with Product Development teams for launch of new products. Manage work of teams, performance reviews, establishing quality goals, quality of service, staffing plans. Enabled the development and execution of Computer Science based projects that significantly improve business operations. Successfully developed strategic planning by understanding and analyzing business priorities. Spearheaded the adoption of new technologies, resulting in a significant improvement in overall team productivity. Led cross-functional teams by developing schedules that optimize resources and improve project efficiency. Demonstrated strong leadership skills in overseeing complex research projects and their implementation

Responsible for CISO function. Accountable for establishing and implementing a comprehensive Cybersecurity program at strategic, policy, and operational levels to support business strategy. Established standardized teamwork and communication solutions across teams and mechanism to track and prioritize work. Successfully led specialized team for HITRUST, HIPAA, SOC2, CMS, NIST/FISMA statutory compliance. Responsible for creating and leading CISO cybersecurity board presentations, content, and deliverables. Groundbreaking teamwork and partnership with Blue Cross Blue Shield Association cybersecurity teams. Identified fiscal savings of 50% for security budget via application and vendor rationalization, followed by solution consolidation. Successfully established and led Privacy and Security Executive Committee, including policies and procedures creation, facilitation. Proven ability for operational success of Information Security tools and capabilities such as EDR, SIEM, VSOC, CASB, MFA, DLP, Vulnerability Management, Ransomware protection and resilience, and more. Utilized advanced analytical tools to summarize data and present actionable insights to the executive team.

Managed security, risk, information governance, audit controls, and security compliance for hundreds of organizations, thousands of employees, tens of thousands of privileged systems, and billions in related annual revenue. Overall management of security policies, information security, and auditing, regulatory compliance, service integration and management, and security management practices of tools, process, frameworks, and staff. Spearheaded major IT Leadership initiatives resulting in streamlined operations and increased productivity. Enhanced Technology Capabilities throughout organization by spearheading strategic adoption of cutting-edge platforms and tools. Led third-party risk management policy, security programs, and contract language for services business and vendor management. Utilized advanced understanding of business concepts to strategize and execute company-wide initiatives. Led enterprise assessments for CIAM, IAM, PAM, and IGA tools, standardization of identity governance, reliable implementation of global identity consolidation, and identity governance solution. Developed performance metrics tied to Business Goals, driving overall improvement in organizational efficiency. Championed identity governance initiative to standardize hybrid authoritative sources, establish single identity, automate lifecycle management and influence provisioning for mission critical systems. Successfully oversaw Full Life Cycle implementation of enterprise software solutions, leading to increased operational efficiency. Designed and implemented ServiceNow IRM / GRC solution, including unified compliance frameworks. Led specialized team of contracts subject matter experts and consulting services for information security and compliance. Ongoing successful third-party PCI DSS, SOC 2, ISO 27001, HIPAA, and NIST compliance, auditing, and security assessments. Core member for M&As due diligence activities and business integration of IT and financial systems.

Consolidated and synthesized IT GRC capabilities matrix to drive maturity, growth, and ownership. Approved, negotiated, and wrote risk and security terms for services agreements, security assessments, vendor relationships. Created technical skills taxonomy, process, training, and solution to more easily match people to work, provide learning paths for coworkers, support resource allocation forecasting and to supervise staff development and emerging technologies. Spearheaded global enterprise consolidation for licensing and SaaS solutions, creating meaningful cost savings. Created third-party risk management policy, risk management process, security programs, and contract language for services business. Created multivariate revenue and profitability Monte Carlo simulations for modeling and statements. Performed ongoing risk assessment C-level leadership on alignment / gaps, performance, and roadmaps. Utilized strategic planning skills to develop schedules to streamline operations and enhance productivity.

Oversaw the security and governance for over 1,000 engineers, thousands of organizations, tens of thousands of privileged systems, and hundreds of millions in related annual revenues. Led successful implementations and integrations of ServiceNow ITSM platform, sales force automation (SFA) tool, and customer relationship management (CRM) solution. Implemented ServiceNow IRM / GRC solution, including unified compliance frameworks and security assessments integration. Led Full Life Cycle project management for strategic initiatives resulting in significant business growth. Automated workflows, tasks, and requests throughout IT operations and to execute compliance. Developed Range Plans and integrated product engineering development with security and compliance reviews. Migrated and replaced embedded monitoring solution for managed services customers and customer success teams. Standardized objectives for service levels, service level agreements, key performance indicators, and competitive positioning. Led division-wide continuous process improvements (CQI) program; business analysis and business processes matured. Automated secure, remote services delivery and leveraged best practices for management information systems. Reinforced expectation to identify root cause of an issue, and to employ problem-solving skills, problem-solving ability, and to reserve judgment before having facts. Embraced flexibility and accountability, monitored technology trends.

Co-created CDW patent for management nodes/avatars, creating methodology to establish and facilitate remote services securely through security technical architecture and security technologies and leveraging edge computing. Identified tenfold decrease in deployment time for managed services implementations, increasing business opportunities. Focus on financial management, quarterly business reviews, and reduced managed services implementation costs by 400%. Facilitated 75% reduction in operating expenditure incident handling costs through analytical remediation / optimization. Realized 60% reduction in service level management efforts through component implementation. Developed standardized, consistent contract language and clauses for security and compliance. Replaced legacy ITSM / ticketing system for managed services operating model, monitored business performance trends.

Implemented and administered security tools, mentoring of staff and coworkers. Implemented and owned security controls. Supported compliance and audit efforts as control owner and subject matter expert.

Emphasis on understanding business processes and needs and developing solutions to meet those needs. Implemented and managed solutions for customers and internal, including SaaS solutions and custom-developed solutions.

Emphasis on understanding business processes and needs and developing solutions to meet those needs. Implemented and managed solutions including SaaS solutions, customer-facing, and custom-developed solutions.

Led implementations for critical customer and internal strategic initiatives.

Enterprise liaison and primary contact for high-profile Services customers and company. Customer advocacy, deep understanding of customer's business, and technical and support intricacies to enable company to effectively support Customer, meet service level agreements, and identify growth opportunities.

Responsible for management of core revenue-generating service and systems. Managed majority of capital budget and capital expenditures while working in conjunction with internal departments, outside design firms, vendors, and technical solutions partners. Designed and implemented a database-driven workflow system used to improve corporate communication and business process optimization. Helped design, integrate, and maintain a system for tracking royalty contracts and payments for Artville artists and product sales.

Cutting-edge product development and photographic lab workflow solutions with Kodak, Fuji, and independent labs for commercial photographers. Responsible for the development and maintenance of corporate, partner, and product websites, presentation materials, and marketing collateral as well as training, support, and customer service.