Information Security Officer
Reston, Virginia (Va), Us
Managed department of highly skilled professionals responsible for all disciplines of security including audit, information, network, physical and personnel security audit; drove policy, audit and assessment programs; created and enhanced various corporate security and privacy policies, standards, guidelines, procedures and best practices based on various industry security, audit and privacy standards including but not limited to ISO 17799, WebTrust, SysTrust, PCI-DSS, HIPAA, SOX, Gramm-Leach-Bliley Act (GLBA) and California Privacy SB 1386; simultaneously managed and coordinated multiple SAS 70, WebTrust, SysTrust, PCI and ISO 17799 audits, and assisted with SOX audit; led presentations to customers, media, investors and politicians describing the company’s security practices; regularly assessed and remediated security risks in the software development lifecycle (SDLC) and quarterly disaster recovery (DR) exercises; designed, implemented and maintained 24/7 management of security that mitigated threats to personnel, property and information of the main campus and remote offices.• Instrumental in VeriSign receiving unqualified SAS70 Type II audit opinion and WebTrust Seal for five successive years and SunTone Certification, demonstrating to VeriSign’s customers its commitment to security.• Designed and implemented all physical security elements of VeriSign’s new headquarters, world-class data center and several remote offices, including iris scan biometrics, digital DVRs and 24/7 guards.• Thwarted a career criminal which resulted in a felony conviction.• Managed the security implementation, build-out and facility security assessments of world-class data centers for VeriSign’s international affiliates in Rio de Janeiro, Berlin and Toronto to ensure adherence to VeriSign’s Security and Audit Requirements.• Completed RFP for new contract security force achieving an annual savings of $120,000.