‣ Chief Cyber, Risk, Compliance and Privacy officer, reporting to President and CEO.‣ Developed and implemented comprehensive cybersecurity strategy for nationally distributed organization governing security program compliance with regulatory, legal, industry mandated and organizationally selected standards (NIST, ISO, CCPA, FAR, DFARS).‣ Developed and implemented plan for secure digitization and migration of all services to the cloud. ‣ Led response to data management requirements for CUI transmission, storage, and processing. ‣ Consolidated security toolsets and ensured integration of threat intelligence, vulnerability, compliance, event monitoring, identity and access management, data security, and data loss prevention information for endpoints, networks, perimeter, messaging, mobile device, cloud, and identity sources.‣ Led security and IT team responsible for cyber incident identification and response, resulting in significant reduction of response time (from days to minutes) and increased automation of response capabilities.‣ Established and led board of cross-functional leadership for cyber incident escalation and insider threat management.‣ Developed and implemented plan for supply chain risk management including the establishment of an internal metric for estimating the risk of vendors and suppliers based on the criticality of services provided and data sharing and assessing standards-based reporting (SOC, ISO), information collection through questionnaires and interviews, and publicly disclosed security incident and breach information.‣ Partnered with service and business leaders to align security initiatives with business objectives and enhance security posture.‣ Led response to internal and external audits of security and risk management practices to identify and remediate control deficiencies.

‣ Cyber Security Practice Lead and member of CTO team, providing strategic advisory to executive leadership and board. ‣ Identified and developed strategic and tactical plans for enterprise cyber security enhancements. ‣ Ensured compliance with regulatory, legal, and internally selected industry standards for cyber security, supply chain risk management and data management (NIST, ISO 27001, FAR, DFARS). ‣ Spearheaded governance, policy development, architectural design and implementation for enterprise security initiatives and programs including: • Securing the remote work force, enhancing identity management • Proliferation of multifactor authentication services to internal and externally hosted systems • Migrating critical systems and services to cloud platforms • Decoupling critical services from physical work locations • Instantiating vendor and supplier risk management and Supply Chain Risk Management practice • Leading cyber incident response board with corporate service and line of business stakeholders • Developing and executing Cyber Hygiene regulatory compliance plan • Cyber Security Solutions Architect/Engineer for government sector

‣ Cyber Security Solutions Architect/Engineer for government sector‣ Solutions Architect for Continuous Diagnostics and Mitigation / Continuous Monitoring as a Service (CDM/CMaaS)‣ Subject Matter Expert for systems integration planning‣Technical lead for IDS and WIDS implementations‣Vulnerability and Compliance Scanning for Continuous Monitoring Program at USG client‣ Lead operations engineer supporting implementation of security tools including Tenable Security Center, Cisco SourceFire, Splunk, Cylance Protect and Triton ForcePoint DLP‣Lead for requirements analysis and product evaluation for USG client‣ Development of scripts and regular expressions for security system ETL and data correlation‣ Business development technical lead for federal, state, local and tribal proposals

‣ Lead resource for solution design and proposal development for cyber security contracts‣ Responsible for department training budget and allocation across cyber security staff within the Health and Civilian Solutions Division‣ Staffing and hiring manager for cyber security solutions programs and contracts‣ Supported initiatives of multiple directors and vice presidents in the Health and Civilian Solutions Division

‣ Project Manager and team lead for all project managers and site leads for Enterprise Server Operations Center (ESOC) for the US Department of State, Bureau of Information Resource Management, Systems and Integration Office ‣ Oversight of five direct report staff members in the Project Management Office including two remote site managers. Lead the PMO team in planning and coordinating operations activities for a team of 55 Tier 1 and Tier 2 support personnel and planning project activities across all functional lane Tier 3 engineering teams in global operations across five domestic data centers and over three-hundred internationally distributed data centers.‣ Lead representative for Data Center Operations and Support teams on a multi-disciplinary task force established to respond to cybersecurity incidents, events and active persistent threats (APT). Responsible for incorporating intelligence and threat analysis from engineering and security groups and recommending redress, response and remediation actions to senior management.‣ Responsible for all project life cycle processes and execution of all projects for data center operations for the Department of State‣ Defined and improved processes for the coordination and management of all operational support activities for the data centers and all network activities internal to the data centers to bring performance in alignment with the strategic direction from senior government officials‣ Identified KPIs and developed metrics and trending to inform Division and Bureau leadership of operational performance trends and identify process improvement objectives‣ Led PMO team in establishing career development plans and mentoring support staff

‣ Systems Security architect for a global deployment and integration team responsible for the roll out of a workflow system across the Department of State enterprise.

‣ Project Manager of software development team for a public facing web-services application‣ Directed activities of six direct report engineering, analysis and administrative staff as a project manager and senior security engineer for the Enterprise Engineering Services Office of the U.S. Department of State, Bureau of Consular Affairs, Enterprise Systems Division‣ Oversight of security architecture and design standards and implementation of relevant NIST, FISMA, and Privacy Act/PII protection and 508 compliance

‣ Senior engineer and project manager for integrated system testing: Staging, configuration and test of SIEM, IDS and WAF systems (NetIQ, Riverbed, and F5: Big IP and custom Universal Inspection Engine configuration) for a globally deployed, public facing customer system with multiyear exposure to known active persistent threats from foreign state agents targeting system availability and integrity.

‣ Transitional project manager for an at-risk project to customize and integrate off-the-shelf incident management software. ‣ Took over management of the project mid-execution and brought processes under control, consolidated and prioritized a backlog of over 300 requirements from multiple stakeholders, aligned transition management plan with existing SDLC and release management processes of customer organization. ‣ Oversaw three consecutive successful quarterly release cycles, acquired talent for future project management and transitioned control of project to new resource.

‣ Technical Lead for international deployment of proprietary secure communications system at seven U.S. Embassies and eight U.S. Consulates, worldwide.‣ Coordinated and performed cut-over activities to retire legacy telecommunications software and hardware systems‣ Ensured continuous operations and worldwide awareness of each site’s transition to the new system.‣ Tailor deployment plan and schedule for each site and performing remote configuration tasks for pre-deployment.‣ Acted as subject matter expert on mandatory access control / data loss prevention messaging and records archival system; Briefed Senior Executives and trained all Technical and Security staff for each site.

‣ Project lead for Systems Architecture, Security Design, and Information Assurance on consulting team responsible for enterprise integration of proprietary analytics software‣ Developed SAS data mining and systems programming for multi-Terabyte ETL projects‣ Designed advanced analytic programming in SAS to automate anti-fraud intelligence for expert systems.‣ Specialized in commercial banking fraud and identity theft solutions.

‣ Successfully executed multiple projects in a matrix team environment, including: ‣ Design of custom global HR systems for the US Department of State, Bureau of Consular Affairs ‣ Design and implementation of a fraud tracking web portal including analysis tools, analytics and dashboards ‣ Sunset of legacy operational, administrative and management systems including planning for continuity of service and transition to modernized systems ‣ Assisted in consolidation of vendor contracts and establishment of primary vendor points of contact and consistent escalation policies and procedures across the enterprise

‣ Managed high-profile deployments of hardware and software installations on-site at 10 U.S. Embassies and Consulates worldwide.‣ Managed communications and project schedules with customers‣ Developed and analyzed internal processes‣ Lead development of custom software and systems solutions to improve deployment team efficiency and align with internal processes.‣ Developed communications plans for global pilot programs and for international deployment teams in dangerous and hostile physical security situations.

‣ Designed and developed encryption and secure sales software in C, C#, Assembly, ASP.NET and Lingo‣ Managed team of developers producing multimedia computer-based training applications‣ Responsible for interviewing and hiring technical staff‣ Worked directly with CEO and COO on business development initiatives including planning for trade shows and marketing initiatives‣ Produced kiosk sales tools for a variety of software solutions‣ Designed sales tools for product retailers and resellers

‣ Taught computer lab sessions in interactive digital media and web design

‣ Provided Operational Tier 1 Support Services