Lead the Information Security Program of a global provider of trading, clearing and information processing services. Also responsible for the Application Security Program. Report to the Chief Operations Offiicer. Lead global CyberSecurity and risk management to eliminate security vulnerabilities. Also lead CyberStrategy, Security direction and architecture, and outreach to the general Cybersecurity community working with UK, US and European agencies and regulators in establishing leadership in Cybersecurity. • Finished global rollout of SIEM, Vulnerability Mangement, advanced endpoint protection, advanced code scanning tools, identity management, and micro-segmentation to address global control gaps.• Implemented realignment of security controls, standards and architecture to protect deployment of group assets in the cloud.• Key driver of cloud migration plan and program. • Leader of cloud security architecture and deployment effort.• Lead with Risk and Business to rollout a cyberrisk framework based on quantitative key process and risk indicators.• Trebled cybersecurity team, retained talent and created a global team of cybersecurity experts with high performance and high employee satisfaction.• Renegotiated deals and strategic partnerships leveraging company standing to save £1M.• Reprioritized CyberSecurity strategy and deliverables to rationalize against current threats.• Addressed European Parliament and Bank of France regulatory forums.• Created marketing campaign to enforce CyberSecurity awareness in the company.• Deployed advanced static code scanning tool (Semmle) worldwide. Coordinated integration into CI/CD Agile process and remediation of security coding errors.• Deployed free and open source scanning tool globally. Integrated into CI/CD Agile process and remediation of results.

Responsible for the Information Security of an agency-focused global brokerage and trading related services provider with offices across the US and overseas. Report to the Chief Technology Offiicer. Creating firm-wide standards to integrate cross-platform measures in understanding, implementing and enforcing CyberSecurity and risk management vulnerabilities Leadership responsibilities include IT Security, Strategy, global security architecture, and IT Risk Management while making Convergex a thought and industry leader in Cybersecurity. • Aligning Convergex with industry CyberSecurity initiatives by gaining membership in FS-ISAC, and FSSCC.• Designed and deployed information security to the cloud by implementing AWS and Azure tools.• Using innovative and compliant CyberSecurity measures and architecture to integrate mobile devices and cloud-based initiatives.• Implementing security controls in the design process of the firm so that security is designed from conception through implementation, including vendor management and all Cloud based initiatives. • Architecting and integrating security monitoring of all server, network, middleware and applications.• Introducing data analysis tools to centralize and correlate all security monitoring for detection and prevention of intrusions and automation of vulnerability prevention.• Innovating risk management discipline based on objective numbers to measure CyberRisk across the firm with accountability for risk decisions. Creating firmwide picture of risk to drive firm decision making.• Redesigning and implementing Identity Management and Access Controls.• Implementing CyberSecurity awareness training firmwide through creative and interdisciplinary programs.• Managing interface with auditors and regulators for the firm on CyberSecurity issues.• Streamlining a holistic and scalable security architecture driven by automation and minimizing manual processes

Chief Information Security ArchitectResponsible for the overall information security architecture program. Report to Chief Information Security Officer, tasked to communicate security standards, guidelines & strategies. Responsibilities include IT Security Strategy, global security architecture, and creating solutions roadmap to meet architecture for the company and its’ European and Asia Pacific subsidiaries. Work with teams of experts across disciplines as well as chief enterprise architect and senior management to create and implement corporate standards and risk management strategies. • Building security program for new cloud based financial ClarientGlobal.com(And http://bit.ly/1w6JEXS)• Designed risk measurement and quantification program based on NIST and ISO 27001.• Involved in creating processes for merging corporate acquisitions. • Run program to identify, pilot and bring in-house new technologies. • Set standards and drive key information security processes: cryptographic standards, data protection, information management and third party access, application and infrastructure vulnerability assessment, vulnerability and threat management.• Extended the firm's security model into virtual and cloud initiatives, based on NIST & Fed RAMPs and encryption models.• Designed and deployed system to protect cloud hosted data with encryption keys to host sensitive data.• Strategy authority for projects and programs across corporate platforms.• Sought out and implemented leading edge technology solutions from Silicon Valley and Washington, DC resulting in industry partnership.• Re-designed and expanded application development security program to include remediation of coding vulnerabilities to protect the integrity of the corporation.• Conceived, designed and architected validation credential replacing digital certifications. Cost savings: $500K• Security monitoring and compliance architecture using SCAP, cut vulnerability triage from months to days.

Information Security Manager, Senior Project Manager & Technology ArchitectManaged creation and build out of integrated IT Infrastructure projects for emerging pharmaceutical company preparing national launch of newly-approved Alzheimers’ Drug.• Implemented Information Security Program• Re-designed and deployed firmwide storage area backup, revamped the corporate back-up and restore and networking strategy. Cost savings: $2MM• Established cost controls and inventory tracking systems.• Streamlined IT Infrastructure strategy for new product qualifications resulting in a 50% decrease of implementation time

Vice President & Senior Technology Architect/Manager, Investment BankingSet technology direction for the Global Investment Banking division, managing a budget in excess of $30M+. Deployed new and emerging technology to support the business units.• Created and built new infrastructure for global investment banking Internet portal used by 3,000+ users.• Introduced cost-efficient solutions for document management systems (Documentum) to enable deal book assembly within $10 million budget while maintaining a 99.99% Service Level.• Interviewed "C" level executives & advised investment bankers on IPOs and VC tech opportunities for companies in Boston, Washington, DC and Silicon Valley.• Designed, planned and executed 6-month, $10MM infrastructure recovery strategy for Investment Banking after the destruction of the data center on September 11th, 2001.

VP & Divisional Chief Information Security Officer, Manager, e-Commerce Technology, Asset ManagementPrivate Banking Division: Managed all e-commerce initiatives and related security. Managed $5MM technical budget. Led direct team of 10+ & matrix team of 60+.• Technical expert on implementation of JP Morgan Online, website created to provide asset management information for near high-net worth individuals.• B2B and B2C infrastructure and technologies supported dozens of 1st generation internet applications.• Built office infrastructure in Boston, hired team of 80 to develop and support online technology.• Delivered 10-fold increase in scalability, 70% cost savings, with no loss of stability on budget of $1MM.• Set up first firmwide security risk program with managers and Chief Information Security Officer.• Created and delivered technology and policies to firewall bank from internet security threats and vulnerabilities.

VP & Divisional Chief Information Security Officer, Manager, e-Commerce Technology, Asset ManagementPrivate Banking Division: Managed all e-commerce initiatives and related security. Managed $5MM technical budget. Led direct team of 10+ & matrix team of 60+.• Technical expert on implementation of JP Morgan Online, website created to provide asset management information for near high-net worth individuals.• B2B and B2C infrastructure and technologies supported dozens of 1st generation internet applications.• Built office infrastructure in Boston, hired team of 80 to develop and support online technology.• Delivered 10-fold increase in scalability, 70% cost savings, with no loss of stability on budget of $1MM.• Set up first firmwide security risk program with managers and Chief Information Security Officer.• Created and delivered technology and policies to firewall bank from internet security threats and vulnerabilities.

Associate, Strategic Messaging & Integration Group, World HQ IT Move Team, Network Planning• Designed and installed NY office switched voice technology in the company’s largest technical implementation project to open the Time Square Offices.• Moved 200+ PRI/T1 circuits, 24 DS3’s, including peripheral systems & integrated with UNIX network.• Managed $25M+ budget in Hong Kong and Tokyo to ensure automated processes within SLAs with no cost increases.