United States Naval Supply Corps Officer.-Logistics Contracting, Materials Management, Movement Support, Consolidated Mail, Fuel, Global Logistics and Husbanding, Hazardous Material Management, and Integrated Logistics Support.

Establish the foundational, mature and leading practices across People, Process, Technology and Data for the purpose of compliance (e.g., OCC, FRB, PCI, FFIEC, CCPA), cost savings and efficiency. Select programs/projects: Evaluate, select, design, and implement IRM/GRC and other platforms (ServiceNow, Archer, Salesforce, Celonis, Interos, ARIS, Proprietary Development) Develop Operating Models for 1st Line Business Control & 2nd Line Risk Functions (Org, Roles & Responsibilities, Job functions, Tools, Reporting, etc.) Establish Risk & Control Frameworks (RCSA, KRI, Risk Assessments, New Business Initiative Management, Continuous Control Monitoring) to meet OCC and FRB expectations Assess Risks & Controls for conformance to frameworks (e.g., Enterprise Process Management, RCSA) and for comprehensiveness (e.g., identification of gaps) Assess IT Application and Infrastructure Production and Development environments for compliance (e.g., GDPR/ NYSDFS/ CCPA, IT SOX, PCI)  Design Processes, Risks, and Controls for Modeling, Aggregation and Regulatory Reporting within CCAR/ DFAST Stress Testing Design IT GRC platforms for Application and Infrastructure Risks & Controls Assess Risks associated with emerging technology and methodologies (e.g., Cloud, Artificial Intelligence, Containerization, Virtualization) Assess IT Control Taxonomies and Inventories (ITGCs, Application Controls) for alignment with FFIEC, NIST, ISO and COBIT Design Processes for Enterprise Money Movement (Wire, Card, ACH, P2P) functions Identify Risks and Controls for IT Processes (ITIL) and Business functions (Commercial Banking, Payments, etc.) Lead Strategic Risk Reviews for New Business Offerings/ Initiatives (NBIs) Evaluate Business and IT Control Design and Strength in line with RCSA frameworks  Lead Management’s Assessments of the RCSA, and evaluation with Risk Appetite Review business environments for Process or Control automation opportunities

o Led the independent IT Risk/ Cyber global team for Virtual and Physical Server Infrastructure across the company, driving 1st Line of Defense execution of Risk Programs (e.g., RCSAs, ARAs, IRA/ ITAs, Resiliency, Pen Testing, etc.) and improving Infrastructure Health and Residual Risk Profile scoreso Directed policy, standard and procedure uplifts for vendor Virtual and Physical technologies and proprietary Infrastructure-as-a-Service (IaaS) applicationso Designed and delivered both short-term and long-term strategies for IT Risk/ Cyber programs, aligning Process improvements (e.g., SDLC, Patching, Release Management) with Risk, Control, Issue and Break/ Fix effortso Challenged 1st Line of Defense execution of Risk and Control Requirements (using FFIEC, NIST, COBIT and ISO) and the Issue remediation efforts for Regulatory Identified Issues (e.g., GDPR/ CCPA, PCI)

o Lead teams of up to 12 in the assessment, design and delivery of enterprise and operational risk, compliance, and risk technology and analytics projects across major Energy and Financial institutionso Direct multiple risk transformation activities including new programs and staff aimed at remediation of major Operational and Compliance incidents such as Safety Violations, Drilling Incidents, Rogue Trading, Cyber Security, Data Breach, Internal and External Fraud, and Sanctions violationso Build and enhance end to end Enterprise Risk, GRC, and pure Operational Risk Management programs from identification and measurement to an evergreen Risk Control Self-Assessment and remediation process. o Develop an integrated approach across the corporate lines of defense with Business Functions, Audit, Compliance, Legal, Risk and Controlso Provide Risk and Control advice to business strategy decisions, M&A activity, new product offerings, and platform redesigns o Manage compliance processes and conformance to standards associations through integrated risk and communications programs for agencies such as BSEE, EPA, OFAC, API, FRB, OCC, CFTC, etc.o Identify and deliver specific enhancements to operational business processes, credit, liquidity, market, political & government, model development, data protection and data governance, third party, internal conduct and reputational risks for compliance to specific regulations (e.g. Dodd-Frank, Basel, SR 11-08, CCAR, etc.)o Build KPI, KRI, and other Risk and Control reporting capabilities, including executive dashboards, interactive visualization, advanced analytics and statistical modeling for prediction and prevention of operational riskso Evaluate automation and technology opportunities such as RPA (Robotics Process Automation), Artificial Intelligence, Blockchain, Advanced Analytics & Machine Learning for improvements to operations and to minimize specific risks

Credit and Market Risk monitoring for CenterPoint Energy Services' Commercial and Industrial Natural Gas Marketing group. -Establish and Monitor Credit exposures-Calculate current and potential exposures for reporting purposes-Evaluate risk associated with full and partial fixed price Nymex and Basis, or Basis only transactions-Negotiate credit terms for proprietary and NAESB Natural Gas contracts

Build and manage key partnerships to deliver technology projects to energy companies in the Houston area. Projects included Commodity Trading Risk Management systems implementations, proprietary application development, and maintenance of data center and IT infrastructures.

- Platoon Sergeant and Section Leader- Amphibious Assault Crewman and CrewChief- Motor T Operator and Chief- Small Craft (SURC) CoxswainI led a platoon of more than 50 individuals in multiple training operations. Deployed in support of Operation Iraqi Freedom in 2005 and 2006, Deployed to South America in a joint training excercise with 11 different countries called UNITAS. Deployed to Austrialia in 2007 for a "war game" with the Australian forces. I spent my first four years at both Camp Pendleton and Camp Lejeune and my remaining four years with the local Galveston 4th AAV Bn.

I started my career in consulting at JDA, specializing in delivering and administering professionals on technology projects for multiple clients in the Houston area. I managed multiple clients, and IT professionals while meeting aggressive sales targets on a quarterly and yearly basis.