Manager - Cyber Risk Services
Current- Led entire Data Loss Prevention program development including solution implementation to reduce/prevent confidential data loss- Led Privilege Access Management solution implementation by adopting least privilege principles and removing 80% user's local admin rights via a global Avecto DefendPoint rollout, which reduce surface area for attack by 85% against vulnerable laptop and desktop endpoints- Defined an information security organization structure and develop policies to promote information security through the organization - Led risk assessments on client environment against NIST, HIPAA, ISO, and other regulations by creating and implementing a client-specific hybrid security governance framework, customized for their unique regulatory requirements- Conducted interviews and workshops to define client’s current security posture.- Developed security assessment reports which included current gaps and recommendations to remediate identified risks.- Managed clients’ (Fortune 100) project schedules and activities amongst eight application development work streams.- Led and conducted quality control reviews for a customer federally-mandated mortgage review process.