Mark Tomlinson

Mark Tomlinson Email and Phone Number

Senior Cloud Security Engineer at VMware @ VMware
Mark Tomlinson's Location
Washington DC-Baltimore Area, United States, United States
Mark Tomlinson's Contact Details
About Mark Tomlinson

Information Security professional with 12+ years of experience in the Information Technology field including 9 years of specialization in Information Security with experience in FedRAMP, PCI DSS, SANS CIS CSC, SOX 404, and multiple NIST frameworks.

Mark Tomlinson's Current Company Details
VMware

Vmware

View
Senior Cloud Security Engineer at VMware
Website:
vmware.com
Employees:
10
Company phone:
310203080170
Company email:
info@immidio.com
Mark Tomlinson Work Experience Details
  • Vmware
    Senior Cloud Security Engineer
    Vmware Jul 2021 - Present
    Palo Alto, Ca, Us
    View
  • Infor
    Cloud Solution Architect
    Infor Mar 2019 - Jul 2021
    New York, Ny, Us
    - Lead security team in identifying risks and remediating vulnerabilities as part of a continuous monitoring program for a FedRAMP authorized Cloud Service Provider (CSP)- Configure vulnerability and compliance scans using Tenable.sc (Security Center), Nessus, Burp Suite, Qualys and DB Protect to ensure full and accurate coverage of operating systems, databases, and web applications- Collaborate with development and operations teams to ensure weakness remediation within defined time periods- Provide deliverables for monthly continuous monitoring and audit findings- Develop policies and procedures for a robust vulnerability management process resulting in seamless integration between operations, security and compliance teams- Create automation scripts and procedures for continuous monitoring reducing costs and enhancing efficiency of assessments and operations- Perform gap analysis on applications for development teams to evaluate significance of change requests in relation to security posture- Collaborate with the technical reviewers for the Joint Authorization Board (JAB) to discuss continuous monitoring and vulnerability mitigation processes and strategies- Participated in 12 successful assessments for a FedRAMP authorized moderate level CSP- Integrated vulnerability management process to ensure continuous monitoring compliance for a regulatory environment
    View
  • Kratos Defense And Security Solutions
    Security Consultant
    Kratos Defense And Security Solutions May 2017 - Mar 2019
    San Diego, California, Us
    - Partnered with Cloud Service Provider (CSP) clients to develop holistic strategy management plans to ensure compliance with FedRAMP- Assessed and advise CSPs in attaining the Authority to Operate for FedRAMP- Developed System Security Plans and perform security gap assessments for CSPs utilizing controls identified by FedRAMP- Identified weaknesses within CSP vulnerability management plans, create remediation policies and procedures, and oversee implementation- Developed Python and PowerShell scripts to automate the FedRAMP continuous monitoring process- Acted as project manager to create automated processes in alignment with FedRAMP to reduce labor costs and ensure sustainable future compliance for clients
    View
  • Southern States Cooperative
    Information Security Architect
    Southern States Cooperative Jan 2015 - Apr 2017
    Richmond, Virginia, Us
    - Assessed vulnerabilities, recommended improvements, and implemented solutions to minimize risk to the business- Developed security policies and documented processes and procedures to be used for compliance and training- Conducted vulnerability assessments on company assets and monitored systems, networks, firewalls and IDS/IPSs for potential breaches and remediated issues- Actively managed company infrastructure to ensure only authorized devices, software, and users were permitted access- Utilized Splunk and vRealize Log Insight to automate diagnostic reporting and log analysis- Implemented and maintained Incident and Response Management procedures and conduct functional testing with team to ensure containment, recovery, and eradication of any incident that may affect the organization- Worked with internal audit and external QSA to ensure companywide compliance under PCI DSS for a tier 2 vendor- Implemented data classification, control creation, process auditing, and data governance
    View
  • Cognizant
    Information Security Analyst
    Cognizant Apr 2014 - Jan 2015
    Teaneck, New Jersey, Us
    - Focused on key operational, technical, and financial reporting controls within the assigned areas and scope for SOX audit- Detected operating deficiencies and proposed ways to remedy control failures- Identified mitigating controls to minimize risk exposures while adhering to established practices and SOX standards- Coordinated with team to meet client specifications for SOX compliance within a financial institution
    View
  • Cognizant
    Software Testing Analyst
    Cognizant Jun 2012 - Apr 2014
    Teaneck, New Jersey, Us
    - Tested software to ensure critical security practices were accurately addressed including separation of duties, input form sanitization, error message obfuscation to end users, and least privilege- Performed functionality, system, and performance testing to identify and communicate defects to developers then completed regression testing after defects were resolved- Organized defects and test results with the use of HP Quality Center quality management system
    View
  • New Enterprise Stone & Lime
    Pc Technician
    New Enterprise Stone & Lime Jun 2008 - Aug 2010

Mark Tomlinson Skills

Project Management Power Generation Contract Management Operations Management Maintenance Management Customer Service Business Development Contract Negotiation Contract Law O&m Epc Gas Turbines Steam Turbines Generators Hrsg Energy Energy Efficiency Engineering Commissioning Humanitarian Renewable Energy Energy Management Change Management Outsourcing Program Management Managed Services Professional Services Stakeholder Management Management Service Delivery Project Delivery Infrastructure Governance Telecommunications Prince2 Leadership Data Center Project Portfolio Management It Strategy Pmo Service Management Programme Delivery It Service Management Itil Pmp It Outsourcing It Management Resource Management Integration Solution Architecture Business Transformation Offshoring Vendor Management Business Process It Operations Sla Pre Sales It Transformation

Mark Tomlinson Education Details

  • Penn State University
    Penn State University
    Security And Risk Analysis

Frequently Asked Questions about Mark Tomlinson

What company does Mark Tomlinson work for?

Mark Tomlinson works for Vmware

What is Mark Tomlinson's role at the current company?

Mark Tomlinson's current role is Senior Cloud Security Engineer at VMware.

What is Mark Tomlinson's email address?

Mark Tomlinson's email address is me****@****psu.edu

What schools did Mark Tomlinson attend?

Mark Tomlinson attended Penn State University.

What are some of Mark Tomlinson's interests?

Mark Tomlinson has interest in Humanitarian Works.

What skills is Mark Tomlinson known for?

Mark Tomlinson has skills like Project Management, Power Generation, Contract Management, Operations Management, Maintenance Management, Customer Service, Business Development, Contract Negotiation, Contract Law, O&m, Epc, Gas Turbines.

Who are Mark Tomlinson's colleagues?

Mark Tomlinson's colleagues are 唐云萌, Taiga Kawasaki, Colin Aubin, Jed Glover, Roopa (C), Julien Alaniou, Shiva Prasad Krishnamurthy.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.