Mark Petersen Email & Phone Number

Milwaukee, Wisconsin, US

Information security risk manager for several business divisions of a leading fintech firm. Conduct security vulnerability reviews for application code and system architectures based on code scanning system reports and submitted architecture diagrams. Work with code vulnerability tools and metrics to advise on cybersecurity and vulnerability management.

Security incident response manage responsible for all security incidents and processes through outsourced cybersecurity operations center (CSOC). Developed and enhanced approach to cybersecurity incident management based on Mitre Att&ck methodology with a baseline of known tactics and techniques and a view toward business risk management. Tracked and.

PL

Security planning and playbooks, operations runbooks, and training engagements with private and government contractors involving U.S. critical infrastructure installations. Security clearance.

Completed long-term educational goal.

Bridgewater, New Jersey, US

• Senior Program Manager/Senior Info Sec Leader
• Hired to realign full-scope security program with business, functional, and technical requirements & specifications ($200,000,000 Program)
• Two-year assignment
• Executive Security Playbook/Runbooks
• Program Management Office
• Cloud computing

New York, New York, US

• Chairman, Global Key Management (KM) Working Group for IS Risk Op Committee
• Improved/centralized certificates
• Aligned KM/encryption standards (ISO2700X, COBIT, PCI)
• Developed base standards for crypto KM (asymmetric/symmetric) for network, systems, apps
• Developed business requirements for central KM solution
• Provided subject matter expertise

New York, New York, US

• Incident Manager on Cyber Security Incident Response Team (C/SIRT)Directly involved in activities for hundreds of internal and external (cyber security) incidents:
• Participated in Daily Incident Triage
• Supported Legal and HR Investigations
• Provided Guidance to Security and Operations Staff
• Led Incident Resolution Activities for Complex Security Issues
• Recommended Process ImprovementsImplemented Incident Metrics Reporting for Senior Management (All Regions)

New York, New York, US

• Data Protection Team LeadTechnical leader, Fast Track Programs, identified new information security solutions, established IS technical standards to alignment with IS policies, and globally coordinated international IS.
• Conducted hands-on IS technology research evaluations
• Shepherded IS multiple efforts across security domains
• Leader involved with centralizing out-going network content monitoring to prevent unintentional data leakage
• Leader involved with centralized encrypted email solutions for external customers
• Managed multi-year, global IS program deployment budgets

New York, New York, US

• Led and managed multiple efforts, including end-point controls and encryption solutions for desktops and laptops (includes USB, CD/DVD, chip cards, other potable media, data leakage protection, intrusion prevention.
• Business Requirements
• Request for Proposal (RFP)
• Technical Requirements
• Supplier Short List Recommendation
• Leader of Global Advisory Committee (Formal Alignment of Business/Technology Working Group)

New York, NY, US

Provided expertise for various security systems, developed business and technical documentation including, but not limited to, RFI/P for procurement and project teams, business requirements for business leaders, functional and technical specifications for vendor contracts (SoW). Also developed service level agreement (SLA) for JPM Investment Bank IAM.

Led definition, initiation, planning, product selections (RFP), and implementation for various security systems (scaled deployments)Encryption systems with key management and recovery processes including, but not limited to, - Integrated LDAP directories, - Public key infrastructures, - Secure electronic mail, - Secure physical media transportNetworking.