SideChannel is the leading cybersecurity firm with a growing list of former enterprise level Chief Information Security Officers (CISO) to deliver vCISO services to clients.

Coalfire is the cybersecurity advisor that helps private and public sector organizations avert threats, close gaps, and effectively manage risk.♦ Build and maintain relationships with client leadership and CISOs acting as trusted advisor to foster open collaboration in solving cybersecurity challenges.♦ Partner with internal leadership to develop pragmatic and effective cybersecurity solutions for clients.♦ Function as industry thought leader contributing relevant cybersecurity industry content to publications such as Dark Reading, Healthtech Magazine, Security Boulevard and more.

Optiv defines itself as a security solutions integrator that delivers end-to-end cybersecurity services globally. I developed and ran enterprise-wide processes aimed at reducing IT and business risk as well as assuring regulatory compliance.Key Directives♦ Provided executive sponsorship and project service delivery with focus on security strategy assessments, compliance initiatives, and programmatic security operations.♦ Worked directly with financial, healthcare, government, K-12, and higher education, software, manufacturing, energy, and pharma sectors to define, implement and manage IT security programs.♦ Developed, implemented, and monitored strategic information security programs to ensure confidentiality, integrity, availability, safety, privacy, and recovery of information.♦ Provided regular reporting on the status of information security programs to enterprise risk teams, senior business leaders, and directors as part of a strategic enterprise risk management program, thus supporting business outcomes.

The Medical University of South Carolina (MUSC), is an academic health science center in Charleston, SC. In less than a year, I optimized the security posture of the Medical University of South Carolina by leading in the development and implementation of a security program that leveraged collaboration and campus-wide resources. This program facilitated information security governance and advised leadership on security direction and resource investment. Accomplishments:♦ Developed a 5-year plan for the information security program for the Medical University of South Carolina (MUSC), which included organizational realignment of information security program elements under the CISO and improvements across several key IT and Information Security program elements♦ Designed, implemented, and managed the initial set of information security program metrics to begin to measure the effectiveness of security controls.♦ Created and launched a partnership with the College of Charleston to start an Information Security internship program, increasing productivity and alleviating staff budgetary restrictions.♦ Partnered with Chief Data Officer to design and build the organization’s first cloud computing environment to support strategic healthcare data analytics initiatives.

Anthem is the largest for-profit managed health care company in the Blue Cross Blue Shield Association. I provided over 10 years leading Information Security strategic projects and programs. I spent two years addressing Anthems reaction to a security breach in 2015. Accomplishments:♦ Major contributor to the development of a comprehensive breach response project plan [$130M spend] to repair company data integrity. Enhanced Information Security teams capabilities with an additional 80 associates and rigorous training programs. Result: Anthem’s Information Security program became a leader in the healthcare payer space by developing a new strategy that accelerated delivery of technology and service investments.♦ Reinvented and led the Application Security team of over 20 resources through functional consolidation including comprehensive SDLC security testing, web access management, and implementation of an enterprise encryption program. Result: Anthem's Application Security Program became a comprehensive framework that included software and web application scanning, targeted penetration testing and a continuous developer education program. ♦ Constructed the framework and operational practices for the Vulnerability Management Program. Components included structured leadership support and direction for technology leaders to facilitate prioritized remediation efforts. Designed custom vulnerability dashboard to automate scan results into actionable data and meaningful metrics. Result: Anthem's Vulnerability Management Program achieved rapid vulnerability remediation, increased patch management deployments and PCI compliance.♦ Mentored and coached leaders and top performers. Graduate of Anthem's highly selective "Winning Leader" Leadership Program, which delivered high quality leadership learning opportunities such as emotional intelligence, change management, constructive feedback, and continual coaching.

Supported information security infrastructure and services including firewalls, remote access, two-factor authentication, and vulnerability management and more. I was accountable for all technology silo projects and helped create unique solutions to complex issues.My technical input was utilized to create Anthem secure technical standards, and I organized regular meetings with different groups and leadership to address and prioritize security risks. I also oversaw architecture and engineering for new technologies from ideation to delivery.My business successes included:♦ Directing the company’s enterprise vulnerability management program and managing remediation efforts in both compliance and security best practices;♦ Centralizing vulnerability reporting into a dashboard providing source-of-truth metrics for top management, and enabling technology owners to respond quickly to security risks;♦ Launched database security assessments and database technical configuration compliance.

Cingular Wireless was a mobile telephone service company that was folded into AT&T’s Mobility LLC subsidiary that serves more than 100 million subscribers in the United States and some of its territories.My role at Cingular was to support over 5,000 nodes across 7 states in a multi-domain environment, encompassing Internet, email, file/print, database, DHCP, DNS, WINS, Citrix and desktop services. I gradually added Information Security responsibilities including firewall, VPN, SecurID, proxy server and vulnerability management support as well as forensic investigation activities. In addition, I collaborated on system reviews of new and existing system rollouts to ensure compliance with system and data security requirements, and coordinated rollouts of new products and services for the mobile subscriber network.Among my achievements, I:♦ Implemented enterprise vulnerability management program to identify weaknesses in network infrastructure;♦ Set up an enterprise patch management team to handle all new security patches on Microsoft OS systems;♦ Developed a secure and centralized remote access solution for assigned territory, reducing telecom expenses;♦ Authored a critical enterprise firewall security standard and greatly contributed to Windows desktop, server, Active Directory and anti-virus security standards;♦ Succeeded in lowering system downtime and administrative costs with new backup, firewall and configuration change management procedures;♦ Performed system architecture reviews with IT groups and senior management for existing and new system implementations to ensure security requirements and policies were followed.

Thomson Reuters is the world's largest international multimedia news agency, providing investing news, world news, business news, technology news, headline news, small business news, news alerts, personal finance, stock market, and mutual funds information available on Reuters.com, video, mobile, and interactive television platforms.I oversaw, supported and maintained all Internet hosting DNS, WINS, IIS, proxy and file servers representing more than 200 Windows services in alpha, beta, and production environments. I established a production backup strategy for all Windows systems.During my time at Reuters, I:♦ Led the design of Windows infrastructure for a geographic, separate, and redundant data center including domain structure, rack layout, and remote administration;♦ Designed and instituted server cloning procedures to greatly reduce system downtime while ensuring consistent OS and application levels across the assigned environment;♦ Was promoted through levels of increasing impact after my initial hiring as a Technical Support Representative.