Leading Product Security for all Dexcom products globally including Hardware, Firmware, Cloud, & Software Security. Responsible for the security of the entire product life cycle to ensure that Dexcom products are being designed, developed and operated securely for all of our customers. Teams include Security Architecture, DevSecOps, Threat Modeling, PSIRT(Product Security Incident Response), Governance, Standards Compliance, Security Training, Penetration Testing, Product SOC(Security Operations Center), & Security Feature Developer Team.

Advising Merlin and it's funded companies on security product strategy including new product ideas, product enhancements, product partnerships, product sales, and growth plans

* Support the seed and early stage funding of Glilot Capital Partners. * Work with leadership and advise on growth potential for the fund.* Assist with identifying partnerships for the portfolio.* Provide expertise in cyber security market trends and cyber security tooling.* Advise portfolio companies on how to improve their products.

Leading a Global Security team responsible for Product Security for Lenovo Cloud Services, Lenovo Software, & Lenovo Devices. Created and driving the global strategy to improve the security and privacy of all types of Lenovo products. United security teams, tools, and processes to increase security team efficiency. Improved security toolset and automation to improve coverage and reduce risk.Leading product security teams focused on Security Training, Security Architecture, Penetration Testing, Vulnerability Management, SecurityOperations(SOC), Secure Coding, DevSecOps, Threat Modeling, Standards Compliance, Governance, & Infrastructure Security, Cloud Security, Application Security, BIOS and Firmware Security.Responsible for designing and deploying secured CI/CD pipeline which implements "security as code". Responsible for leading security audits and compliance with international security standards and regulations such as CSA Star, GDPR, ISO 27001, 27002, 27017 etc. Responsible for creating and leading DevSecOps team and control set. Architected and leading Global Vulnerability Management Program. Extensive experience securing Multi-Cloud Private Cloud and Hybrid Cloud environments including AWS, Azure and AliBaba. Experienced with Docker and Kunernetes. Atlassian Tool Set experience including Jira, Bamboo, Confluence, Jenkins, Leading Application Security efforts across many security tool and control types including SAST, IAST, DAST, RASP, Fuzzing, etcA few tools include; Contrast, Synposis, Checkmarx, Anchore, Sonarqube, and CloudAware.

Hired to create and lead the Security Design & Architecture group as a new division of Secureworks. Responsibilities have been extensive, including designing, building, launching, and managing the security design and architecture services and teams. Conceived, built and delivered a line of custom security assessment, and architecture design products spanning all domains of cyber security. Worked as the Director, Managing Principal and Principal Security Architect.Worked daily with the clients executives and technical teams to design and execute security architecture and security control assessments and security program and control designs for businesses of every size and in every vertical including many of the largest organizations in the world. Hired, mentored and led team members. Also acted as Principal Security Architect. Responsibilities included overseeing, guiding and even taking part in deliverable creation.Worked daily with the C Suite and hand in hand with CISOs from the largest organizations in the world to design and implement comprehensive, customized security programs and solutions. This Team works as an extension of the client's security leadership from project inception to implementation. The group exceeded revenue expectations beginning in the first quarter growing 400% from one quarter to the next. Deep experience with many IT and cyber security frameworks, standards and regulations including, NIST CSF, TOGAF, NIST 800 Series, CIS, ISO 27000 series, HIPAA, PCI, SOX, NERC CIP, FISMA, COBIT, SABSA, ITIL, SCADA and others. Deep security domain experience in all cyber domains including Governance Risk and Compliance, Strategy, Infrastructure Security, Application Security, Endpoint Security, Mobile Security, Vulnerability Management, Incident Response, Security Awareness, Cloud Security, BCP/DR, Asset Management, Perimeter Security, Network Security, Pen Testing, Encryption, Vendor Assessments, Access Management, Identity Management, etc.

MSS Security Tower Delivery Manager / Information Security Manager for Moodys a global financial services company through Secureworks. Managing security services, projects, and incidents from start to finish. Managing and coordinating all information security related work across all company divisions in North America, Central America, South America, Europe, Asia and Australia. Managing multiple groups of managers, engineers, architects, & helpdesk personnel. Interfaces daily with senior executives within Moodys. Advanced hands on engineering and architecture work performed across many vendor technologies. Technology groups managed include Active Directory, Microsoft and PeopleSoft Security Administration, Bluecoat Security Products, Juniper Security Products, Symantec Security Products, Mcafee Security Products, SecureWorks Security Products, nCircle, Quest Security Products, Remedy, and Cisco Security Products. Product solutions include Cisco IPS 4255s and 4260s. Bluecoat Reporter, Proxy Devices including 800s and 900s, Symantec Endpoint Protection or SEP & McAfee Endpoint Encryption or MEEP, nCircle products including Profilers, IP360, & SIH for Vulnerability Scanning and Reporting; Secureworks Customer Portal and Suite of Products including managed iSensors, Threat Intelligence etc.; Microsoft Security Administration AD; Juniper SSLVPN & Juniper Firewalls managed by Juniper NSM; McAfee (Intrushield) NSM used to manage McAfee IDS Sensors, Managing a wide array of security projects with the client from inception to production

My company was contracted to provide advanced Information Security Services for HP Clients. Consulted on a wide variety of security services, hardware and software.

Consulting as an interim security executive or principal security consultant providing expert level consulting services in the field of information security for the largest technology companies in the world. A veteran security leader who has led at every level within a security organization. Understands all aspects of information security and operates well at both the strategic and tactical levels. Expert in security management, security governance, security operations, security engineering, security architecture, managed security services. Information security expert able to effectively lead and manage all security teams and solve complex security issues for large businesses. Current employer is a privately owned company providing an array of security consulting services working in all 10 Domains of Information Security which include; Access Control Systems and Methodology, Telecommunications and Network Security, Business Continuity Planning and Disaster Recovery Planning, Security Management Practices, Security Architecture and Models, Law, Investigation, and Ethics, Application and Systems Development Security, Cryptography, Operations Security, Physical Security. Proven expert in designing and implementing complex customized security solutions for enterprise clients around the world.

As part of the Networx Project a Senior Information Security Architect / SME Contracted to lead the team that is architecting, implementing and providing Tier IV support for the information security & managed security services for several government agencies. We are utilizing multiple tools including Juniper NSM 2008, ISG1000s and ISG 2000s, EM7 Network Management Application, Intellitactics, McAfee Appliances, Bluecoat, Cisco CSM, ASA Appliances, Switches and FWSMs, Enterasys Dragon and many more. High Public Trust Security Clearance to complete soon. Interim granted.

Hired as The Senior Manager of MSS to improve the product while managing several teams of employees located in their HQ NOC in CO. Immediate improvements were made which cut costs by 40% for MSS. In Web Hosting Service a 40% cost savings has also been achieved. Launched and managed audits in all groups managed to eliminate waste and increase efficiency of all direct reports. Millions of dollars per year will be saved as a result of these audits. Worked to add a new line of Managed Security Services and Products to increase revenues. Wrote and implemented a new set of policies and procedures for MSS to enhance it's efficiency and effectiveness. Redesigned security policies, standards, procedures, baselines, and guidelines for my groups to improve MSS. Increased technical certifications in MSS groups from 30% to 80% in my first quarter. Promoted after 4 months to manage all managed services including Router, VPN and Security as a result of improvements seen in MSS.

Brought in by Verizon Business Software Development Group to help architect, build and test several government and commercial security projects involving an array of security hardware and software. Networx is the contract to deliver a large portion of the Federal Government’s IT needs over the next several years. Brought in as a Senior Security Architect and Advisor. Began my first Security Design and Architecture Project for Verizon Business (then MCI) in December of 2005 and continue to assist with other security projects at present. Worked as lead on several projects with responsibilities for managing the various pieces of the project. Served as Security Product Expert for various security technologies including the latest Juniper, Netscreen and Cisco suites of security software and hardware. Included among these products are Juniper’s Netscreen Security Manager or NSM Software, All of the Netscreen / Juniper Firewalls and IDP Sensor Devices, Checkpoint Nokia Firewalls

Virtual Armor (for MCI) Denver, CO - 2005 ProjectDirector of Security, MSS and Security OperationsVirtual Armor is a managed security services company that provides managed security services to corporations across the world. They provide a custom monitoring and management solution that uses as it's base Juniper & Netscreen technology. I was brought in to steer the direction of the company’s IT Security and it's MSS (managed security services) offerings. I directed the operations, security and software development groups of the company. These groups are based out of the U.S., Canada, Europe and India.

Senior Level Information Security Architect with a CISSP and with extensive experience in information security audits; assessments; policy creation; government regulations compliance including HIPAA, SOX, GLB, FIPS, NIST and others; backup continuity planning, disaster recovery planning, telecommunications and network security, security awareness training, cryptography, penetration testing, and overall security architecture.

Designing, implementing and supporting all LAN/WAN environments within FastIdeas and our 13 portfolio companies. Daily working with the complete Cisco product line including routers, switches and firewalls, Local Directors, VPN Concentrators, Cisco NetRangers Designed and installed VPNs that ran through the following protocols: IpSec, GRE, L2TP and PPTP. Supported the complete range of microsoft and veritas business products.Expert knowledge with the TCP/IP Suite of Protocols and all routing protocols Managed the network & info. security for 14 companies, served as Solaris Administrator for FastIdeas. Admin external DNS. Designed enterprise wide I/S processes for design support and administration of the LANs and WAN. Served as the lead engineer on all network/internet work projects. Managerial experience as the leader of a group of network engineers assembled from the 14 companies. Company lost funding in the .com crash