Manager Of Information Systems
Angelpoints / Microedge
I lead team responsible for the confidentiality, integrity, and availability of all information services. I met regularly with CEO, CFO, and VP of Engineering to report on security and compliance progress, strategy, and risk landscape. I managed production, corporate and development networks and systems, supporting staff, and vendor relationships. I managed the security and availability of AngelPoints’ SaaS platform. I designed and implemented security systems, policies, and procedures to meet legal and contractual requirements. I provided training, auditing, and enforcement of policies and procedures.• Implemented a multi-master database disaster recovery and encryption strategy for the AngelPoints application database• Implemented a secondary data center to meet the business continuity requirements of Wells Fargo• Implemented an ISO/IEC 27002-based ISMS and NIST-based risk management process to meet the security requirements of AT&T and Ameriprise• Implemented systems, policies, and procedures to achieve PCI DSS compliance• Responded to security RFI/RFP’s, negotiated client security contracts, and conducted audits of third-party providers• Created company-wide strategy for security awareness and training across all departments• Designed product security requirements and made recommendations for secure SDLC• Coordinated vulnerability scanning, code scanning, penetration testing• Strategically implemented strong encryption strategies using PKI, GPG, IPSec, SSL/TLS, and FDE• Implemented secure data destruction procedures• Dramatically increased AngelPoints’ security and disaster recovery profile, contributing to acquisition by MicroEdge• Implemented lead generation strategy and led lead generation team to meet annual revenue goals, contributing to company acquisition by MicroEdge