Ricardo Bonefont Email & Phone Number

San Diego, CA, US

San Diego, CA, US

• Provided leadership for the Security Operation Center as a trusted partner to protect its customers, advisors, and clients. Responsible for the overall security operations program for detecting, analyzing, and.
• Established a well-organized Security Operations Team
• Created enriched metrics that helped transform the SOC maturity state by identifying gaps, highlighting bottleneck indicators, and detecting policies/rules that generate high volumes.
• Consistently achieved 100% on OLA and SLA for detecting (Dwell Time), triaging (Mean-Time-To-Analyze), and remediation (Mean-Time-To-Resolve).
• Improved team effectiveness and performance with constant process development, including periodic reviews/audits of operational playbooks, processes, and system policies/rules.
• Established prevention of cybersecurity incidents through proactive such as continuous threat analysis, countermeasure deployment and coordination, security consulting, and awareness

Fort Mill, South Carolina, US

Oversee the Security Operations program including endpoint security with endpoint detection and response (EDS), firewall management and monitoring, security incident and event management (SIEM) monitoring and alerting, vulnerability management and reporting, incident management and forensic investigations, attack and pen-testing assessment, security.

Miami, FL, US

• Provide leadership for the information security and compliance team, which safeguards Ryder’s assets such as its intellectual property, computer assets, networks, and employees. Work with cross-functional teams to.
• Develop best in class policies and procedures related to all fundamental processes which support user access, authentication,
• credential management, software development, change management, and incident response.
• Manage day-to-day information security operations, policies, architecture, compliance, and governance
• Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data, and the company's reputation
• Provide regular reports on the current state of the information security program to the enterprise risk team, senior business leaders, and the board of directors as part of a strategic enterprise risk management program

Fort Lauderdale, FL, US

• Provide leadership in Compliance Strategy and Compliance execution in supporting governance processes, deployment, and improvement initiatives. Create strategy and procedures related to all areas of Governance, Risk.
• Provide strong central oversight to deliver consistency and quality in compliance work across the organization
• Communicate governance and compliance objectives to ensure appropriate compliance and risk-aware culture.
• Evaluate general and specific training needs and perform such to support the control environment and associated control framework
• Interact with various business groups to understand how they use IT systems and be compliant in areas of SOX and PCI regulations.
• Oversee the team(s) that performs IT General Computer Controls (GCC) testing and ensure the quality of testing results moreover, working paper documentation.

Fort Lauderdale, FL, US

• As the lead senior security analyst, my responsibilities included the overall IT security for Citrix global, which consisted of assessing or identifying security risks, evaluating the risks, and proposing solutions.
• Defined and revamped the Information Security Policy.
• Implemented a centralized log management global solution using the LogLogic product.
• Implemented Symantec Security Information Manager 4.5 for security alerts correlating and generating security incidents.
• Implemented the Symantec Critical System Protection application for providing a host intrusion prevention system (HIPS) solution on critical core systems.
• Implemented the McAfee FoundStone vulnerability assessment product to perform a global assessment of missing OS and application patches.

Peachtree Corners, Georgia, US

• Broadspire Services, Inc. (formerly known as Kemper National Services, Inc.)Oversee activities and manage the work of eight IT Security employees engaged in developing, maintaining, and modifying application or.
• Worked closely with decision makers in other departments to identify, recommend, develop, implement, and support cost-effective technology solutions for all aspects of the organization.
• Created a security department and acquired resources
• Revised Information Security policies for the organization.
• Develop Business Continuity Plans for our business partners and coordinate and execute DRP test for the organization.
• Complied with all SAS70 standards and procedures relating to program quality, security, infrastructure stability and documentation.

Peachtree Corners, Georgia, US

• Responsible for creating company security policies and procedures, creating end-user awareness presentations to provide employee security tips and guidance, manage security administration, assessments, and controls for.
• Established an IT Security team with clear SOPs and responsibilities.
• Managed overall security for the entire company including security requirements for pre-production applications andsystems.
• Established SLA requirements for customers and accomplish customer satisfaction.
• Comply with successful audits by creating “self-audit” processes and procedures periodically.
• Established a Security Incident Response Team (SIRT) for emergency security controls and countermeasures.

New York, New York, US

Built and installed a secure NT 4.0 domain environment using the use of a Primary and Backup Domain Controller, fax server, standalone servers, and workstations. Other responsibilities after the domain was built were to secure the domain by controlling the ACLs for tightly secured areas and sensitive information. Developed PERL program along with advance.

Masters, Information Technology With A Concentration In Internet Security

Bachelor, Information Technology

Bachelor, Computer Information Systems

Bachelor, Computer & Technology