When Bausch Health spun off the Bausch+Lomb vision care and eye health segments, I transitioned to B+L and performed the following functions in the IT security realm including: + Incident response lead+ SOC escalation point+ Security awareness lead+ Policy lifecycle manager+ Global security training assurance+ Global security communications content development+ Security metric reporting+ Security intranet

Designed and delivered an attack prevention and disruption program consisting of a security information hub, attack simulations, behavioral assessments, newsletter content, a robust security awareness and training program and a rich set of initiatives focused on reducing the likelihood of successful cyberattacks.

Concurrent with my StrategyArchitecture/Policy role, I built the security design of the Xerox enterprise virtual data centers on the Amazon AWS platform. I also engineered the mechanisms to monitor change to the AWS platform configuration leveraging AWS Config, CloudWatch and notification services, delivering as IaC using CloudFormation. Finally, I created the security governance model for the multi-cloud data centers.

Managing information security activities, I developed the technology and capabilities strategy and multi-year roadmaps to address internal/external threats and challenges, all the while leading programs and projects to advance roadmap initiatives and strategy execution. I also partnered with CISO and directors, set the vision for the IS Program and developed, maintained, and aligned policies, standards, and guidelines to industry frameworks including NIST 800-xx, Cloud Security Alliance CCM, and ISO 270xx. My accomplishments in this role include the establishment of a methodology that led to the development of 9 optimization projects with cost-saving opportunities of $2M+ and 25% reduction in deployed vendor footprint, as well as the creation of an adaptive, integrated enterprise-wide security strategy and architecture which enabled the significantly accelerated development of a fully integrated cloud consumption capability. Finally, I created a tiered protection strategy for traditional/legacy AV products that improved malware prevention by 40%+ for 6,000 devices and drove $6M in potential productivity savings related to device slowdown, re-imaging, and response costs. Managed change, approval processes and functional area process maturity, all the while providing deep technical subject matter expertise as a staff advisor and in support of security assurance on highly visible, complex projects. Defined/implemented mechanisms to improve security posture and alignment with strategic and financial goals. Built and maintained highly effective collaborative relationships with Architecture, Infrastructure, and Business.  Enabled teams to accelerate their understanding of cloud technologies and options for secure cloud adoption through learning track development and delivery

In this role, I was responsible for the architecture, alignment, and governance of security services, championing and securing investment funding for projects to align with roadmaps and business requirements. As Management had limited insight into future security resource requirements and Security teams had no insight into future security deliverables planned by other teams, I introduced a process and artifacts to expose multi-year views of security projects, showing how capabilities advance and technology evolves. This initiative enabled business leaders to see capability progression and security leaders to justify project concepts and resources, improving planning and budgeting while minimizing potential for overlaps and redundancies. Additionally, I worked with Security and Business stakeholders, following the acquisition of a 40,000+ employee business services organization, to analyze each policy against potential adoption models and identify impacts, before recommending a harmonized approach which was accepted and executed, enabling minimal risk posture change for each organization. Executed the multi-year strategic roadmap and monitored investment project execution and alignment. Led harmonization/integration activities related to M&As including policy, standards, and architectural alignment.

As the growth of remote access users was accelerating and the deployed remote access (VPN) solution was not scalable, I evaluated and supported deployment of an alternative, cost-scalable solution after performing a technology assessment and SWOT analysis, generating $4M in potential savings for 100K remote access users over the legacy solution. I also provided effective support to IT in their initiative to promote employee choice and flexibility for worker devices, creating BYOD control requirements and an associated program to assure worker/employee awareness and ability to self-manage according to the policy rules, achieving “very high” levels of satisfaction in customer surveys related to the program onboarding experience and ability to understand the documentation and required process steps.  Monitored operations and recommended optimal technical solutions to identified security problems. Documented business case for technical solutions and garnered support for solution implementation. Participated in presenting complex IT security project concepts and benefits to gain Management approval. Identified, assessed, reviewed, and remedied vulnerabilities and threats.

In this role I supported the development of a best in class information security assessment process. My contributions included development of varied platform checklists, as well as security consulting and assessment work focusing on infrastructure projects.