Scott D. Email & Phone Number

Texas, United States

Greater Houston

We provide Cybersecurity and IT Audit consulting services.

Houston, Texas Area

Houston, Texas Area

• Global Information Security Manager (CISO)
• Built a global Information Security program from the ground up. Unifying processes Globally including patch management, endpoint protection, firewall rules and configuration, SIEM implementation (QRADAR) while building.
• Significant IT Control improvement in 3-year period as measured by Independent Penetration Testing and Internal Audit assessments.
• Built cross teams including: HR, Legal, Finance, Internal Audit, IT, HSE and Operations. Has been instrumental with recent Cybersecurity initiatives including: Identity theft, piracy and Intellectual property concerns.
• Implemented a global vulnerability management program, reducing Critical and High vulnerabilities globally in the first year by 87%.
• Deployed a new Egress filtering solution (Zscaler) reducing year over year cost by 50%, increased management efficiency all while reducing virus/phishing/malware ingestion by 92 %. I have partnered with Zscaler.

Houston, Texas Area

Orange County, California Area

• Responsible for managing IT Risk for 4 Business Units in North, Central and Latin America as well as lead responsibilities coordinating the Americas audit resources with that of European and Australasia plans.
• Conducted regular planning meetings with BU CFO’s, CIO’s, Directors and IT Managers to access audit resource commitment vs. emerging risks. Anticipate Executive Management needs and present value-added projects they.
• Called upon to Develop/Plan and execute a day one cost reduction exercise in $2 billion acquisition of Alcan, consisting of downloading key data across two continents and 8 separate instances of SAP. Served as the IT.
• Reviewed a degraded control environment for a remote BU identifying a rogue system upgrade, unauthorized bypass of Global firewalls, insecure wireless access points, lack of DR, and fraud due to inadequate access.
• Performed a Business Impact Analysis on behalf of customer with failed DR, resulting in identification of bottlenecks and quantified daily loss. Was used by customer to justify funding for outsource.
• Conducted Amcor’s first Global Network and AD assessment resulting in several key opportunities for improvement.

Greater Los Angeles Area

• Reviewed the network infrastructure resulting in the detection of significant issues.
• Participated as part of the BBNV integration team, producing regular status reports for executive Management.
• Providing consultation services as a member of the project steering committee on the implementation of the SAP Customer Relationship Manager (CRM) module.
• Provided consultation and assurance services as a member of the project steering committee on the City National Bank/ Business Bank of Nevada Systems and infrastructure merger.
• Implemented standards for electronic work papers including general control workbooks, audit components and subsequent templates.

Greater Los Angeles Area

• Reported to ET Audit Manager and Director hard line, dotted line to ST Financial operational Audit Director and interface with ST CIO.
• Managed Internal Audit’s General Computing Controls (GCC) SOX compliance effort for the Corporate entity Hyperion System during 2006.
• Managed Internal Audit’s SOX compliance effort for a 3.5 billion dollar Sector during 2004 and 2005, representing one-third of all Northrop Grumman’s SOX systems and half of all systems in the External Auditor’s (D&T).
• Managed 7 contractors, directed 4 other external resources (E&Y). Successfully interfaced with internal customers and external auditors. Responsible for the control design and documentation of 29 applications, over 100.
• Managed PWC auditors in conducting Corporate Firewall Review, Network Controls Review and ST Firewall Review.
• Promoted in first year of service due to demonstrated excellence. Selected to represent the ST sector.

Orange County, California Area

• Performed information system security reviews, general and application controls reviews, network firewall and router audits.
• Responsible for identifying system and manual controls and evaluating the effectiveness of identified controls.
• Designed, coded, tested, implemented, and documented CAAT programs for audit utilizing CAAT analysis program coding.
• Provided year-end and other requested IS audit and CAAT assistance to external auditors (E&Y).
• Experience performing both system and financial audits in an ERP (SAP) system environment including the development of comprehensive IS and regular audit procedures appropriate to areas of audit assignment, including.
• Performed SAP post implementation reviews including segregation of duties and change control evaluation. Reviewed, analyzed and assessed SAP and various legacy systems interface controls.

Los Angeles Metropolitan Area

• Developed and conducted integrated system audits under minimal supervision,
• Conducted general controls and application system audits to ensure efficient and adequate internal control; safeguarding assets of 7 billion dollars.
• Evaluated the main data center in order to ensure adequate environmental, operating and security controls were in place and adhered to.
• Monitored and reported on the disaster recovery testing cutover from primary cash management systems to remote hot site operation.
• Analyzed and reported on emerging issues during system development projects. Composed system audit programs compliant with current banking regulations.

Bachelor Of Science - Bs, Accounting

Bs, Accounting And Mis