Sean Finley Email and Phone Number
Happy Camp, CA, US
Sean Finley's Location
Happy Camp, California, United States, United States
Sean Finley's Contact Details
Sean Finley work email
- Valid
- Valid
- Valid
- Valid
- Valid
Sean Finley personal email
n/a
Sean Finley phone numbers
About Sean Finley
“If building apps was like making candy, let’s make Jolly Ranchers not M&Ms.” ~ me (circa 2018)Experienced Information and Application Security leader with a wide breadth of knowledge, including; application security, security operations, vulnerability management and governance. Skilled in securing web and mobile applications, creating and evangelizing security policies, standards and best practices. I know how to work across departments and disciplines to move a security program forward.
Sean Finley's Current Company Details
Sean Finley Work Experience Details
-
GamechangerHappy Camp, Ca, Us
-
Director Of Application & Product SecurityEptura Dec 2022 - PresentAtlanta, Georgia, UsBuilt a product security program from the ground up. Setting up a strategic plan to implement security throughout a rewritten Software Development Lifecycle (SDLC) that aligns with company goals. This included secure code and secure software awareness training, CI/CD integrated security scanning, third-party penetration testing, risk-based vulnerability management, responsible disclosure program creation, and the creation of governance documentation (e.g., policies and standards). Proposed department level budget and coordinated with CISO on budgetary priorities and long term program strategy. Created and maintained quarterly reports for the ELT and Board that show the ROI of the program and how it prioritizes enterprise risk tolerance. Represented the enterprise with global partners and clients, building positive relationships and confidence in the security program that protects the company’s SaaS and on-prem products. -
Application Security ManagerGeico Mar 2022 - Dec 2022Chevy Chase, Md, UsPerformed a gap analysis of the existing tools, processes and talent. Redesigned the application security program from the ground up. Built a custom program purposed to deliver an industry leading program with a focus on automation, integration and scalability. Charted career education and upskilling plans for team of six engineers. Forged collaborative relationships with architecture, cloud platform, change management and application development departments. Published vital metrics (KPIs) designed to measure current state and align with long-term program vision. -
Application Security Program Strategy Lead - BisoAmerican Family Insurance Oct 2021 - Mar 2022Madison, Wi, UsDesigned the product security program of the Business Information Security Office (BISO). Performed continuous gap analysis in existing policies, standards and processes pertaining to SDLC, DevOps, automation, open source governance, secure coding training and product inventory. -
Lead Application Security EngineerAmerican Family Insurance Apr 2021 - Oct 2021Madison, Wi, UsLed the product security efforts of the BISO team responsible for the transformational platform designed to bring together enterprise functionalities to its operating companies. Collaborated with product executives, application architects and development staff to perform and report on risk assessments and security design/reviews. Created a custom product inventory of hundreds of applications and services that did not previously exist in the enterprise.
-
Lead Application Security EngineerChoice Hotels International Dec 2020 - Apr 2021North Bethesda, Maryland, UsProvide team and thought leadership, including mentoring members of the team through regular 1-on-1 sessions. Act as the first point of escalation when needed. Improved upon existing processes through innovation and operational changes. Work with upper management to develop or review standards, procedures and guidelines. Assists with development of meaningful security metrics. Designed and wrote requirements for custom internal dashboard application to ingest metrics from various security tools and create visualizations and reports to be consumed by executives, IT and product staff. Collaborate with peers across IT departments on technology acquisitions and standards. -
Senior Application Security EngineerChoice Hotels International Apr 2019 - Dec 2020North Bethesda, Maryland, UsLed efforts to create and grow an impactful security strategy that integrated with technical and non-technical departments. Evangelized the security program in a rewrite of the internal SDLC to ensure security was a part of application lifecycle from the beginning. Partnered with product owners, project managers, scrum masters, business analysts, management and development staff to find technical solution to business challenges that found a way to say “Yes” securely, rather than blocking business initiatives. Utilized broad security experience to act as a single point of contact for all questions related to security, breaking down silos of communication. Acted as a trusted advisor in assessing existing technologies for gaps and searching the market for potential solutions. Revitalized the PCI required annual secure coding training for all IT staff by replacing traditional animated CBT courses with engaging and more educational, modern content. Worked on the vulnerability disclosure program to engage with independent security researchers to validate reported issues and usher through to remediation.
-
Information Security Analyst IiiAmerican Specialty Health Mar 2017 - Mar 2019Carmel, In, UsMonitor multiple security technologies (anti-malware, endpoint protection, anti-exploitation, IoC, web filtering, NGFW and others). Event investigation, incident response and rotational on-call support. Collaborate with other security staff and IT operations staff on vulnerability management. Create security standards, guidelines and baselines to adhere to corporate policy, industry best practices and compliance requirements. Integrate with other IT departments, creating a growing DevSecOps mentality across disciplines. Work with software development leadership, coordinating third party pentests, internal application scanning and providing application security guidance throughout the SDLC. Researching new security solutions and offering recommendations to management. -
Senior System Security EngineerGeico Sep 2016 - Mar 2017Chevy Chase, Md, UsEnsure the confidentiality, integrity, and availability of information systems. Architect, install, configure, maintain, and administer security infrastructure components including web gateways, email gateways, antivirus, PKI, and SIEM. Working with members of other infrastructure and application teams to implement and maintain security infrastructure systems. Work with vendors and consultants to implement and maintain security infrastructure systems. Analyze and understand business needs and translate into requirements for security infrastructure systems. Perform investigation into security incidents, troubleshoot issues and provide 24 x 7 on-call support for security infrastructure systems.
-
Sr Application Security Analyst IiGeico Aug 2013 - Sep 2016Chevy Chase, Md, UsProject lead for the 5-person static and dynamic analysis team. Ensured all enterprise applications were assessed and in compliance with corporate standards, including OWASP, SANS and CERT standards. Consulted with application teams to provide advice on standards and how to implement them into their different technologies. Implemented continuous integration automation for static scanning that saved ½ million dollars annually in man hours. Security subject matter expert for the mobile development team, keeping mobile team informed of proper security techniques for Android and iOS systems. Collaborated with multiple security and compliance teams to create operations and cryptography policies and standards for ISO 27001 certification. Performed network assessments and worked with operations teams to set secure configurations. Contributed to corporate efforts to implement Center for Internet Security’s Critical Security Controls, specifically Controls 3 (Secure Configurations for Hardware and Software) and 4 (Continuous Vulnerability Assessment).
-
Senior Application Systems Analyst IiGeico Jan 2011 - Jul 2013Chevy Chase, Md, UsLed project to create a single sign-on mechanism for all enterprise customer service systems. Coordinated team of 5 analysts in gathering and analyzing requirements of multi-tier systems in project scope. Documented business processes, workflows and their relationships to solution. Created and maintained project documentation such as requirements, business rules, view specifications and test plans.
-
Senior Application Systems Analyst IGeico Sep 2007 - Dec 2010Chevy Chase, Md, UsManaged and developed detailed business and system requirements based on business needs. Developing requirements documentation including business flows, business detailed requirements, detailed and summary narratives. Performed advanced-level application triage, troubleshooting and coordination of problem reports. Reviewed requirements with developers to ensure requirements were ready for development. Assisted in providing project management oversight.
-
Application Systems Analyst IiGeico Mar 2004 - Aug 2007Chevy Chase, Md, UsDefine project requirements, translated business requirements into system requirements. Wrote Test plans and created an effective testing strategy. Conducted and coordinated functional and regression testing. Coordinated projects across different teams.
-
Systems AnalystGeico Jul 2001 - Feb 2004Chevy Chase, Md, UsDeveloped detailed system requirements based on business needs, utilizing standard documentation guidelines and coordinating with technical resources. Assisted with planning and execution of the testing efforts and documented testing results in standardized templates.
-
Acceptance Testing AnalystGeico Oct 1997 - Jun 2001Chevy Chase, Md, Us
-
Customer Service CounselorGeico Jan 1996 - Sep 1997Chevy Chase, Md, Us
Sean Finley Skills
Sdlc
Sql
Systems Analysis
Mobile Applications
Requirements Analysis
Test Planning
Web Services
Software Design
Test Cases
Testing
Regression Testing
Business Analysis
Software Documentation
Visio
Agile Methodologies
Information Security
Software Quality Assurance
Software
Comptia Security +
Sharepoint
Enterprise Architecture
Network Security
Usability
Ibm Appscan Enterprise
Sscp
Application Security
Mobile Security
Security Operations
Secure Sdlc
Sean Finley Education Details
-
Chapman UniversitySocial Science
Frequently Asked Questions about Sean Finley
What company does Sean Finley work for?
Sean Finley works for Gamechanger
What is Sean Finley's role at the current company?
Sean Finley's current role is AppSec Enthusiast | InfoSec Evangelist | CISSP, CCSP, CSSLP.
What is Sean Finley's email address?
Sean Finley's email address is se****@****els.com
What is Sean Finley's direct phone number?
Sean Finley's direct phone number is +185851*****
What schools did Sean Finley attend?
Sean Finley attended Chapman University.
What skills is Sean Finley known for?
Sean Finley has skills like Sdlc, Sql, Systems Analysis, Mobile Applications, Requirements Analysis, Test Planning, Web Services, Software Design, Test Cases, Testing, Regression Testing, Business Analysis.
Free Chrome Extension
Find emails, phones & company data instantly
Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Aero Online
Your AI prospecting assistant
Select data to include:
Total price:
$0.00
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial