Steven Driver

Steven Driver Email and Phone Number

Lead Information Security Engineer at Wells Fargo @ Wells Fargo
Steven Driver's Location
Louisville Metropolitan Area, United States, United States
Steven Driver's Contact Details
About Steven Driver

Cyber Security Technology leader with over 15 years of experience in security architecture, program management, application security, project leadership and development integration of complex software systems. Proven ability to distill, communicate and resolve complex security scenarios to solve business problems while managing risks and organizational needs. Seeking fulltime opportunities that leverage my technical knowledge and business insight in steering diverse teams of IT professionals in architecting and delivering impactful business solutions.

Steven Driver's Current Company Details
Wells Fargo

Wells Fargo

View
Lead Information Security Engineer at Wells Fargo
Steven Driver Work Experience Details
  • Wells Fargo
    Lead Information Security Engineer, Vice President
    Wells Fargo May 2016 - Present
    San Francisco, California, Us
    Design, develop and implement secure software best practices for the Enterprise Application Security Program at Wells Fargo. As part of the Secure Software Development Lifecycle (SSDLC) program, I am responsible for the security requirements program. I manage the security requirements and design tools, like SD Elements from Security Compass. I work collaboratively with application and security champions early in the SDLC to establish security requirements through modeling and research activities. I help educate application stakeholders to understand relevant security issues, including practical strategies for fully mitigating or partially compensating the associated risks I participate in defining, reviewing, and promoting information security policies, standards, guidelines, and procedures I also participate in internal process improvement initiatives. I mentor junior staff as the SME in security requirements. I have an understanding of common industry security categorization schemes, such as STRIDE and common industry risk ranking models, such as DREAD, CVSS, OWASP Risk Rating Methodology. I build and deliver training content (Brown Bags, ) to Developers, Testers and other security professionals. I identify emergent software security vulnerabilities and threats and design methods to identify those vulnerabilities and provide remediation alternatives. Consult and design threat models for the Secure SDLC process. Developed the safe coding standards for Cloud environments, Amazon AWS and Microsoft AZURE. Develop safe coding standards and guidelines for the development teams in Java, C, and Mobile development. Subject Matter Expert (SME) responsible for application security and software security best practices. Consult with development groups on the implementation of Security Development Lifecycle best practices and tools. Research, development and /or customization of software security tools and libraries.
    View
  • Kforce Inc
    Contractor - Gyroskope Family Network
    Kforce Inc Mar 2016 - May 2016
    Tampa, Fl, Us
    Managing the SDLC process for a new product development. Functioning in the role of a Project Management and the Application Information Security SME for HIPPA / HITECH.
    View
  • Stored Value Systems
    Director Of Application Development - Web
    Stored Value Systems Dec 2010 - Feb 2016
    Louisville, Ky, Us
    Application Development Director, Stored Value Solution / Comdata (SVS) /FleetcorInfoSec: I developed the SDLC program from secure coding with SVS. Completed the analysis of a vector threat model for all web based applications. I instituted quality code reviews, paired programming, unit testing and OWASP security standards within the team. Lead the static and dynamic (pen testing) of the SVS web applications. Developed the training materials and trained the development staff on OWASP top ten Web Application Security Risks. Introduced and trained on web scanning tools like IBM AppScan, Nessus and Veracode.Application Development: I am the director of application developer for Internet (web) application. My team and I manage multiple web based applications that are used worldwide by SVS clients. Each application supports international languages, foreign currency and foreign locations. During my tenure at SVS, I have built a high performing team that produces quality code on time and within budget. Before coming to SVS the web team produced 10 maintenance releases in 2010. After reworking the SDLC process the team produced 55 maintenance (enhancements) releases and three new products in 2011 all without any deployment errors. In 2012-2015, I decreased the support phone calls by 44% from the previous year. As part of the SDLC redesign, I manage a three development team, two on shore teams and one off shore team in Mauritius. For SVS and Comdata, I teach the secure coding class to all the development staff.
    View
  • Airlines Reporting Corporation (Arc)
    Is Development Manager
    Airlines Reporting Corporation (Arc) Jun 2006 - Nov 2010
    Arlington, Virginia, Us
    Manager responsible for the development and deployment of mainframe and web based application for the Louisville KY office. I am managing a team of 15 developers for support of the Area Settlement Plan (ASP) and Java based applications. The ASP system is a COBOL based back office settlement system for carriers and travel companies to settle financial transaction between travel providers, agents and credit card companies. Responsible for establishing the strategic plan for organizational health and developer cross training. Implemented scrum development methodology with ARC development offices in Louisville and Tampa. Lead the scrum training project to educate over 90 developer and product owners.
    View
  • Bams - Ba Merchant Services - Formerly National Processing Company
    Sr. Application Technology Manager, Vice President
    Bams - Ba Merchant Services - Formerly National Processing Company Oct 1998 - Apr 2006
    Responsible for all of the development, budget management, support and deployment of Internet, intranet applications and Internet payment systems. Managed the 1.6 million dollar budget for the e-commerce group and averaged 10% under budget each year. Developed systems and cost saving to save BAMS, 1 million dollars in development cost on a 4.5 million dollar project. My team was responsible for the development and deployment of a customer service reporting website to facilitate merchants obtaining self-service information. NPCAcess.net reporting website was developed using leading edge technologies to improve the capabilities of merchant reporting. Responsible for establishing the strategic plan for e-commerce payment systems. Deployment of the Clear Commerce Payment gateway that has the capacity for 10 million transactions per year and provided NPC a return on investment of development and deployment cost in 6 months. Developed an Internet payment site for accepting electronic checks on the web called VirtualPAY. The VirtualPAY web accepts payment for e-commerce site in volumes in excess of 10 million dollars per day. I have served on the corporate security task force. The task force established the NPC security policy for all IT departments. I am responsible for Application security development, application security architecture and application security practices.
  • The Polis Center, Iupui
    Gis Analyst/Technical Manager/Web Architect:
    The Polis Center, Iupui Dec 1996 - Oct 1998
    Design and implement GIS applications and models for clients of the Polis Center, Advanced Information Technologies (AIT) division. Assist with project management of AIT initiatives; work with clients to establish application needs and priorities. Manage the design, programming, development, testing and implementation of complex applications and models. Design, specify and implement applications to achieve client application needs; design and implement spatial models for company and client use in a GIS/AM/FM system. Manage and develop the Center’s Web site (http://www.thepoliscenter.iupui.edu) as a marketing and information tool for our clients. Developed the Social Assets and Vulnerability Indicators web site for the Central Indiana United Way. (http://www.savi.org) Managed the Center’s Web Site and Windows NT 4.0 Network implementing user profiles, system security and network resources.
  • Atlantic Technologies
    Software Development
    Atlantic Technologies 1991 - 1996

Steven Driver Skills

Sdlc Agile Methodologies Software Development Vendor Management Management Scrum Leadership Project Management Security Business Analysis It Management Enterprise Architecture Requirements Analysis Integration Program Management Process Improvement E Commerce Quality Assurance Software Project Management Information Technology Business Intelligence Disaster Recovery Strategic Planning Business Requirements Databases Software Development Life Cycle Business Process Improvement Soa Information Security Team Leadership Data Center Change Management It Strategy Strategy System Architecture Microsoft Exchange Troubleshooting Unix Web Applications Project Planning Project Portfolio Management Cyber Security Information Security Management Application Security Architecture Application Security Testing Cloud Computing Computer Security Product Management Application Lifecycle Management

Steven Driver Education Details

  • Ball State University
    Ball State University
    Computer Science

Frequently Asked Questions about Steven Driver

What company does Steven Driver work for?

Steven Driver works for Wells Fargo

What is Steven Driver's role at the current company?

Steven Driver's current role is Lead Information Security Engineer at Wells Fargo.

What is Steven Driver's email address?

Steven Driver's email address is sd****@****acm.org

What is Steven Driver's direct phone number?

Steven Driver's direct phone number is +150287*****

What schools did Steven Driver attend?

Steven Driver attended Ball State University.

What skills is Steven Driver known for?

Steven Driver has skills like Sdlc, Agile Methodologies, Software Development, Vendor Management, Management, Scrum, Leadership, Project Management, Security, Business Analysis, It Management, Enterprise Architecture.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.