The Economist declared that “the world’s most valuable resource is no longer oil but data.” The global economy runs on information, available in microseconds at the touch of a button, 24 hours a day. As businesses continue to develop ways to monetize information, adequate data protection and governance require business leaders to know how data is collected, stored, used, and deleted. Business leaders must implement data governance programs to calculate the value of keeping versus destroying risky data.Additionally, tremendous regulatory, legal, and contractual pressures exist to protect sensitive data from misuse and theft. A failure to quickly provide data and information about relevant data as part of a litigation or investigation leads to increased fines, penalties, and sanctions by regulators, governments, and the judiciary.To mount practical prevention and response efforts, you will need a team of experts who speak in dollars and cents and bits and bytes. You need information technology experts who understand how to balance the needs of the business with the risk of your mission-critical customer data.Brush Cyber is a team of business, legal, cybersecurity, data privacy, and compliance experts that do one thing better than anyone: solve problems around enterprise data to enable the business, manage risk, and resolve disputes.Services Include:• Dispute Resolution: Special Master, Court Appointed Neutral, Discovery Mediator, Arbitration• Cyber Resiliency: CISO-as-a-Service, Annual Cyber Physicals, Cyber Program Accelerator • Data Privacy and Governance: Data Reward to Risk Valuation, Privacy Operations Center, Managed Privacy ServicesWe Solve Problems For:• The Legal Industry• The Insurance Industry• Corporate Executives and Board of Directors

More than 22 years of professional InfoSec, InfoTech and consulting experience.Capabilities: Cyber Security Risk Management, NIST CSF InfoSec Assessments / Gap Analyses, Computer Forensics, Post Data Breach Investigations, Analysis, Recovery, Remediation e-Discovery: Preparedness, Planning, Data Preservation, Collection, Analysis, Processing, Review, and ProductionComputer Incident Response Team (CIRT)IT Network Design AssessmentComputer Forensics Lab ManagementThird-Party Vendor Relationship ManagementConsulting roles have included:Planning and managing the delivery of InfoSec roadmap projects and initiatives, including proactively identifying risks and issues and leading relevant teams to develop risk management and issues management plans.Supporting and establishing Identity Management Solutions.Independently and actively managing projects (issue escalations, change requests, schedule changes, etc.).Creating custom project plans for and designing Security monitoring and tracking solution offerings based performed gap analyses. Focus on external and internal stakeholder added value. Components of deliverables include implementing and increasing client capability to execute and support InfoSec functions and metrics, including operations, Service Level Agreements (SLA), and coordination of internal and external client stakeholders.Developing and managing look back evaluations and prioritizing future organizational InfoSec / Cyber Security planing to address program strengths, weaknesses, opportunities and threats.Certified Information Systems Security Professional (CISSP)EnCase Certified Examiner (EnCE)GIAC Certified Forensic Examiner (GCFE)Microsoft Certified Systems Engineer (MCSE)A+ certifiedPrevious certifications: CISA, CRISC, CFEPast member of the Association of Certified Fraud Examiners (ACFE)Past member of Information Systems Audit and Control Association (ISACA)

Demonstrated excellence in problem solving, risk mitigation, operation oversight, governance, strategic initiative planning and solution implementation. Managed proactive cyber security practitioners and processes supporting extensive offerings of proactive InfoSec and Cyber Risk Management programs. Subject matter expert for all aspects of InfoSec and Cyber Risk Management programs. Directed the development and enhancement of existing workflows for incident response planning, playbooks and best practices to meet the response and recovery strategies and vision of technology, operations, compliance, legal and other stakeholders.Roles included practice building, managing cyber security risk management assessments, complex, large scale digital forensics, e-Discovery, cyber security, and data analysis engagement work. Client base included S&P 500 companies, top law firms, and federal, state, and local government agencies.

Cyber Risk Specialist Master – responsible for the development, delivery, and implementation of client specific cyber security incident response plans, integration of incident response plans into the overall cyber security and risk management programs within enterprise level organizations.Areas of expertise and other functions in the cyber security arena also included incident response and proactive cyber incident preparedness.

Cyber Risk and Discovery Vice President – responsible for assisting Duff & Phelps’ legal and corporate clients with the intricacies of technology, data forensics and electronic discovery. Also responsible for overseeing engagements at all stages of the litigation process including project scoping, pre-filing data mapping and preservation, processing, analysis, relevancy filtering, keyword searching, document review and production while meeting the legally defensible requirements of ESI in federal and state civil and criminal courts. Additionally, managed and led engagements consulting with clients on Information Technology security assessments, digital forensics and incident response, litigation readiness, cyber security, data breach response, and document retention and compliance programs.

Cyber Tech Center of Excellence Associate – responsible for computer forensics, e-Discovery, cyber risk assessments.

Forensic Technology Services Manager – responsible for leading and managing client service teams on e-Discovery, investigations, employee monitoring, computer forensics, data analysis and recovery, and email and user file analysis, review, and production engagements. Also performed IT automated controls and Information Systems portions of client internal and external audit engagements for financial and Sarbanes-Oxley auditing and other regulatory and inter-company purposes.

Maintaining, supporting, and improving 10 local area networks and corporate WAN over 7 separate physical locations;Maintaining, supporting, and procurement of PCs, servers, and mini-mainframes at all 7 physical locations;Managing team leaders who led team in training of all users in application and network functionality;Managing support and maintenance team;Designing and implementing WAN system for the corporation using dial up (radius) and Internet links utilizing VPN technologies.

Daily lectures with high school and adult students of varying degrees of English proficiency;Evaluating and grading speech and understanding performance of students at Gymnasium (University Preparatory High School).

Managing day-to-day operations of medical supply company;Billing and collection of claims to Medicare, private insurers, and individual customers;Managing logistical support for all deliveries over a regional sales area;Regular sales and marketing visits to customers and prospective customers;Accounting, reporting, and presentation of financial statements on a monthly basis.