Walt Gula Email & Phone Number

• Virtual CISO ComplianceShield Integrator Small Business GRC SaaS Solution o Research as a Service (RaaS)
• Independent Research
• Vendor and Supplier Assessments Development
• Evaluation and Selection Process
• Specifications and Requirements
• Criteria, Matrix, Framework, Methods, Capabilities, Compliance

Dania Beach, FL, US

Governance, Risk, and Compliance (GRC) - including information security policy development and enforcement, risk identification-evaluation-remediation, business impact analysis, IT security and compliance program management. Additional responsibilities include, 3rd Party risk, vendor security management, security awareness education, coordination with.

IT Security Compliance Consultant - InfoTech Security Solutions, Johns Creek, GA - J|Curve at PHeaa, Government Regulatory Compliance / IT Controls Assessment, Harrisburg, PA - Insight Global at Dynetics, Cyber Insurance / Cyber Security Assessment, Huntsville, AL - RGP at Concurrence, SOX Assessment / User Access Review, App-DB-OS Duluth, GA

Atlanta, Georgia, US

J|Curve contractor at Higher Education Assistance Agency (PHEAA) - As a IT Audit Analyst within an assigned client's Internal Audit department, located in Harrisburg, Pennsylvania, responsible for evaluating the company’s current systems’ internal control design and effectiveness (including but not limited to efficiency and security protocols, development.

Atlanta, GA, US

SSAE 16 SOC 1, PCI, HIPAA – Harmonization, simplification and streamlining of interrelated audit and compliance processes and frameworks. Internal/External Audit and Compliance liaison of Information Technology organizations, Human Resources and Business Units. Development of an Enterprise Security compliance unified vision, synchronization of evidence.

Atlanta, Georgia, US

Insight Global at SunTrust - Assist Business Units with meeting corporate information security baseline standards and regulatory audit requirements. Perform third party security risk assessments to provide an unbiased risk evaluation. The result assists with securing company and customer data, and information assets. Identify and evaluate security issues.

Beverly, Massachusetts, US

Oxford contractor at Aqua America - Design and development of the corporate Enterprise Risk Management (ERM) program. Services including risk assessments, reviews, reporting, and security project portfolio management for Aqua America. Performed - network, computer, endpoint, source code, and application system vulnerability evaluation and risk assessments..

Atlanta, Georgia, US

Insight Global Contractor at Tennessee Valley Authority - Department of Energy (DOE) Pilot Program - design, develop, configure, test, implement and establish the Tennessee Valley Authority (TVA) integrated Security Operations Center (iSOC). The effort entails the engineering, selection and ordering of network, computer and appliance hardware and software..

Contractor at Encompass Digital Media - Design, develop and certify the IT Security Architecture and Infrastructure for Encompass Digital Media, Inc. Selected the most appropriate security vendor solutions to meet stringent US Department of Defense (DoD) MAC III Sensitive requirements. Created the IT Security portion of a US Army contract bid for Encompass.

Reston, VA, US

DoD Information Assurance Certification and Accreditation Process (DIACAP) - Program Manager, performing security auditing of design, configuration and integration over the System Development Life Cycle (SDLC). Supported the Defense Contract Management Agency (DCMA), conducted audit reviews and monitored corrective actions until all actions were closed..

Reston, VA, US

Network Operations Security Center (NOSC) responsibilities included security technical analysis and incident response using a wide variety of security tools to ensure 24 x 365 protection. Supported the Defense Contract Management Agency (DCMA), developed and modified the NOSC operating procedures to obtain and maintain ISO 27001, FISMA, and DIACAP.

Luray, VA, US

Managed a team within the Defense Information Security Agency (DISA), Global Network Operation Support Center (GNOSC). Supported US government agencies and branches of the military. My team supported the US Government’s global, classified and unclassified voice, video and data networks. Resolve performance and encryption issues, managed and resolved.

Dallas, TX, US

As a member of the AT&T Chief Security Office (CSO), managed senior technical managers, non- management employees and contractors. Developed strong teaming relationships with vendors, internal clients, business units, business partners and other stakeholders to accomplish common objectives. Developed and maintained corporate security policy, requirements.

Dallas, TX, US

Technical Manager of Corporate Security Office operations which encompassed numerous lead assignments including: corporate security policy and requirements development; Computer Security Incident Response Team (CSIRT) coordinator; security product selection committee member; identity management manager; ID provisioning and customer service manager.

Dallas, TX, US

Managed the AT&T Horizons Midwest corporate training program that encompassed self and team motivation, performance, success and communication development. Regional Data Center technical training manager. Designed, developed, maintained and supported a variety of business, engineering and sales applications on server and mainframe platforms. AT&T Network.

Dallas, TX, US

Supported a variety of internally developed regional mainframe and UNIX-based applications including corporate and locally developed code. These applications consisted of: installation material warehousing, material management, order processing, shipping, receiving, repair and return, warranty eligibility, vendor management, purchasing, bill payments and.

Bs Business Administration, Management Information Systems

Masters Project Management Certification, Quality Management