Direct report to the CISO, spearheaded cybersecurity operations across 98 countries, building a Fusion Center with 10 direct reports and an extended global team. Supporting Governance, Risk and Compliance, Audit, and Security Engineering, identified and closed gaps in security controls, risk and vulnerability programs, enriching IT Security policy, and developing content for cyber awareness training.- Increase monitoring maturity 30% enterprise-wide, improving Security Engineering tool effectiveness, adding EU staff, while augmenting vulnerability, risk, and compliance management.- Enhance cloud security posture (AWS, Azure) through security policy improvement. Identified and drove response of over a number of vulnerabilities, plus raising awareness to potential security risks with Open-Source software to improve application/SDLC processes.- 3/4ths of all risks within the organization were actively identified under my leadership. Mentoring team, advising IT & business teams, and steering risk management team through potential impact and recommended mitigations to drive remediation.- Negotiate MDR and Threat Intelligence services saving the business over $400k/year.- Partner with Legal and Sourcing to negotiate contracts, adding cyber-specific language to contracts.- Innovate capabilities to investigate non-cyber IT outages using security tools, identifying root cause in 100% of engagements.- Architectural Review Board member, assessing projects to identify risk gaps and TTP threats, for business and privacy stakeholders.- Formulated Executive Tabletop Exercises to empower Executives, Crisis Management, Legal, and Communications teams, promoted Enterprise-wide security awareness program by developing content for phishing, ransomware, and policies.

Led Security Operations Center of 14 analysts and contractors responsible for readiness for global cybersecurity incident response.- Compounding capabilities by 70% across multiple security domains by rearchitecting GSOC to a global Fusion Center model. Integrated SOAR automation (+5 FTE) and Cyber Threat Intelligence, supporting brand & emerging threat detection, risk/vulnerability escalation.- Forged strategic alliance with Legal and Privacy counsels, driving awareness and preparedness for both compliance frameworks and potential organizational risks from cybersecurity incidents.- Modernization of GSOC with training, tools, processes, and collaborative leadership style, resulting in 86% retention rate of talent.- Champion building a forensics capability covering data centers and cloud, assessing vendors, interim open source and IR retainer.- Rewrite Cyber Incident Response Plan, aligning to NIST CSF / SP 800-61, defining and tracking metrics, enhancing audit and compliance.

Managed a regional SOC of a global incident response group, with 24/7 coverage. Responsible for hiring, team preparedness, career development, cyber incident response (NIST 800-61 with Lockheed-Martin cyber kill chain and MITRE ATT&CK).- Rapidly implemented cybersecurity monitoring and detection around OT/ICS program, supporting COVID vaccine distribution.- Implemented database & Snowflake monitoring & alerting 6 weeks ahead of deadline, including IR playbooks and escalation criteria.- Proactively aligned cybersecurity strategies with evolving HIPAA, HITECH, PCI, and GDPR standards, ensuring continual compliance.- Regular briefings to executives, Business Information Security Officers, and Legal/Privacy attorneys.- Develop and implement security-to-business metrics, service quality standards, and trends at both business line and corporate levels- Authored use cases and developed IR escalation criteria by threat, business risk, and impact.- Cybersecurity, Incident Response, and transition focal to business for multi-billion divestiture.

Senior cyber defense staff providing subject matter expertise, business leadership, and strategic planning for GE Healthcare (GEHC) commercial product development and deployment in Public & Hybrid clouds (IaaS/PaaS/SaaS) & legacy infrastructures. Collaborate with business leaders and product stakeholders, privacy attorneys, and legal counsel, to manage competing priorities, to assess business requirements, determine regulatory obligations (such as HIPAA, HITECH, and the EU’s General Data Protection Regulation (GDPR)). Work to define security policies, standards, guidance, and author and socialize security documentation. Driving the goal of reducing risk to acceptable limits, assess software development lifecycle artifacts (risk & privacy assessments, threat model, and business, regulatory, and contractual requirements of application environments) to determine operational risk gaps, and then design and implement security and mitigating operational controls based upon NIST 800, ISO 27001, and other industry standards and frameworks. Assess residual risk and recommend mitigating controls in product operational environments. Provide application and cloud environment log monitoring, incident response for high-risk events through the entire IR lifecycle (preparation, detection/analysis, containment, eradication, recovery, and post-incident), and incident escalation management, managing technical resources, providing updates to executive management ad stakeholders, and issuing final report for all GEHC cloud and legacy environments

Develop and maintain strategic partnerships with IT and business unit CIOs and CISOs, assist business unit CIO's and CISO's in developing and prioritizing security initiatives, participate in the development , communication, and implementation of global security policies, standards, guidelines, and procedures, and serve as an advocate for IT and business CIOs and CISOs issues within the Global Cyber Security organization.

Senior/lead member of the Corporate Security Operations Center, responsible for the generation of response procedures, re-implementation of Data Loss Prevention response processes, response metrics and reporting, staff training and development, and liaison with other IT and information security teams.

Information Security projects, implementation of Security Event & Incident Management system, security event monitoring and management, file integrity monitoring for SOX & PCI systems, information security assessment/enforcement.

Responsible for security, audit, and compliance governance for HP’s Enterprise Services customers. Accounts include multi-billion dollar customers in the pharmaceutical and manufacturing industries. Scope includes regulatory, privacy, audit and compliance responsibilities such as SOX, PCI and FDA. Duties include assessing risk, addressing security and compliance issues in areas such as identity management, patch compliance, and briefing HP and customer executive and C-level management. Projects include roll-out of systems that enhance security and process automation, and reduce risk, while containing costs that may affect tens of thousands users and multi-million dollar business lines.

Contractor to the US Navy at the Naval Ocean Systems Center developing software for communications, control, and coordination of real-time remote data acquisition systems.Duties also included system and network administration, and preparation of formal systems and user requirements, functional specifications, and all other documentation relevant to the software development life cycle.

Contractor to the USAF at the Eastern Space & Missile Center, Patrick AFB, in support of the NASA shuttle and USAF launch programs.-Consulted with USAF and other contractors to implement the first campus-area network at Patrick AFB with links to Cape Kennedy and Cape Canaveral AFS.-Provided network engineering and support from design phase through deployment.-Provided Unix systems management.-Provided network support for over 100 users during pilot implementation, and over 300 which rolled into production.