In his role as Enterprise Cybersecurity Director, highlights include:

• Led several projects ranging from global technology deployments, logistics, integration, hardening, tuning of network infrastructure, endpoints, cloud, mobile + vendor relations and 3rd party risk

• Built several risk management processes to include SaaS and Cloud product evaluation, cyber requirements, logistics, contractor and employee management, vulnerability management, SOC Ops & SIEM architecture, integration and tuning, cyber compliance, policy, customer queries and RFIs

• Authored SOC operations contract, plan, and oversaw architecture development and integration of managed security service provider (MSSP) as well as coordination between 4 continents and time zones to establish effective 24/7 cyber ops cadence and SOC operations.

• CISO Risk management facilitation, approvals, POA&Ms, and enterprise password policy, audits and management

• Oversaw global implementation and expansion projects for firewalls, intrusion prevention and detection systems, data loss prevention, endpoint protection (AV/EDR/NGAV), behavioral analytics, and other systems to integrate into SOC operations and incident response

• Helped establish, evaluate, and implement key aspects of ISO 27001, NIST Cybersecurity Framework and the MITRE ATT&CK framework for Strategic, Operational, and Tactical-level cybersecurity mapping across the enterprise

• Prepared presentations and provided planning and decision points for key initiatives to key C-level executives to include critical input into the annual cybersecurity strategic plan and CEO quarterly & annual reviews for cybersecurity risk, program and budgeting management and project execution oversight

• Led the planning, programming, execution and post-execution facilitation for annual security audits, vulnerability assessments and penetration tests for a global enterprise

• Tested new products and evaluated and improved existing solutions while working on threat hunting and red-blue-purple team capabilities to upskill the team quickly

Other career highlights:

• Built and oversaw cyber capabilities portfolio at the Program Office level and oversaw completion of several projects/initiatives

• Led cybersecurity assessment success at various locations and received various awards and accolades for achievements

• Provided oversight for standards compliance of cloud and mobile technologies 

• Led functions to include: risk reduction, cyber operations, cyber threat intelligence fusion, incident response, threat hunting, compliance inspections, architecture, security engineering, cyber hygiene, systems survivability and resilience

• Programmed and oversaw several projects to protect and improve networks and systems 

• Oversaw defense-in-depth controls, lightning protection and risk management gap coverage for cyber critical infrastructure 

• Facilitated Secure desktop configuration (SDC) testing & rollout plan, patching process and other enhancements to include physical and virtual 

• Oversaw Certification and Accreditation of ~100 mission systems and POA&M adjudication process

• Led large IT network and systems infrastructure upgrade projects

• Ensured secure baseline and framework implementation

• Provided critical coordination of Information Assurance IA working groups & Cyber Incident Response

• Led newcomer's orientation education program and continuous training, awareness and engagement programs in various assignments

• Drove regional-level Security Operations Center (SOC) situational awareness and improvement programming and budgeting

• Oversaw strict physical security and access controls of systems and facilities

• Tested and provided input on cutting-edge cyber watch and decision tools

• Successfully trained employees in cybersecurity awareness

• Facilitated red-blue-purple teaming exercises, operational and readiness assessments, and several other engagements for continuous improvement