Information Security - Information Technology Resume Search
Information Security - Information Technology Resume Search
My Spider Scam Awareness Contacting Us F. A. Q.
 
Job Seekers
Search Jobs
Browse Jobs
Post a Resume
Job Alerts
 
Employers
Search Resumes
Browse Resumes
Post a Job

Information Security Resume


Desired Industry: Information Technology SpiderID: 82210
Desired Job Location: Duluth, Georgia Date Posted: 9/24/2019
Type of Position: Full-Time Permanent Availability Date: immediately
Desired Wage: 125000
U.S. Work Authorization: Yes
Job Level: Management (Manager, Director) Willing to Travel: Yes, Less Than 25%
Highest Degree Attained: Masters Willing to Relocate: No


Objective:
Results-driven and highly accomplished executive equipped with outstanding leadership skills and a proven track record of

success in managing all aspects of operations and projects and leading corporate security initiatives. Expert at leading,

training, and motivating cross-functional teams to improve overall performance and developing and implementing strategic

plans to streamline business operations and achieve bottom-line results and continuous progress. Recognized for the ability

to develop solid relationships with strategic partners and build consensus across multiple organizational levels.


Experience:
Guardian Pharmacy LLC, Atlanta, GA
Information Security and Compliance Manager 2018–Present
Performs assessments on system and organization controls (SOC) reports, compliance audits, and IT general controls for

managed service providers, system applications, and external auditors
Managed numerous proofs-of-concept for vendor selection including rule-based secure email solution, IT service management

(ITSM) platform, security incident, and event monitoring
Designed and administered an enterprise-wide annual training plan and Learning Management System (LMS) comprised of annual

security awareness training, fraud, waste, and abuse (FW&A) training, HIPAA training, executive leadership training, and

quarterly phishing campaigns
Executes quarterly phishing email campaigns which has distributed more than 10,000 phishing emails to end users with 98%

pass rate
Drove efforts in successfully implementing the following initiatives:
Data Loss Prevention (DLP) Program for more than 2,100 endpoints which resulted to identification of data abuse and

transmission of unencrypted sensitive information sent to outside recipients;
Multi-Factor Authentication (MFA) for O365 that determined 300 attempted intrusions from unauthorized devices within 30-

days; and
Mobile Device Management (MDM) platform to synchronize over 500 unmanaged mobile devices into a managed network
Security Incident and Event Monitoring (SIEM) solution that identified hundreds of attacks daily.


Conceptualized the organization’s first Enterprise Security Program for audit findings of critical security issues thus,

eliminating 85% of Health Insurance Portability and Accountability Act (HIPAA) and Health Information Trust Alliance

(HITRUST) compliance gaps within six months
Boosted compliance readiness rate by 30% after 38 compliance assessment by developing Federal Information Security

Management Act (FISMA), HIPAA, HITRUST, and National Institute of Standards and Technology (NIST) crosswalks including all

required and addressable controls

Georgia State University, Atlanta, GA
Adjunct Professor 2018–Present
Impart knowledge of Master of Information System (MSIS) cyber security program
Instructs graduate and undergraduate courses on cloud security, security controls, and ethical hacking.

American CyberSystems (ACS), Atlanta, GA
Information Security and Compliance Officer 2017–2018
Enforced compliance of 60 applications required to comply with HIPAA, NIST, Internal Revenue Service (IRS), Social Security

Administration (SSA), and Centers for Medicaid and Medicare Services (CMS) regulatory guidelines and control objectives by

leading six technical and security teams, seven third-party vendors, and organizational staff
Served as senior IT security manager for the State of Georgia’s implementation of the Patient Protection and Affordable

Care Act (ACA) in accordance with the Centers for Medicare and Medicaid Services (CMS) compliance requirements, the

Integrated Eligibility System (IES), and State-administered assistance services which included Medicaid and PeachCare for

Kids (a child welfare program budgeted at $1.5 billion annually)
Effectively handled agency audit activities which involved IRS, Office of Safeguards, the Federal Bureau of Investigation

(FBI), CMS, Georgia Department of Auditing and Accounting, HIPAA, and HITRUST audits
Developed and implemented IT security policies and procedures for agency-wide enforcement, training, and program

standardization
Communicated agency audit findings of reports from external agencies based on NIST, International Organization for

Standardization (ISO), HIPAA, HITRUST, MARS-E 2.0, IT general controls (ITGC), and IRS Office of Safeguards’ Publication

1075 regulations

DataPath, Atlanta, GA
Information Security Manager 2015–2016
Organized and carried out mitigation and remediation strategies for the agency’s vulnerability management program as well

as security monitoring and Security Operations Center (SOC) program
Directed seven junior security analysts while preparing candidates for consulting duties and analyst roles
Rendered keen oversight to cross-operational teams regarding security solutions, projects, and priorities
Developed information security compliance documentation, standard operating procedures (SOP), and other work instructions

for organizational compliance
Reviewed systems and networks for potential security risks and recommended mitigation or countermeasures to resolve

integration issues related to the implementation of new systems within the existing infrastructure
Reduced the exposure of twelve clients by providing oversight and guidance in the Security Operation Center (SOC),

remediation of security incidents, and client resolution procedure

United States Army
Senior Supervisor | Soldier 1993–2015
Managed 18 departments for a Level I Medical Center with 320 military members and 2,500 civilian employees
Directed a robust Information Security Department consisting of 12 departmental staff members, security budget of $250,000

and the development of a five (5) year information security strategy
Developed and implemented a 44-bed hospital consisting of two (2) operating rooms, six intensive care wards, emergency

room, laboratory, digital X-rays, and pharmacy comprised of 110 computers, eight network printers, and 10 VOIP phones


Managed a 400-bed level 1 trauma center and a 250-bed field hospital, ensuring the security of patient data according to

HIPAA regulations and Joint Commission standards
Oversaw 120 Soldiers in developing 164 bed Level II Combat Support Hospital and managed over $18.6M inventory asset
Served as operations manager for 44,000 Soldiers deployed to Iraq; advised the Corps Surgeon and his staff on all issues

regarding medical readiness, training, and effectiveness for over 30,000 Soldiers
Trained more than 4,000 entry-level trainees during wartime missions
Functioned as lead auditor for all flight medical training programs in the US Army; evaluated over 1,300 trainees including

record retention, record database management, and no-notice evaluations


Education:
Executive Doctorate in Business, In Progress (Expected Completion Date: Jul 2021)
Georgia State University, Atlanta, GA

Master of Science in Information Security, 2015
University of Maryland University College, Adelphi, MD
GPA: 3.85

Bachelor of Science in Computer and Information Sciences, 2005
University of Maryland University College, Adelphi, MD
GPA: 3.6 |Dean’s List | Upsilon Pi Epsilon Honor Society


Affiliations:
CERTIFICATIONS

Certified Information Security Manager (CISM)
Certified Information Systems Security Officer (CISSO)
Certified Healthcare IS Security Practitioner (CHISSP)
Certified Health Insurance Portability and Accountability Act (HIPAA) Compliance Officer (CHCO)
Enterprise Risk Management (ISO 31000)
Certified Penetration Testing Engineer (CPTE)
Certified Vulnerability Assessor (CVA)
Certified Cyber Intelligence Investigator (CCII)
Junior Penetration Tester (JPT)
Certified Vulnerability Assessor (CVA)
Information Security Management (ISO 27001) (In Progress)
Lead Auditor (ISO 27001) (In Progress)


Skills:
Program Development
Training Development and Facilitation
Process Redesign and Change Management
Regulatory Frameworks
Contract Negotiation
Executive Level Communication
Strategic Planning
Motivational Support
Project Management
Vendor Management


Candidate Contact Information:
JobSpider.com has chosen not to make contact information available on this page.
Click "Contact Candidate" to send this candidate a response.


    





© 2020 Job Spider
Privacy Policy | CC Marketing Sites | Site Map | Links