Information Security Director - Healthcare Resume Search
Information Security Director - Healthcare Resume Search
My Spider Scam Awareness Contacting Us F. A. Q.
 
Job Seekers
Search Jobs
Browse Jobs
Post a Resume
Job Alerts
 
Employers
Search Resumes
Browse Resumes
Post a Job

Information Security Director Resume


Desired Industry: Healthcare SpiderID: 74502
Desired Job Location: Seminole, Florida Date Posted: 1/27/2015
Type of Position: Full-Time Permanent Availability Date:
Desired Wage:
U.S. Work Authorization: Yes
Job Level: Management (Manager, Director) Willing to Travel: Yes, Less Than 25%
Highest Degree Attained: Masters Willing to Relocate: No


Objective:
CAREER OBJECTIVE: TO OBTAIN A SENIOR
MANAGERIAL LEVEL POSITION IN INFORMATION
SECURITY


Experience:
IT Architect, Enterprise Architecture
DaVita, Deland, FL Feb. 2011 to
Present
IT Architect
• IT Architect in the Office of
Enterprise Architecture with a
specialization in information security
• Manage the Enterprise
Architecture Governance program,
including chairing the Architectural
Review Board for compliance to
information security standards
• Plan implementation of strategic
information security related technology
• Test new and innovation security
and IT technology for possible
implementation including biometrics,
electronic signature, encryption,
identity management and mobile device
management
• Mange the deployment of an EA
(Troux) application and administer same
• Developed and implemented the
Application Rationalization program
accounting for over 2.3 million dollars
in cost savings.

Information Protection Manager
CIGNA, Bloomfield CT Sept. 2007 to
Aug. 2010
• Lead Information Security
Consultant on the Strategic Global
Sourcing Team responsible for the
security evaluation of business process
and development outsourcing business
partners.
• Audited the security and
information protection standards of
vendors engaged in providing services to
CIGNA
• Worked with a diverse team of
global sourcing, information technology
and insurance business executives to
implement cost effective and secure
business process and software
development outsourcing strategies
• Reviewed the security of
applications used in the company’s
business processes s in support of
health care specific privacy regulations
such as HIPAA, HITECH, PCI

Director of Information Security
HCC INSURANCE HOLDINGS INC., Houston, TX
Nov. 2003 to May 2007
• Four years in a senior
leadership role reporting to the CIO of
an International Fortune 1000
Corporation with 2.5 billion in revenue.
• I T Controls SOX Program Manager
: s such, developed and implemented
procedures and standards to meet or
exceed SOX Audit Requirements including
development of application and network
security controls, implementing system
monitoring, investigation, end user
awareness, physical controls, internal
review and documenting procedures in
support of COBIT based SOX Control
Objectives
• Developed and implemented a
secure software development methodology
• Evaluated and implemented new
application security technologies such
as Visual SourceSafe (VSS) and Fortify
• Designed the network security
infrastructure including the deployment
of a Qualys vulnerability scanner and a
Sourcefire IDS/IPS
• Presented information security
awareness training to every employee in
the company of 2000 employees, developed
web enabled Information Security
Awareness Training
• Implemented, monitored and
maintained an IDS / IPS System composed
of Sourcefire with Real Time Network
Awareness and SNORT
• Installed, tested and employed
vulnerability scanning tools such as
QualysGuard, GFI, Retina, ISS and Nessus
• Implemented security technology
to automate IT controls, including the
implementation of an automatic scanning
solution and an intrusion prevention
system (IPS) in support of SOX
objectives
• Served as the IT representative
on an interdepartmental (HR, Legal, IT)
HIPAA compliance project Recommended
changes to the security of systems
hosting PHI and supporting policies
• Developed a Corporate Business
Continuity Plan for an international
company comprised of 18 global
subsidiaries
• Served as the leader of a C
Level Incident Response Coordinating
Committee charges with the
responsibility to respond to events the
business
• Negotiated with security vendors
by narrowly defining scope of work
estimates and obtaining competing bids
• Set up automated vulnerability
scanning of internal and external
systems
• Designed and implemented a web
based Information Security Awareness
Training Program
• Performed computer forensic
analysis with Encase and Forensic Tool
Kit

AIRLINES REPORTING CORPORATION,
Louisville, KY March 2002 to Nov. 2003
Information Security Manager
• Successfully lead a part time
Computer Security Incident Response Team
of IT professionals in responding to one
significant Denial of Service Attack,
two major RPC worm attacks and
investigations of numerous lesser
incidents
• Information Security Lead for
the main datacenter for all major U.S.
based airlines
• Installed, tested and employed
vulnerability scanning tools such as
Retina, ISS Security Scanner and Nessus
• Recommended remunerative
strategies to strengthen the network
structure against hacking attempts
saving the company approximately
$100,000 in outside fees
• Developed four other security
related company policies; Data
Classification, Remote Access, Email
Usage and Strategic Information Security
• Implemented a secure email
gateway solution at the network
perimeter to protect the email
infrastructure

LAM RESEARCH, Fremont, CA Jan.
2001 to March 2002
Information Security Manager
• Installed an Intrusion Detection
and Analysis System
• Wrote and implemented various
information security policies
• Developed and implemented
Information Security Awareness Training
• Implemented an encryption
solution
• Developed requirements and
drafted RFPs for a network security
audit


Education:
EDUCATION:
• Masters of Business
Administration in Technology Management,
University of Phoenix, 2006
• Bachelor’s Degree in Criminal
Justice, Northeastern University, Boston
MA, 1984
• Certificate in Computer Systems
Support, Empire College, Santa Rosa, CA
1999
• U.S. Army Security Course for
Sys Admins/Network Managers


Candidate Contact Information:
JobSpider.com has chosen not to make contact information available on this page.
Click "Contact Candidate" to send this candidate a response.


    





© 2021 Job Spider
Privacy Policy | CC Marketing Sites | Site Map | Links