John Nabours
Spring Valley, CA *1977
951-***-**** abh531@r.postjobfree.com
Summary
Hands-on Information Technology Manager specializing in information
security and related standards, processes, and policies. Broad background
including conceptual understanding of hardware, operating systems,
applications and data flow. Expertise in generating effective network
architecture and security policies as well as communicating the importance
of both. Regarded as an analytical individual who is able to creatively
identify project issues and potential resolutions.
Certifications
Certified Information Systems Auditor (CISA)
Certified Information Systems Security Professional (CISSP)
Technical Skills
Productive in Windows, Linux, and most flavors of Unix
Network technologies from architecture and security to bandwidth management
Project Management Methodologies, Software Development Life Cycle
Databases including DB2, Oracle, and SQL Server
Programming languages, Perl, C, Java
ISO27001, 2 SOX 404, PCI-DSS, HIPAA, GLBA
Intrusion Detection
Vulnerability Scanning
Professional Experience
Smart & Final Stores, Los Angeles, CA 2004 - 2010
$2B retail grocer
Manager, IT Security and Compliance
Reported to CIO. Guided the company into original SOX compliance, defining
and documenting controls and introducing centralized change control and
security controls along with more formalized SDLC practices. Consulted
with developers on Security and Compliance considerations.
Developed Disaster Recovery Plan for IT functions and architected a roadmap
of server and storage changes that reduced recovery times by 30%.
As CISO, achieved and maintained Payment Card Industry (PCI) compliance
with Data Security Standard. Owned policy maintenance for information
security.
Managed Network Architecture to ensure information security. Changed
network architecture to segment out credit card data from rest of
organization for security and to limit scope of annual PCI audit.
Implemented Wireless Intrusion Detection across corporate, warehouses, and
260 stores.
Developed server hardening policies, Incident Response, and Security
Awareness program.
John Nabours Page Two
K-Force Staffing, Irvine, CA 2004
Leased to Jefferson Wells as a Contractor to Boeing
Analyzed compliance to Sarbanes Oxley. Identified and documented controls
for all IT processes for client.
Achieved SOX compliance for Boeing with zero citations.
Reviewed controls at separate location; reworked controls description to
support existing method, as an advocate for the client.
3
Charlotte Russe Inc, San Diego, CA 2001 - 2004
$500M retail fashion
5 Director, IT Operations
Managed two teams providing support for 24x7 DataCenter operations, POS
support, Help Desk services, and Systems Administration of Novell, Unix and
Windows 2000 servers. Established and maintained IT technology roadmap and
strategy. Revised Disaster Recovery and Business Continuance plans.
Managed a network of 300 stores, 2 Distribution centers, a remote office,
and field personnel.
Established standards for PC work stations and servers, sourcing, and
vendors, resulting in increased efficiency.
Developed processes, procedures, and documentation to comply with Sarbanes-
Oxley requirements.
Served as highest escalation point for technical issues from O/S,
applications, and peripherals.
Established and maintained enterprise backup / restore and SAN systems.
Maintained secure infrastructure to protect credit card, payroll, and other
confidential data.
Tricon Global Restaurants, Irvine, CA 1987 - 2001
Taco Bell - a $6B fast-food business
Manager, Network Architecture
Managed a team of 6 people supporting restaurant system configuration,
asset control, and communications. Global Liaison for dial-up mobile
access to sister restaurants KFC and Pizza Hut. Designed and managed the
polling environment for 4,300 stores.
Managed $2M project to roll out global mobile access capability valued.
Highly visible project involved customization of purchased project,
development of an administrative infrastructure application, managing a
global project team of 20 people, and all aspects of a product development
project from funding approval to documentation and training.
Managed a project to replace dial-up polling environment with networking
protocols. Project involved coordination of development and support teams
across 3 cities, and 3 brands with targeted distribution to 11,000 systems.
Architected and managed the operating environment, software distribution
process, access security, and remote access capabilities of the Unix-based
Taco Bell restaurant back-of-house systems.
Designed security framework for remotely accessed systems that provided
safe remote support.
Managed the supply chain of manufacturers, integrators, distributors,
installers, and maintainers to ensure on schedule delivery of new back-of-
house computer systems where they were needed.
Education
BS, Electrical Engineering, Northern Arizona University, Flagstaff, AZ