Anthony Head

843-***-**** ad48qv@r.postjobfree.com Mount Pleasant, SC 29466 linkedin.com/in/anthonyhead/ A seasoned cybersecurity leader with 15+ years of leadership, I specialize in developing strategies and systems to shield organizations from cyber threats. My expertise encompasses guiding cross-functional teams, risk management, and advising on technological solutions for both large and small businesses. Known for identifying vulnerabilities and driving operational enhancement, I am committed to implementing advanced cybersecurity measures and fostering continuous improvement, ensuring robust protection against evolving threats. Agile Project Management Information Security Management Managed Security Service Provider Incident Response Data Privacy Regulatory Compliance Risk Assessment Risk Management Vulnerability Management Data Analysis Executive Team Leadership Cloud Security TECHNICAL SKILLS

Platforms: Azure, AWS, Digital Ocean, Linux, Mac OS X, Windows Server, UNIX, Solaris, Cisco IOS, Checkpoint SPLAT, MS SQL Server, MySQL, Sybase, MS Access

Project Management: Jira, Confluence, Agile Methodologies Security & Testing: ZScaler, Windows Defender ATP, Crowdstrike, Proofpoint, Mimecast, Edgescan, Trend Micro Deep Security, McAfee Antivirus, Sophos Antivirus, Skybox, PaloAlto FW, Airwatch, Aruba Networks, SCCM, BlueCoat Proxy, Tripwire, ISS Proventia IDS/IPS, Cisco IDS/IPS, Checkpoint IDS/IPS, NFR IDS, Rapid7 Nexpose, Qualys, Tenable Nessus, BurpSuite, ZAP, Netsparker, Metasploit, Kali, GoPhish Tools: Exabeam, Splunk, Azure Sentinel, Darktrace, JAMF JSS, Niksun Netdetectors, F5, Network Critical TAPS, RSA Envision, RSA Envision, Azure AD, Microsoft 365, Microsoft Exchange Maintenance PROFESSIONAL EXPERIENCE

Capital One McLean, VA (Remote)

Manager, Cyber Technical April / 2023 – March / 2024 Reason for leaving: After a rewarding tenure at Capital One, where I contributed to significant cybersecurity initiatives and team leadership, the company underwent a strategic realignment that resulted in our team being laid off. This change provided me with the impetus to seek new opportunities where I could apply my extensive experience and continue to grow professionally..

• Led development and delivery of strategic planning for core cyber products to meet aggressive business objectives and meet compliance regulations

• Drove development team's product vision, translating vision into objectives, and providing customer informed guidance to shape quality product development

• Worked with cross-functional teams to deliver reliable, well-managed, and sustainable features including creating new intake process for project planning to streamline management of initiatives in Jira

• Drove impactful improvements to cyber capabilities using deep technical knowledge and subject matter expertise in cybersecurity and systems engineering

Verterent, LLC Barrington, IL (Remote)

Principal Consultant 01 / 2023 – 04 / 2023

Reason for leaving: Chose an impactful role with Capital One, where I could apply my strategic vision and deep technical knowledge to develop and refine cyber capabilities at scale within a major financial institution.

• Provided Cybersecurity strategy, program, and integration consulting support for PwC clients with a focus on current state assessments and future state roadmap, investment planning, and operating model development

• Researched, vetted, and chose new email and communication platform to improve communication with clients and deliver better collaboration and video conferencing

• Worked with cross-functional IT teams to select and onboard new data sources in compliance with regulatory requirements

Anthony Head 843-***-**** ad48qv@r.postjobfree.com EY Charlotte, NC (Remote)

Manager, Cybersecurity Threat Resilience 02 / 2022 – 01 / 2023 Reason for leaving: Took on a short-term contract Principal Consultant role with Verterent, LLC, to challenge myself with high-level strategy and program integration, focusing on providing bespoke consulting services and shaping future-state cybersecurity roadmaps for clients.

• Managed client security projects; assisted in design of cyber security strategy and roadmap, conducted gap analysis, designed process integration, and conducted training and workshops

• Directed client engagement teams, working with a diverse clients to deliver professional services and manage business development activities on strategic and global priority accounts

• Provided cyber security advisory services to clients, including security transformation, Identity and Access Management (IAM), Cyber Threat Analytics and Management (CTM), Data Loss Prevention (DLP)

• Designed client’s security architecture including implementation and customization of security solutions

• Coordinated cybersecurity exercises, such as tabletops and capture the flags, to optimize detection and response functions

PRA Health Sciences Raleigh, NC (Remote)

Associate Director Cybersecurity 08 / 2020 – 12 / 2021 Reason for leaving: Moved to EY to expand my horizons in managing large-scale cybersecurity threat resilience projects, seeking to deepen my advisory expertise and to guide diverse clients through complex security transformations.

• Provided mentorship and guidance to junior security professionals, IT teams, and business units on cybersecurity, including managing projects and developing solutions

• Mobilized Cybersecurity Operations and Engineering team charged with evaluating existing frameworks and transforming technical issues into key components for solutions to upgrade equipment and security

• Discovered and instituted new/improved testing methods and processes while assessing systems

• Collaborated with cross-functional teams to develop, institute, and monitor security strategy, conducting various testing, such as vulnerability-level risk assessments, to certify compliance status

• Identified opportunities and implemented efficiencies and standardized operating procedures improving consistency, precision, and customer service quality in SOC tickets and vulnerability management tickets

• Coordinated tabletops and capture the flags exercises to optimize detection and response functions

• Spearheaded digital transformation for EDR/Antivirus and SIEM migrations, enabling previously unavailable insight into performance and visibility

Soteria Charleston, SC

Senior Security Advisor 12 / 2019 – 08 / 2020

Reason for leaving: Transitioned to PRA Health Sciences as Associate Director of Cybersecurity to lead the Cybersecurity Operations and Engineering team, aiming to refine security frameworks and innovate solutions within the healthcare sector.

• Consulted with clients on repeatable strategic solutions managing privacy, fielding industry trends regarding cyber risk practices including NIST 800-53 assessments to check compliance with security & privacy controls

• Partnered with teams to assist and address risk and compliance management of security functions challenges

• Built tailored privacy frameworks adhering to industry standards, testing and analyzing clients’ existing environments and applications

• Mentored consultants and analysts on best practices and procedures to certify quality of solutions and customer service, expanding overall capacity and capability of Soteria

• Reduced time to complete and deliver penetration testing report from 7-10 days to 1-3 days through introduction of improved processes and tools

Anthony Head 843-***-**** ad48qv@r.postjobfree.com Blackbaud Charleston, SC

Cybersecurity Engineer, Principal 04 / 2017 – 12 / 2019 Reason for leaving: Joined Soteria to consult on a wider array of strategic cybersecurity solutions, which allowed me to leverage my hands-on experience to advise clients on cutting-edge risk practices and compliance.

• Led technical security projects, including infrastructure and secure data migration, guiding teams in effective management of confidentiality, integrity, and availability of Blackbaud security platforms

• Executed regular risk and security assessments, developing solution to enforce security and privacy requirements including Sarbanes-Oxley and HIPPA

• Gathered requirements from key stakeholders, translated complex requirements and functional specifications into logical network designs, stable application systems, and software solutions

• Evaluated operations to discover and mitigate new-and-emerging privacy risks on regular basis as SME on security solutions, including ethical hacking, intrusion detection, prevention technologies, and threat modelling

• Oversaw merger and acquisition functions, seamlessly onboarding acquired company into security stack University of Richmond Richmond, VA

Director of Information Security 04 / 2011 – 04 / 2017 Reason for leaving: Relocated to SC due to wife’s job. Sought a role with Blackbaud to further my expertise in technical security projects, driving the management of security platforms and enhancing my strategic involvement in safeguarding sensitive information.

• Conducted compliance testing, monitoring, documentation of risk events, remediation plans, and other security and privacy-related auditing activities

• Coordinated incident response and forensic analysis for security breaches; designated Point of Contact for internal and external legal and law enforcement investigations

• Tracked and measured system performance and configuration to discover and remedy vulnerabilities

• Determined threats, gaps, and vulnerabilities, translating into strategic, analytical solutions

• Created policies and procedures for PCI assessments including hiring vendors for pen testing, PCI QSA attestation, and securing PCI network and devices

• Addressed stakeholder complaints about password issues; implemented new 16 character password policy in collaboration with IT groups that maintains security and improved customer satisfaction

• Pioneered, initiated, researched, and rolled out security awareness, red-flag training, and phishing program; thwarted phishing attempt saving millions of dollars in potential losses ADDITIONAL EXPERIENCE

Network and Information Security Capital One (Verizon Business) Richmond, VA 01 / 2010 – 05 / 2011 Security Engineer Capital One (PlanIT Technologies) Richmond, VA 04 / 2006 – 01 / 2010 IT Security Manager Media General Richmond, VA 04 / 2003 – 04 / 2006 EDUCATION

Master of Science in Network Security Capitol College Laurel, MD 2005 Bachelor of Science in Computer Information Systems Jacksonville State University Jacksonville, AL 1998 CERTIFICATIONS

CISSP (369504), CCSK (yGkRNPksrStyQTEsfeLKepUC), GPEN (Analyst# 8481), GCIH (Analyst# 21697), C EH (ECC023299), Security+ (COMP001020264039), CASP (COMP001020264039), ITIL V3 Foundations (00159214), Level 4 CJIS Security

Contact this candidate