DGianna, MS, MBA, CISSP

732-***-**** Ext ***

eyhv7r@r.postjobfree.com

• Payment Card Industry Qualified Security Assessor (PCI-QSA)

• Payment Application Qualified Security Assessor (PA-QSA)

Professional Experience

Millennium Consultants, Somerset, NJ

2011-Present

Information Security Practice Lead

Indian-owned firm providing Development, SQA and Testing services in the U.S., Singapore and India.

• Develop processes, procedures, and resources to launch Information Security practice

• Screened Information Security partners based in the U.S. and Malaysia

• Introduced Info-Sec relationship with existing banking customers in Singapore

• Provide Advisory, PCI, GRC and technical assessment services

NetSPI, Minneapolis, MN

2010 – 2011

PCI Practice Team Lead

Privately held firm offering information security professional services, privacy and compliance consulting for PCI-DSS and PA-DSS, and PCI Authorized Scan Vendor

• Leader of PCI-DSS compliance practice, consisting of 10 PCI-QSA and 3 PA-QSA consultants

• Aggressively built practice from $4M to $5.5M annual revenue

• Introduced automated audit and reporting tools to streamline PCI-QSA processes

• Performed PCI Audits, PCI Readiness Assessments and Gap Analysis and manage PCI-related remediation projects for leading clients in the retail, financial, healthcare and petro-chemical industries

• Performed PA (Payment Applications) certification under PA-DSS in test lab for leading vendors

• Thought Leadership: publish corporate NetSPI-branded blogs, lead webinars

• Public speaking engagements: ISSA, OWASP, Fairfield County InfoSec group, industry webinars

• Training: Develop, deliver and facilitate training programs to promote PCI cardholder data security

Verizon Business Security Solutions (formerly Cybertrust), Herndon, VA

2005 – 2010

Senior Security Consultant

Global provider of Managed Security, Identity Management, Forensics and Compliance services

• PCI-DSS compliance assessments for Fortune 50 corporations – retail and financial institutions

• Wireless assessments, network vulnerability assessments, and penetration testing

• Architectural reviews and assessments; Policy review and coaching

• VoIP security assessment and architectural review for Telco

• Application security evaluation and assessment

• Field investigation and incident response

• Pre-sales engineering support

Solutionary, Inc, Omaha, NE

2004 – 2005

Northeast Regional Technical Manager

Managed Security Services Provider and professional services organization

• Delivered application assessments, architectural reviews, and internal vulnerability assessments

• Performed Visa CISP, MasterCard SDP and PCI compliance audits for retail and financial clients

• Pre-sales support to assist Northeast Sales team achievement of $1M per quarter revenue

• Developed proposals and answered RFP/RFI requests for government and commercial customers

• Acted as liaison between SOC, Sales team, vendors and Development team for custom integration

• Delivered in-house Check Point firewall training to SOC analysts, engineers and project managers

Winmill Software, New York, NY

2003 – 2004

Senior Consultant and Security Instructor

Business solution provider offering development, consulting and training services.

Senior Consultant:

• Performed security, QA and Business Analysis consulting for WinMill Software clients

• Worked with Financial, Pension-fund and non-profit clients

• Delivered security assessments, Check Point firewall configuration, and regression testing

• Employed Mercury Quick Test Pro, Star Team, and MS SQL 200 Query Analyzer tools.

Security Instructor:

• Taught Check Point VPN-1/Firewall-1 Management I, II and III courses at Winmill training facility

Westcon, Inc, Tarrytown NY

1999 – 2003

Sales Engineer and Technical Instructor

Global distributor of network infrastructure, security and voice products operating in 12 countries.

Provides logistical, marketing and technical support for Check Point, Nortel and Cisco products.

Pre-Sales Support:

• Developed security solutions for small, medium and enterprise customers

• Helped sales staff to close an average of $54Million in quarterly sales of security products

• Supported Marketing programs to promote security products to resellers and end-users, including Enterprise, Government, and Educational vertical markets

Professional Services:

• Installation and post-sales support for Check Point, Nokia, Amplify and RSA solutions

• Pre-staging of Nokia/Check Point firewalls, including policies, configuration and VPN

Technical Instructor:

• Taught Check Point Management I and II courses to engineers, administrators and security analysts

Reveo, Inc, Elmsford, NY and Sunnyvale, CA

1998 – 1999

Information Technology Director

IBM – Advanced Semiconductor Technology Center, East Fishkill, NY

1996 – 1998

Team Leader, System Support

Isis Films, New York, NY

1995 – 1996

Systems Engineer, Digital Video Editing Systems

Port Authority of New York and New Jersey, Jersey City, NJ and New York, NY

1993 – 1995

Aviation Project Scheduler – Maintenance Engineering Design Division

Academic Experience

Everest College Phoenix, Santa Ana, CA

2004 – Present

Senior Online Adjunct Professor

Teach undergraduate and graduate online courses at 22-campus accredited college.

Courses include Information Security, Web Design, Programming, and Computer Applications.

Civil Air Patrol (USAF Civilian Auxiliary)

2007 – Present

2010 – Present: NY-035th Catskill Mountain Group

2nd Lieutenant, Emergency Services Officer

Facilitate seminars for aerospace education. Provide leadership, mentorship and training to senior members and youth cadets. Act as Pilot for Civil Air Patrol aircraft, Mission Scanner, and Ground Team Member as required in search-and-rescue and aerial reconnaissance missions.

Education

Collegiate

• MBA, Information Systems, Marist College, Poughkeepsie, NY

• MS, Computer Science, Marist College, Poughkeepsie, NY

Published thesis, “Internet Security: Empowerment through Technology”

• BSEE, Electrical Engineering, Rochester Institute of Technology, Rochester, NY

Professional Development

• Certified Information System Security Professional (CISSP) #53476

• Payment Card Industry Qualified Security Assessor (QSA), Foster City, CA

(Certified as PCI-QSA by PCI Security Standards Council)

• Payment Card Application Qualified Security Assessor (PA-QSA), San Mateo, CA

(Certified as PA-QSA by PCI Security Standards Council)

Organizations

ISSA, OWASP, (ISC)2, Board member of Poughkeepsie Pilots Association, Valley Soaring Club, Civil Air Patrol

Contact this candidate