DGianna, MS, MBA, CISSP
732-***-**** Ext ***
eyhv7r@r.postjobfree.com
• Payment Card Industry Qualified Security Assessor (PCI-QSA)
• Payment Application Qualified Security Assessor (PA-QSA)
Professional Experience
Millennium Consultants, Somerset, NJ
2011-Present
Information Security Practice Lead
Indian-owned firm providing Development, SQA and Testing services in the U.S., Singapore and India.
• Develop processes, procedures, and resources to launch Information Security practice
• Screened Information Security partners based in the U.S. and Malaysia
• Introduced Info-Sec relationship with existing banking customers in Singapore
• Provide Advisory, PCI, GRC and technical assessment services
NetSPI, Minneapolis, MN
2010 – 2011
PCI Practice Team Lead
Privately held firm offering information security professional services, privacy and compliance consulting for PCI-DSS and PA-DSS, and PCI Authorized Scan Vendor
• Leader of PCI-DSS compliance practice, consisting of 10 PCI-QSA and 3 PA-QSA consultants
• Aggressively built practice from $4M to $5.5M annual revenue
• Introduced automated audit and reporting tools to streamline PCI-QSA processes
• Performed PCI Audits, PCI Readiness Assessments and Gap Analysis and manage PCI-related remediation projects for leading clients in the retail, financial, healthcare and petro-chemical industries
• Performed PA (Payment Applications) certification under PA-DSS in test lab for leading vendors
• Thought Leadership: publish corporate NetSPI-branded blogs, lead webinars
• Public speaking engagements: ISSA, OWASP, Fairfield County InfoSec group, industry webinars
• Training: Develop, deliver and facilitate training programs to promote PCI cardholder data security
Verizon Business Security Solutions (formerly Cybertrust), Herndon, VA
2005 – 2010
Senior Security Consultant
Global provider of Managed Security, Identity Management, Forensics and Compliance services
• PCI-DSS compliance assessments for Fortune 50 corporations – retail and financial institutions
• Wireless assessments, network vulnerability assessments, and penetration testing
• Architectural reviews and assessments; Policy review and coaching
• VoIP security assessment and architectural review for Telco
• Application security evaluation and assessment
• Field investigation and incident response
• Pre-sales engineering support
Solutionary, Inc, Omaha, NE
2004 – 2005
Northeast Regional Technical Manager
Managed Security Services Provider and professional services organization
• Delivered application assessments, architectural reviews, and internal vulnerability assessments
• Performed Visa CISP, MasterCard SDP and PCI compliance audits for retail and financial clients
• Pre-sales support to assist Northeast Sales team achievement of $1M per quarter revenue
• Developed proposals and answered RFP/RFI requests for government and commercial customers
• Acted as liaison between SOC, Sales team, vendors and Development team for custom integration
• Delivered in-house Check Point firewall training to SOC analysts, engineers and project managers
Winmill Software, New York, NY
2003 – 2004
Senior Consultant and Security Instructor
Business solution provider offering development, consulting and training services.
Senior Consultant:
• Performed security, QA and Business Analysis consulting for WinMill Software clients
• Worked with Financial, Pension-fund and non-profit clients
• Delivered security assessments, Check Point firewall configuration, and regression testing
• Employed Mercury Quick Test Pro, Star Team, and MS SQL 200 Query Analyzer tools.
Security Instructor:
• Taught Check Point VPN-1/Firewall-1 Management I, II and III courses at Winmill training facility
Westcon, Inc, Tarrytown NY
1999 – 2003
Sales Engineer and Technical Instructor
Global distributor of network infrastructure, security and voice products operating in 12 countries.
Provides logistical, marketing and technical support for Check Point, Nortel and Cisco products.
Pre-Sales Support:
• Developed security solutions for small, medium and enterprise customers
• Helped sales staff to close an average of $54Million in quarterly sales of security products
• Supported Marketing programs to promote security products to resellers and end-users, including Enterprise, Government, and Educational vertical markets
Professional Services:
• Installation and post-sales support for Check Point, Nokia, Amplify and RSA solutions
• Pre-staging of Nokia/Check Point firewalls, including policies, configuration and VPN
Technical Instructor:
• Taught Check Point Management I and II courses to engineers, administrators and security analysts
Reveo, Inc, Elmsford, NY and Sunnyvale, CA
1998 – 1999
Information Technology Director
IBM – Advanced Semiconductor Technology Center, East Fishkill, NY
1996 – 1998
Team Leader, System Support
Isis Films, New York, NY
1995 – 1996
Systems Engineer, Digital Video Editing Systems
Port Authority of New York and New Jersey, Jersey City, NJ and New York, NY
1993 – 1995
Aviation Project Scheduler – Maintenance Engineering Design Division
Academic Experience
Everest College Phoenix, Santa Ana, CA
2004 – Present
Senior Online Adjunct Professor
Teach undergraduate and graduate online courses at 22-campus accredited college.
Courses include Information Security, Web Design, Programming, and Computer Applications.
Civil Air Patrol (USAF Civilian Auxiliary)
2007 – Present
2010 – Present: NY-035th Catskill Mountain Group
2nd Lieutenant, Emergency Services Officer
Facilitate seminars for aerospace education. Provide leadership, mentorship and training to senior members and youth cadets. Act as Pilot for Civil Air Patrol aircraft, Mission Scanner, and Ground Team Member as required in search-and-rescue and aerial reconnaissance missions.
Education
Collegiate
• MBA, Information Systems, Marist College, Poughkeepsie, NY
• MS, Computer Science, Marist College, Poughkeepsie, NY
Published thesis, “Internet Security: Empowerment through Technology”
• BSEE, Electrical Engineering, Rochester Institute of Technology, Rochester, NY
Professional Development
• Certified Information System Security Professional (CISSP) #53476
• Payment Card Industry Qualified Security Assessor (QSA), Foster City, CA
(Certified as PCI-QSA by PCI Security Standards Council)
• Payment Card Application Qualified Security Assessor (PA-QSA), San Mateo, CA
(Certified as PA-QSA by PCI Security Standards Council)
Organizations
ISSA, OWASP, (ISC)2, Board member of Poughkeepsie Pilots Association, Valley Soaring Club, Civil Air Patrol