Security Manager
Resume:
Richard Kring, MBA, CISA, CBCP
**** *********** **. ****: 513-***-****
West Chester, OH 45069 Cellular: 614-***-****
Email: *********@***.***
Professional Experience
IT Audit Strategy and Planning Sarbanes Oxley control model
Project management and preparation, control testing
coordination remediation
IT Audit project leadership Business Continuity BIA preparation
Budget Management up to $4 and performance
million Business Continuity plan development
Hiring, retention, and mentoring and maintenance
of IT Audit leads and staff First responder training program
Identification, contact implementation
management, sales, and IT Audit, Business Continuity, and
consulting engagement Security standards and procedures
performance implementation
Technical control risk Channel partnership management with
assessment Business Continuity and Security
companies
Employment History
. Securance Consulting 2004
. Resources Global Professionals 2005 - Current
Senior IT Audit Consultant
Lead and conduct risk assessments and IT Audits in coordinated efforts
with management, internal audit, and external audit. Prepared control
normative model for preparation of testing strategy. Prepared control
testing workprograms for the technical infrastructure assessment including
SAP, Oracle, UNIX, PeopleSoft, zOS, and digital voice and data network
components. Presented issues to internal audit and IT management and
consulted on remediation efforts. Coordinated directly with the external
auditors on performance of control testing and remediation of issues.
Utilize PolicyIQ, TeamMate and RCTS to document policies, procedures,
control activities and testing. Clients include Northrop-Grumman, Food
Lion, Tyco, Riviera Hotel & Casino, Wendys, Black Box, and First Data
Corporation.
. Unemployed 2003
Two part-time jobs that do not relate to my career objectives: TSA
screener; RHMR
. CheckFree Corporation Dublin, Ohio 1999 - 2002
Regional Security Manager
Defined corporate safety & security standards and implemented compliance
mechanisms. Conducted risk assessments of corporate locations to ensure
appropriate security practices are implemented. Designed, implemented,
and maintained measures for compliance to security standards. Negotiated
contracts with security and business continuity service providers
including contract guard services, first responder training and physical
security software. Provided security budget planning and management
totaling approximately $1 million and covering six corporate locations.
Administered the access control security system housed on a Windows 2000
distributed environment. Investigated and recommended technological
improvements and solutions for ongoing risk management and security
operations. Coordinated with internal technology organizations in the
design, implementation, and maintenance of physical security solutions.
Organized and managed security projects across organizational and physical
location boundaries. Completed 95% of projects on schedule and within
budget.
. CheckFree Corporation Dublin, Ohio 1998 - 1999
Business Continuity Planner
Conducted business impact analysis to assess the impact of potential
business interruptions and established mitigating contingency priorities.
Designed operational and technical tests to validate the readiness and
completeness of the corporate continuity plans. Managed continuity testing
activities of business and technical continuity plans. Prepared response
and continuity plans for over 1,700 employees, five corporate centers,
three hotsite locations, and multiple technology platforms including
mainframes, client server, and internal and external telecommunication
networks.
. Kring Consulting Memphis, Tennessee 1994 - 1998
Owner and Principal
Conducted sales and presentation efforts resulting in independent
consulting contracts that included the definition and implementation of
information security policies and procedures for a financial company, and
the review and assessment of information security policies for a
government organization. Performed IT Audits and business continuity
services for financial and government organizations.
. Great Western Bank, Chatsworth, California 1979 - 1994
IT Audit Manager
Established annual audit plans and defined projects' scope and objectives.
Managed and conducted risk assessments of the company's operations.
Managed 6 - 7 professional auditors during the performance of their
responsibilities. Conducted project and annual performance reviews. Lead
the audit teams acting as internal consultants on mainframe and
distributed software development projects. Audit project budgets ranged
from 200 to 2000 hours per year. IBM MVS, Tandem, AS400, Novell, UNIX,
Windows, ACF/VTAM, and TCP/IP environments were within the scope of these
audits. Consulted with the Information Security group to define,
implement, and maintain mainframe and distributed information security
policies and procedures. Defined and conducted compliance audits to
ensure information security was functioning as designed.
. First Virginia Banks, Inc. Falls Church, Virginia 1976 - 1979
. United States National Bank, Johnstown, Pennsylvania 1971 - 1976
IT Auditor
Designed, programmed, and executed audit software supporting IT and
operational audit efforts, and testing of the bank's software calculations
and processing. Assisted in the audits of the banks' IT infrastructure
and technical configurations.
Professional Certifications & Affiliations
. CISA (Certified Information Systems Auditor)
. CBCP (Certified Business Continuity Planner - expired)
. ISACA (Information Systems Audit & Control Association); Los Angeles
Chapter VP, Memphis Chapter VP
. IIA (Institute of Internal Auditors); Memphis Chapter President and VP
. IIA Volunteer Instructor - 1996, 97
EDUCATION
Master of Business Administration, University of Phoenix, 1993
Bachelor of Science in Business Administration, University of Redlands,
1985
Contact this candidate