SENIOR IT PROGRAM MANAGER
Forward looking, goal-oriented Senior IT Program Manager with strong
leadership skills and a 15+ year track record of providing results.
Excellent communicator, enables executive decision-making, and builds
action-oriented, results-focused project teams. Understands strategy and
execution and possesses a strong ability to balance value and cost to
deliver quickly. Combines diverse IT and industry experience with
excellent collaborative problem solving skills to implement cost-effective
solutions. Highlights of expertise:
Information Technology
Program Management / PMO Project Management / Organization Change
Implementation Technical Project Web Architecture and Design
Process Improvement (CMMI, Management
ITIL) IT Audit (CISA 2006-2008) Network Engineering
IT Governance (COBIT) IT Security (CISSP System Administration
2002-2004) Business Continuity
Risk Management Planning
Industries
Health Insurance Insurance Financial Services
Telecommunications Banking Retail
PROFESSIONAL EXPERIENCE
BLUECROSS BLUESHIELD OF KANSAS CITY, Kansas City, MO
Program Manager / Consultant - IT PMO (January 2008 - May 2010)
Managed multi-year, multi-phase process improvement initiative and
implemented COBIT IT governance control objectives. Identified immature
control designs and developed remediation plans utilizing CMMI, ITIL, and
other standards-based IT process methodologies. Managed multiple full-time
consultants and employee resources to design and implement IT processes and
coordinate IT audit activities. Selected accomplishments:
. Managed COBIT IT general controls design assessment and partnered with
Audit Services to identify IT process deficiencies. Developed and
reported remediation plans to implement mature IT processes. Completed
the assessment ahead of schedule.
. Launched multiple IT process improvement teams. Recommended and
implemented a permanent Process Management Team. Provided IT process
development expertise and ensured successful implementation of CMMI
specific practices. All CMMI level 2 and 3 processes have been
implemented.
. Implemented the IT Process Asset Library (PAL) artifact repository for
all methodology-based process documentation and IT project deliverables.
Recommended and implemented SharePoint on schedule and enabled deployment
of the PAL to all IT associates.
NOVASTAR FINANCIAL INC., Kansas City, MO
IT Audit Manager - Internal Audit Services (IAS) (February 2005 - January
2008)
Managed all audit activities of Information Technology Services processes
and controls for a medium-sized publicly held financial services
organization. Conducted IT audits of IT general controls and supported SOX
404 reporting requirements. Managed the relationship between IAS and IT
senior/executive management and the CIO, provided support to the financial
audit team, and facilitated the relationship with the external auditor (Big
4). Selected accomplishments:
. Planned, conducted, and managed IT general controls reviews for all
financially significant IT processes including Application Change
Control, Information Security, Data Center, Database Management, Network
Support, System Support, and Hardware Support to support SOX reporting
requirements. All reviews successfully completed on schedule to fulfill
quarterly and annual reporting requirements.
. Passed the Certified Information Systems Auditor (CISA) exam. Attained
credential and experience certification 1st quarter 2006.
ERNST & YOUNG LLP (1996 - 2005)
Manager - Technology & Security Risk Services (TSRS) (2003 - 2005),
Minneapolis, MN
Performed IT auditing and consulting services for Sarbanes-Oxley impacted
clients and managed day-to-day activities of the TSRS practice. Delivered
IT audit and SOX consulting engagements to Fortune 500 companies.
Developed and managed client relationships, participated in area sales
management activities, mentored senior and staff consultants, and provided
operational support to the practice. Selected accomplishments:
. Led IT audits for a Fortune 100 health insurance company (United
HealthCare) during an annual internal audit outsourcing agreement.
Reviewed one the world's largest deployed data warehouse solutions.
. Led a client team for a large, multinational Fortune insurance
organization (Assurant) and developed IT controls documentation to
support SOX reporting requirements. Developed a methodology to document
key controls for the organization's critical financial applications and
integrated with the organization's business process documentation.
. Developed IT general controls documentation with internal audit of a
large Fortune 200 telecommunications client (Sprint). Documented
information security controls and identified control weaknesses.
. Performed IT general controls audits of mainframe and mid-tier platforms
for the 6th largest financial services holding company in the United
States (US Bank).
Manager - Security & Technology Solutions (STS) (1996 - 2003), Kansas City,
Missouri
Performed consulting services and managed day-to-day activities of the STS
practice. Delivered and managed technical and information security client
engagements. Developed and managed client relationships; identified,
qualified, and negotiated engagements with client executives; managed
engagement economics; mentored senior and staff consultants; and provided
operational support to the practice. Selected accomplishments:
. Developed, implemented, and operated a Information Security Program
Management Office (PMO) at a Fortune 200 insurance and financial services
client (Nationwide). Managed a $5 million capital and expense budget for
a 3-year information security remediation and strategic enterprise action
plan.
. Identified opportunities to centralize distributed enterprise Information
Security personnel for a Fortune 200 global telecommunications provider
(Qwest). Identified capital and expenditure savings of $5 million by
centralizing information security operations and combining business unit
information security initiatives.
. Managed the implementation of Netegrity's SiteMinder web access control
and portal security application and iPlanet Directory Server (LDAP) for a
Fortune 100 telecommunications provider (Sprint). All functional and
technical requirements were implemented ahead of schedule.
. Managed Security Risk Assessment and Remediation project at a Fortune 200
electronics retailer (Best Buy). Assessed all aspects of security for a
web site implementation including perimeter protection, database
encryption, brick and mortar kiosk workstations, and credit card
processing vulnerabilities.
ELECTRONIC DATA SYSTEMS, Overland Park, KS
System Administrator - Client/Server Account Operations (1995 - 1996)
Managed day-to-day LAN system operations. Designed, configured, and
implemented systems. Responsible for LAN operations management including
router configuration, infrastructure maintenance, workstation
configuration, and user account management. Selected accomplishments:
. Migrated Novell 3.12 servers to Novell 4.12 Super Server and consolidated
production hardware.
. Planned, scheduled, and managed branch LAN hardware/software upgrade
project consisting of 18 remote customer locations.
EDUCATION
Master's of Business Administration - Emphasis in General Management ~
12/1995
Rockhurst University, Kansas City, MO ~ Honors: Cum Laude
Bachelor of Arts - Double-major in Industrial Relations and Psychology ~
5/1992
Rockhurst University, Kansas City, MO ~ Honors: Cum Laude, Rockhurst Honors
Program, Dean's Honor Roll