SENIOR IT PROGRAM MANAGER

Forward looking, goal-oriented Senior IT Program Manager with strong

leadership skills and a 15+ year track record of providing results.

Excellent communicator, enables executive decision-making, and builds

action-oriented, results-focused project teams. Understands strategy and

execution and possesses a strong ability to balance value and cost to

deliver quickly. Combines diverse IT and industry experience with

excellent collaborative problem solving skills to implement cost-effective

solutions. Highlights of expertise:

Information Technology

Program Management / PMO Project Management / Organization Change

Implementation Technical Project Web Architecture and Design

Process Improvement (CMMI, Management

ITIL) IT Audit (CISA 2006-2008) Network Engineering

IT Governance (COBIT) IT Security (CISSP System Administration

2002-2004) Business Continuity

Risk Management Planning

Industries

Health Insurance Insurance Financial Services

Telecommunications Banking Retail

PROFESSIONAL EXPERIENCE

BLUECROSS BLUESHIELD OF KANSAS CITY, Kansas City, MO

Program Manager / Consultant - IT PMO (January 2008 - May 2010)

Managed multi-year, multi-phase process improvement initiative and

implemented COBIT IT governance control objectives. Identified immature

control designs and developed remediation plans utilizing CMMI, ITIL, and

other standards-based IT process methodologies. Managed multiple full-time

consultants and employee resources to design and implement IT processes and

coordinate IT audit activities. Selected accomplishments:

. Managed COBIT IT general controls design assessment and partnered with

Audit Services to identify IT process deficiencies. Developed and

reported remediation plans to implement mature IT processes. Completed

the assessment ahead of schedule.

. Launched multiple IT process improvement teams. Recommended and

implemented a permanent Process Management Team. Provided IT process

development expertise and ensured successful implementation of CMMI

specific practices. All CMMI level 2 and 3 processes have been

implemented.

. Implemented the IT Process Asset Library (PAL) artifact repository for

all methodology-based process documentation and IT project deliverables.

Recommended and implemented SharePoint on schedule and enabled deployment

of the PAL to all IT associates.

NOVASTAR FINANCIAL INC., Kansas City, MO

IT Audit Manager - Internal Audit Services (IAS) (February 2005 - January

2008)

Managed all audit activities of Information Technology Services processes

and controls for a medium-sized publicly held financial services

organization. Conducted IT audits of IT general controls and supported SOX

404 reporting requirements. Managed the relationship between IAS and IT

senior/executive management and the CIO, provided support to the financial

audit team, and facilitated the relationship with the external auditor (Big

4). Selected accomplishments:

. Planned, conducted, and managed IT general controls reviews for all

financially significant IT processes including Application Change

Control, Information Security, Data Center, Database Management, Network

Support, System Support, and Hardware Support to support SOX reporting

requirements. All reviews successfully completed on schedule to fulfill

quarterly and annual reporting requirements.

. Passed the Certified Information Systems Auditor (CISA) exam. Attained

credential and experience certification 1st quarter 2006.

ERNST & YOUNG LLP (1996 - 2005)

Manager - Technology & Security Risk Services (TSRS) (2003 - 2005),

Minneapolis, MN

Performed IT auditing and consulting services for Sarbanes-Oxley impacted

clients and managed day-to-day activities of the TSRS practice. Delivered

IT audit and SOX consulting engagements to Fortune 500 companies.

Developed and managed client relationships, participated in area sales

management activities, mentored senior and staff consultants, and provided

operational support to the practice. Selected accomplishments:

. Led IT audits for a Fortune 100 health insurance company (United

HealthCare) during an annual internal audit outsourcing agreement.

Reviewed one the world's largest deployed data warehouse solutions.

. Led a client team for a large, multinational Fortune insurance

organization (Assurant) and developed IT controls documentation to

support SOX reporting requirements. Developed a methodology to document

key controls for the organization's critical financial applications and

integrated with the organization's business process documentation.

. Developed IT general controls documentation with internal audit of a

large Fortune 200 telecommunications client (Sprint). Documented

information security controls and identified control weaknesses.

. Performed IT general controls audits of mainframe and mid-tier platforms

for the 6th largest financial services holding company in the United

States (US Bank).

Manager - Security & Technology Solutions (STS) (1996 - 2003), Kansas City,

Missouri

Performed consulting services and managed day-to-day activities of the STS

practice. Delivered and managed technical and information security client

engagements. Developed and managed client relationships; identified,

qualified, and negotiated engagements with client executives; managed

engagement economics; mentored senior and staff consultants; and provided

operational support to the practice. Selected accomplishments:

. Developed, implemented, and operated a Information Security Program

Management Office (PMO) at a Fortune 200 insurance and financial services

client (Nationwide). Managed a $5 million capital and expense budget for

a 3-year information security remediation and strategic enterprise action

plan.

. Identified opportunities to centralize distributed enterprise Information

Security personnel for a Fortune 200 global telecommunications provider

(Qwest). Identified capital and expenditure savings of $5 million by

centralizing information security operations and combining business unit

information security initiatives.

. Managed the implementation of Netegrity's SiteMinder web access control

and portal security application and iPlanet Directory Server (LDAP) for a

Fortune 100 telecommunications provider (Sprint). All functional and

technical requirements were implemented ahead of schedule.

. Managed Security Risk Assessment and Remediation project at a Fortune 200

electronics retailer (Best Buy). Assessed all aspects of security for a

web site implementation including perimeter protection, database

encryption, brick and mortar kiosk workstations, and credit card

processing vulnerabilities.

ELECTRONIC DATA SYSTEMS, Overland Park, KS

System Administrator - Client/Server Account Operations (1995 - 1996)

Managed day-to-day LAN system operations. Designed, configured, and

implemented systems. Responsible for LAN operations management including

router configuration, infrastructure maintenance, workstation

configuration, and user account management. Selected accomplishments:

. Migrated Novell 3.12 servers to Novell 4.12 Super Server and consolidated

production hardware.

. Planned, scheduled, and managed branch LAN hardware/software upgrade

project consisting of 18 remote customer locations.

EDUCATION

Master's of Business Administration - Emphasis in General Management ~

12/1995

Rockhurst University, Kansas City, MO ~ Honors: Cum Laude

Bachelor of Arts - Double-major in Industrial Relations and Psychology ~

5/1992

Rockhurst University, Kansas City, MO ~ Honors: Cum Laude, Rockhurst Honors

Program, Dean's Honor Roll

Contact this candidate