Information Security Technology
Resume:
RICHARD A. FLOWERS
CISM (Certified Information Security Manager)
SECURITY+, CDIA+
Suwanee, GA – 30024
770-***-**** - ***********@*****.***
INFORMATION SECURITY
GOVERNANCE ~ RISK MANAGEMENT ~ COMPLIANCE
Risk Assessment
Risk Management
Business Impact Analysis
Business Continuity
Disaster Recovery
Policy Management
Project Leadership
Vendor Management
Customer Contact
Incident Management
Seasoned professional with experience using GRC approaches to maintain Confidentiality, Integrity and Availability in alignment with organizational strategies Skilled in identifying and qualifying threats. Leader in establishing, implementing and enhancing information security controls and mitigation strategies. Track record of success.
Accomplished communicator with exceptional interpersonal skills to influence and persuade others. Concise and efficient communication skills. Advanced listener skilled at understanding context. Ability to recognize patterns and draw connections. Can see around corners given current path and trends. Experienced speaker/presenter comfortable in the spotlight and in roles of authority. Skilled in providing effective leadership in fast-paced, deadline driven environments. CORPORATE SECURITY ACHIEVEMENTS (DOCUFREE)
PCI DSS v2.0– August 2013 HIPAA/HITECH– August 2013
SSAE 16 – February 2014 HIPAA/HITECH– May 2015
PCI DSS v3.0– June 2015
HIPAA/HITECH- May 2016
SSAE 16 – December 2016
SSAE 16 – December 2015
PCI DSS v3.1- July 2016
HIPAA/HITECH-July 2017
CAREER PROGRESSION
DOCUFREE CORPORATION • Atlanta, GA 2011-Present
DIRECTOR OF SECURITY & COMPLIANCE – INFORMATION TECHNOLOGY Directs all areas of Information Security, Organizational Security, and Safety. Leads the organization in the awareness of applicable policies, laws, and regulations. Develops, socializes and maintains security policy documentation. Leads customer engagements for security assessments, questionnaires and inquiries. Leads external security compliance assessments with certification auditors. Schedules and conducts internal risk assessments and business impact analysis with internal stakeholders. (Ref. NIST SP 800-53 Rev 4, NIST 800-66, NIST 800-34). Manages vendor security risk management, risk analysis, and risk rankings.
• Corporate Compliance: Leads subject matter experts toward achievement of worldwide security certifications. Manages external assessment partners including scope identification, financial considerations, and final signatory approval. Conducts onsite vendor security assessments with offshore providers in India, China, and Zambia.
• Security Governance: Leads subject matter experts in developing and communicating critical and time sensitive mitigation strategies.
RICHARD A. FLOWERS – PAGE 2
CAREER PROGRESSION (CONT.)
LANIERMAPPED.COM LLC • Atlanta, GA 2007-Present
FOUNDER, MANAGING MEMBER
Conceptualized, developed and integrated ecommerce website of drought stricken Lake Lanier to enable customers to achieve more successful fishing.
• Executive Management: Produced video clips with GPS waypoints for sale individually or in geographical package bundles. Manages site user interface, content, shopping cart and merchant account. IKON OFFICE SOLUTIONS • Atlanta, GA 1998-2010
STRATEGIC ACCOUNT EXECUTIVE, TECHNOLOGY SALES
Built relationships with clients to increase sales of contracted Facilities Management services with staffing, equipment, supplies and systems.
SOFTWARE DESIGNER/IMPLEMENTER, INFORMATION TECHNOLOGY Conceptualized and led development for internal ERP integrated with financial system to improve job entry, time and attendance, data collection and invoicing.
COMPLIANCE AUDITOR, CORPORATE HEADQUARTERS
Conducted onsite assessments of U.S. branch offices in areas of compliance and operational/financial audits. EDUCATION AND CERTIFICATIONS
GEORGIA STATE UNIVERSITY, Atlanta, GA
GEORGIA PERIMETER COLLEGE, Clarkston, GA
DEKALB TECHNICAL INSTITUTE, Clarkson, GA
ISACA CISM Certification, June 29, 2017
CompTIA CDIA+ Certification, Registration #263988643 CompTIA Security+ Certification, Registration 304183405 The CompTIA Security+ credential is approved by the U.S. Department Of Defense to meet Directive 8570.01-M requirements.
Contact this candidate