Sign in

Director of IT

Mount Joy, PA, 17552
March 09, 2018

Contact this candidate


Matthew Groff

**** ****** ***** **

Mount Joy, Pennsylvania, 17552



WSP (Formerly WSP Parsons Brinckerhoff)– Ephrata, PA

Global Head of Infrastructure, Data and Application Security: January 2017 – Present (Concurrent with regional Head of Infosec)

●Manage Staff of Global security analysts

●Manage Support Staff in incident response scenarios

●Review and recommend action on Security KPIs

●Develop Strategic Infosec program

●Direct Analysts and Operations staff on IT Security procedures

●Confer with users to discuss issues such as computer data access needs, security violations, and programming changes.

●Train users and promote security awareness to ensure system security and to improve server and network efficiency.

●Monitor SIEM for security violations and escalate for investigation.

●Document computer security and emergency measure policies, procedures and tests.

●Oversee IT security plan for separation from and merger of companies

●Develop and maintain IT Security plan to safeguard global IT network of over 35,000 computers

●Direct Global IT staff on new IT Security Policies and Procedures

●Monitor computer virus outbreak reports for global IT security impacts

●Responsible for evaluation, piloting and roll-out of all IT security software upgrades and installs.

●Manage Global Information Security Projects

●Voting Member of Global Change Advisory Board

●Oversaw migration to New Global MSSP

●Evaluation and Selection of Advanced Anti-malware vendor

●Plan and execute rollout of new email security gateway


US and LATAM Head of Information Security: August 2016 – Present

●Promoted from Information Security Analyst in August 2016

●Develop Information Security policies for region

●Research and develop information security strategy

●Write malware remediation SOPs and train staff

●Develop Security awareness program and conduct webinars for users

●Responsible for reporting regional security metrics.

●Information Security Project Management

●Perform risk assessments and Quarterly IT security audits

●Write IT security procedures for Virus remediation, data destruction, new hire on-boarding and termination.

●Voting Member of Regional Change Advisory Board

●Voting Member of Architecture Review Council

Blue 38 Consultants, LLC – Mount Joy, PA

Owner: October 2016 – Present

● General IT and IT Security Consulting for Small to Medium Businesses

●Security Compliance Gap Analysis for NIST 800-171

●Advise companies on latest security trends

●Recommend IT Security Vendors for projects

●Assist local IT in securing corporate networks

●Provide frameworks for IT Governance and Compliance

●Deploy and Manage Cloud

●Deploy and manage EventTracker SIEM


Information Security Analyst: July 2014 – August 2016

●Research current security trends and make recommendations for policies

●Responsible for managing McAfee ePolicy Console

●Handle infosec service tickets

●Develop malware remediation procedures

●Investigate malware outbreaks

●Responsible for breach remediation

●Conduct quarterly compliance audits

●Collect data for Security Metrics Measurement and reporting


Sr System Engineer Consultant: June 2008 - July 2014

●Fully manage 10+ different client networks and provide 2nd-level support for 5 other networks

●Supervise and mentor Jr. System Engineers

●Communicate with clients to understand specific system requirements.

●Provide advice on project costs, design concepts, or design changes.

●Document design specifications, installation instructions, and other system-related information.

●Provide technical guidance or support for the development or troubleshooting of systems.

●Identify system data, hardware, or software components required to meet user needs.

●Provide guidelines for implementing secure systems to customers or installation teams.

●Monitor System operations to proactively detect issues.

●Full IT system life cycle project management.

●Perform ongoing hardware and software maintenance operations, including installing or upgrading hardware or software.

●Configure servers to meet functional specifications.

●PCI Compliance reviews


Network Administrator: October 2006 - June 2008

●Manage NT 4.0 Network

●Support All PCs and Hardware for entire company

●Design PCs for circuit board testing and programming

●Creation of all IT policies to govern all company locations

●Manage Remote IT Employees

●Review and Recommend all IT Purchases

●Primary communicator with IT service vendors

●Support network for JD Edwards Application

●Manage permissions of sensitive company information and clean room pcs

●Implementation of Enterprise Backup and Disaster recovery plans using Backup Exec 11d

●Project manager for Google Apps Enterprise pilot and go-live project

EMBARQ – Carlisle, PA

Technical Support Technician: April 2006 - October 2006

●Identify Common Support Issues to create Knowledge Base Articles

●Handle High Speed Internet Support calls from users around the country

●Basic DSLAM and RedBack provisioning for users

●Training of new Support Technicians

●Update and recommend technician training procedures

●Top 5 in resolution call time and churn for six straight months

AOPC – Mechanicsburg, PA

LAN Technician: August 2002 - March 2006

●Promoted from AOPC-ASAP HelpDesk in September 2003

●Maintained responsibility for testing and implementation of Virus Scan and McAfee ePolicy Orchestrator Virus Solution

●Deployed and monitored Backup Exec v10 for archiving

●Managed WMI scripting for automated tasks and file copy

●Developed and deployed desktops for developers and analysts; managed hardware and software maintenance and upgrades on servers and computers; Maintained images for new PCs

●Created and maintained documentation website; supported online services website for all courts; researched and tested secure website practices

●Tested and planned disaster recovery situations and solutions

●As help desk technician, tested latest application release and all code fixes; testing all reports; performed some Crystal Reports development

●Communicated network issues to users; performed basic troubleshooting; managed training issues

●Handled SQL queries for data issues

●Conducted SSL research and testing for communications between SQL and IIS


●Implemented HIPs to see 80% reduction in Ransomware infections

●Established standard for encryption for all mobile and data sensitive workstations

●Installed Site reputation software on all workstations, reducing infection rates by 10%

●Planned, developed and executed phish campaign for over 1700 users

●17 straight months of meeting Security KPI Metrics

●Oversaw migration of AV protection for 35,000 clients

●Project manager for Advanced Anti-malware product deployment

●Oversaw Wi-Fi security project to lockdown corporate Wi-Fi


West Texas A&M – Canyon, TX

Online MBA- Computer Information Systems – Currently enrolled

Shippensburg University – Shippensburg, PA

BA in Electronic Media. Minor in Computer Science, May 2002

New Horizons Computer Learning Center Mechanicsburg, PA

●Completed Comptia A+ Hardware and OS Certification

●Completed Comptia Network+ Certification

●Microsoft Certified Desktop Support Technician

●Microsoft Certified Professional

●Microsoft Certified System Administrator


●Metrics Creation and Definitions

●Management and Leadership

●DELL Powervault SAN Management

●Windows Server High Availability Clustering

●Backup Architecture Planning

●Hyper-V and VMware

●Active Directory

●Disaster Recovery Planning and Testing

●MS Office 2000-2016

●Windows XP/Vista/7/8

●Network design and Administration

●Networking, DNS, DHCP

●Office 365


●Fortigate Firewalls

●Windows Server 2000-2012

●Citrix Support

●Exchange Server Management

●Multiple Spam Protection Suites

●Database Management


Phi Delta Theta Province President: 2018 – President

●Oversee multiple Chapter Advisory Boards in Region

●Voting member of Fraternity General Council

●Set Goals for province

●Bi-Annual Chapter Reviews

●Recruit CAB members for Chapters

●Oversee Regional Alumni club

Phi Delta Theta Chapter Advisory Board: 2012 – 2015; 2016 - 2018

●Chapter Advisory Board Chairman 2016 – 2018

●Chief liaison between chapter and GHQ

●Set Goals and track progress for Chapter

●Risk Management Chair 2012-2015

●Advise Shippensburg University Chapter to current National Risk Management policies

●Communicate with Phi Delta Theta GHQ on Chapter policies and procedures

Malwarebytes Customer Advisory Boards: 2017-Current

●Participate in Customer Advisory Summit

●Communicate user experience with Beta Products

●Provide feedback and recommendations on additional features

Google Customer Advisory Board: 2008

●Participation in first Customer Advisory board for Google Enterprise Apps

●Communicate user wish list of updates and improvements

●Suggest Implementation Strategies for Google Applications

●Provide input for google regarding new features and enhancements

Contact this candidate