Resume

Sign in

Project Manager

Location:
Los Angeles, California, United States
Posted:
August 16, 2018

Contact this candidate

Resume:

ANDRE C. WILSON

**** *. ** ******* ****., #***, Los Angeles, California 90069 619-***-**** ac6o5a@r.postjobfree.com

SR. NETWORK SECURITY PROJECT MANAGER / RISK MANAGEMENT / COMPLIANCE CONSULTANT

A Technical Project Manager with 10 + years of experience in waterfall & agile application and infrastructure projects. Most recent five years focused on network security in virtual / physical networks, Windows OS, cloud and customer facing websites. Specifically, in compliance with PCI-DSS, HIPAA, OWASP, ISO 27001, COBIT, GDPR, NIST 800-125.

Strong knowledge and hands-on experience deploying security controls such as Microsoft Azure Security Center, Active Directory, Snare, Tripwire, Splunk User Behavior Analytics, IBM Qradar, WAF, GPO, firewalls, Symantec, Sophos, load balancers, PKI and multi-factor authentication. I have in-depth understanding of IT security at an architectural level allowing me to be the SME and interface intelligently with engineers, analysts, vendors and report to executive stakeholders.

SKILL HIGHLIGHTS

Microsoft Azure Office365 Cloud Service

MS Project / JIRA Confluence

DLP / Encryption / Segmentation

Data Center / Facility Upgrades

Asset Management / ServiceNow CMDB

Firewall Management

Vulnerability / Scanning & Risk Assessments

Executive Status Presentations

Identity and Access Policy Management

Budget & Resource Planning

PROFESSIONAL EXPERIENCE

WARNER BROS. TECHNOLOGY

Burbank, California 6/2018 – PRESENT

PCI DSS COMPLIANCE SME - PROJECT MANAGER

Appointed as the PCI DSS Security SME - Project Manager to lead the remediation of internal and external Pen Test and QSA evaluations of the Galaxy system at Warner Bros. Studio Tours and stores. Work with InfoSec, WB Compliance, Verizon, Cognizant and Capgemini to identify and secure all PCI hosted and non-hosted assets, data files, interfaces to protect cardholder data.

Responsibilities:

Creation of the PCI DSS Remediation Program Charter, Risk Register, and PCI SOPs.

Remediated the QSA identified vulnerabilities PCI DSS 1.1.1.c, 1.3, 1.1.4.a establish testing standards each time firewall configurations change, restrict network traffic, ensure firewall software is deployed on employee and vendor laptops and desktops.

Enforce and document PCI – DSS 2.4 requirements that shared hosted providers Verizon and Cognizant have a documented and enforced process on how cardholder data is protected, and admin user accounts are secure with moving from two-factor to multi-factor authentication.

Implement PCI-DSS 6.1 ensure all WB PCI components are protected by ensuring the latest patches and updates are deployed and documented the process.

Developed a documented process to track PCI hosted and non-hosted assets using Qualys.

Oversee the analysis of network ports and create action plan for network hardening.

Facilitate customization and optimization of file integrity monitor tool Tripwire.

Work with Tripwire vendor to setup PCI specific content filters, dashboards, and reports.

Oversee the efforts to migrate from SSL and early TLS to TLS 1.2.

PROFESSIONAL EXPERIENCE

UCLA HEALTH INFORMATION TECHNOLOGY

Los Angeles, California 11/2017 – 6/2018

IT SECURITY PROJECT MANAGER – UCLA HEALTH IT

As the Security Project Manager, managed a security portfolio to improve the security posture of entities within UCLA Health. Facilitate the Governance Board meetings with Clinical Engineering, Procurement, PMO, Finance, CTO and Risk Management. Worked to improve the efficiency and effectiveness of the SOC and work with UCLA vendors to expand the SIEM. Created all meeting reports, action items, procedures, charters, and project plans.

Responsibilities:

Conducted a gap analysis with Leidos to understand internal and external system security requirements, network segmentation and plans to remediate gaps.

Managed the review of all logs and reports of hosts, network traffic, firewall logs and IDS logs.

Managed the analysis of RDP, SMB, and Remote PowerShell traffic on the network.

Managed the configuration of the security center within MS Azure Active Directory for Splunk Add-on for incident reporting within Office365 by IP address.

Updated and configure firewalls, anti-malware, and file integrity monitoring.

Manage remote desktop security and risk by deploying jump box solution with GPO and two-factor.

Deployed Symantec and Sophos endpoint protection on networked medical devices.

Documented networked asset physical attributes, applications & ports, contracts, scheduled vendor updates and patching information and migrated those assets / data to ServiceNow CMDB.

Implement User Behavior Analytics reporting module within Splunk.

ALAMEDA HEALTH SYSTEMS - Contract

Oakland, California 5/2017 – 09/2017

IT PM CONSULTANT - SOARIAN FINANCIALS

Reporting to executive leadership at Alameda Hospital, analysis and drive the rebuild of the Physician Pro-Fee billing side of Cerner – Soarian Financials. Manage the project team’s efforts to stay on track within tight deadlines, identify and manage risks and defects. Work with all IS and Area Leaders within Patient Access, ED, Scheduling, Charge Entry, HIM, and Revenue Integrity on Physician Revenue Management Rebuild.

Responsibilities:

Worked with Soarian Financials Cerner analysts to develop all required technical documentation for design documents, updating the hospital charge master service catalog, rebuilding the physician cost center mapping.

Developed and present detailed MS project plan, sub-project plan, Issues Log, weekly Executive Summary and update SharePoint with all relevant project artifacts.

Coordinated the efforts of system Unit Testing, Integration Testing and Remediation.

Vendor management of Experian Health ensuring successful and time sensitive EDI & ERA enrollment and conducting claims testing.

Designed, build, test, deploy and validate interfaces and obtain sign off from internal customers.

Created and manage pre-go live activities: business and patient communications, training on new processes, sign off on contingency plans.

Created and oversee post-go live processes: End-User support, training the Help Desk-Production Support.

Created Post Go-Live test strategy, obtain all required approvals as per RACI, closed the project 9/1/17.

PROFESSIONAL EXPERIENCE

DISNEY Technology Solutions & Services - Contract

Burbank, California 1/2017 – 5/2017

SR. IT PROGRAM MANAGER, IT Security and Compliance DTSS

As the IT Security Program Manager, manage the nationwide e-commerce Disney Stores portfolio of IT security projects assigned by the Director of IT Security. Responsible for the execution and completion of the full E-Commerce project portfolio with programs fully documented in accordance with the predetermined requirements of the PMO.

Responsibilities:

Planned and scheduled the execution of Red Team penetration testing on Disney E-Commerce network servers and operating systems.

Analyzed penetration test results and engage with Business Unit Leaders, ISO, Compliance, server facility manager, and relevant vendors to develop program scope and individual project plans.

Conducted a gap analysis of systems; encryption, logging multi-factor policy creation.

Worked with data center facilities manager ensure security is factored into the installation and configuration of hardware, virtual hosts, and applications in ServiceNow.

Led technical teams to evaluate, select, install and configure hardware/ software for PII data masking on DEV, QA, and Prod servers.

Deployment of two factor authentications on virtual jump server for Disney point of sale devices compliance to PII updates.

Managed network vulnerability and threat management projects in application and OS log monitoring, root cause analysis, alert triage and incident response.

Coordinated the efforts of Red Team in pen tests on e-Commerce platform and servers.

HEALTH NET - Contract

Los Angeles, California 10/2015 – 12/2016

SR. IT PROJECT MANAGER, Enterprise Infrastructure & IT Security

In a large matrix PMO environment, led up to eight project teams supporting the Director of IT, IT Security-InfoSec, Risk Management, and business leaders. Responsible for the all aspects of the project from initiation, analysis, vendor RFP, budget approvals with finance, to go-live. Created and maintain weekly and monthly status reports, executive power point presentations. Worked with QA, release management and project testers to ensure proper SIT and UAT testing occurs for code deployment.

Responsibilities:

Responsible for project kick-off meetings, meeting minutes, agendas, templates, documented test strategy, implement plan, and maintenance of SharePoint.

Managed application enhancement to manage the compliance with updated CMS regulations - $700,000.

Identify, track and report issues, risks, and defects with green, yellow, and red status.

Ensured QA and UAT defects were reported and remediated timely.

Budget and resource management - Add / Remove resources to the project plan, approve work hours, track vendor hours, report if project health and within budget.

Completed federal compliance / application upgrade project within budget of $350,000.

Completed SOX compliance project working with IBM and AT&T within $650,000 budget.

Completed $750,000 IT security project installing Carbon Black Confer NGAV malware protection software on desktops and laptops throughout the organization.

Completed $900,000 infrastructure project installing critical new load balancers in central data center which included 15 hour overnight cut-over validation process with AT&T and IBM.

PROFESSIONAL EXPERIENCE

L.A. CARE HEALTH PLAN - Contract

Los Angeles, California 10/2014 – 10/2015

SR. IT PROJECT MANAGER, Information Security

IT Project Manager working within the PMO QNXT Core Team, responsible for a security program which supported the relationship between the health plan, Covered California, and the Affordable Care Act. -Exchange. Represented Security on the PMO Change Control Board. Managed the deployment and security of new pre-paid card payment gateway to maintain compliance with PCI-DSS and HIPAA.

Responsibilities:

From a security standpoint, managed the partnership with Bank of America, Compliance, Legal, web developers, VP of IT, and e-commerce vendor for kick-off meeting, scope session, risk meeting, project team meetings for PayNearMe.

Created proof of concept, charter, FRD, TRD, and BRD, risk register, for routing, encryption, ACH/ online payments, mobile pay, and POS interfaces and security.

Created formal P&P, Fraud, Disaster Recovery, Business Continuity, Data Breach-Customer Notification Plan.

Met regularly with CIO and other executive stakeholders to create a cohesive strategy for the use of QNXT across the enterprise.

Coordinate the efforts the TriZetto, Infosys developers, EDI Operations team to perform patches, updates, analyze and triage member PHI data files.

Analyzed EDI error reports and maintenance files to and from Covered California.

Managed EDI functions and file formats X12 transactions, HL7, HIPAA 5010 8371, 999, 277 CA.

Held daily scrum sessions Plan Benefit Operations, Medical Management, development team and QNXT vendor to perform system enhancement in multiple agile project.

Established project charter, issue logs, risk register, SharePoint site, project plans, coordinate helpdesk SWAT issue response team, set up ticket system for business units with 1st and 2nd level support in ServiceNow.

UNITED HEALTHGROUP OPTUM 360 - Contract

Los Angeles, California 10/2013 – 10/2014

PROJECT MANAGER, Integration

MCKESSON

Bakersfield, California 10/2011 – 08/2013

PROJECT MANGER, Implementations

GREATER NEWPORT PHYSICIANS / NAUTILUS HMG 9/2009 – 07/2011

PROJECT MANAGER, Implementations - Newport Beach, California

PHYSICIANS MANAGEMENT GROUP, LLC – Los Angeles, California 9/2008 – 05/2009

DIRECTOR OF SPECIAL PROJECTS & IMPLEMENTATIONS

EDUCATION / COMPUTER PROFICIENCY

B.S. Computer Science – Cybersecurity Engineering

Colorado Technical University Attending anticipated completion 2020

Project Management Certification

Project Management Academy Completed 04/2013



Contact this candidate