Management Security
Resume:
Douglas Martin, CISSP, CISA, PMP, PCIP
Mobile 469-***-**** Frisco, TX ************@*******.***
INFORMATION SECURITY EXECUTIVE
INFORMATION SECURITY STRATEGY ENTERPRISE RISK MANAGEMENT COMPLIANCE
Recognized subject matter expert with 15+ year’s progressive leadership experience including Fortune 500 companies in the Finance, Manufacturing, Gaming, Telecommunications and Healthcare Industries. Trusted adviser who builds long term working relationship with executives, board members and business leaders. Business partner focused on enabling business growth through effective risk management strategies. Collaborative leader/teacher who energizes teams and thrives in diverse challenging environments.
•Vendor Management
•Security Incident & Event Management
•Change Management
•Mobile platform security
•Strategic Planning & Leadership
•Security Program Management
•Cross-functional Team Leadership
•Incident Response Leader
•Governance & Risk Management
•Regulatory Compliance, PCI, HIPPA, SOX, FFIEC
•Cloud Security strategies
•Threat intelligence & Forensics
Ranked in the top 50 Security Executives 2013 by ExecRank
http://www.execrank.com/2014-rankings/top-security-executive-rankings
Professional Experience
CAAM CONSULTING Dallas, TX 2013–2015
Consulting organization focused on enabling our clients to create and execute effective information security strategies.
PRINCIPAL CONSULTANT
Recent engagements include:
Leading North American freight transport company with 25B+ in revenues and ~50k employees
Globally-recognized aerospace and defense leader that provides propulsion and energetics to the space, missile defense and strategic systems, tactical systems and armaments areas
Supporting successful SOX, PCI, HIPPA & other compliance controls design & implementation
ANCESTRY.COM Provo, UT 2013–2014
Ancestry.com® is the world's largest online family history resource, home to billions of historical records.
CHIEF INFORMATION SECURITY OFFICER
Recruited to lead an enterprise wide global transformation of Ancestry.com Risk Management & Response capability.
•Leader of Ancesty.com global risk management function
•Designed, negotiated, influenced “C” level investment new $1M+ connected security architecture to support rapid growth and global presence
•Rebuilt team focused on enabling the business by effective thereat and risk management
•Achieved PCI, Safe Harbor & SOX compliance
GAMESTOP Dallas, TX 2011–2013
$9 billion global company with 6,500 stores and one-third of all revenue coming from outside the U.S.
CHIEF INFORMATION SECURITY OFFICER
Recruited to build and develop data governance strategy to improve international growth and revenue opportunities. Instituted three-year information security roadmap, including organization and technical strategy, for executives and board audit committee while improving performance in incident response, metrics, and budget management.
•Negotiated $1.5 million enterprise software agreement saving $500,000 over three years.
•Saved $200,000 per year by eliminating deficient managed service provider and bringing functions in house.
•Created enterprise level incident response capability including Security Operations Center (SOC)
•Leader of successful Payment Card Industry (PCI) Level I compliance with over $5B in transactions & SOX compliance with over $9B in revenues
INTUIT, INC. San Diego, CA 2004–2011
A $4 billion technology company with over 8,000 employees in over 30 global locations. Known as the top financial and tax preparation software Development Company, wth 40 million customers.
DIRECTOR, INFORMATION SECURITY (2007–2011)
BUSINESS INFORMATION SECURITY OFFICER (BISO) – Consumer Tax (2008–2009)
SENIOR SECURITY AND COMPLIANCE MANAGER (2004–2007)
Fast-track promotions to lead development and implementation of information security technology and processes for global sites in USA, Canada, UK, Singapore, India, more. Delivered key input to CXO and Board of Directors. Charged with managing major technology transformation affecting key areas, including software development, compliance, IT, supply chain, acquisition, and IS risk. Led technical team of 20 in the US and 4 in India.
•Tactical Change Management: Instituted a best-in-class global infrastructure security department to support SaaS business model. Developed metrics for ongoing performance measurement and reporting.
•System Modification/Upgrade: Instrumental in developing a transition plan to support Intuit’s transformation from a pressed disc software company to a SaaS model processing $3 billon in daily transactions.
•Innovative Projects: Led a $500 million cloud based infrastructure project, directing a cross-functional Security Design team of engineers, forensics, incident response, and security operations. Directed Intuit’s Level I PCI compliance for both Merchant and Service provider business with $12+ billion annual transactions.
•Compliance: Expert level experience with PCI, HIPPA, FFIEC, SOX and ISO compliance standards. Leader with track record of 100% compliance in every Intuit line of business with compliance requirements.
•Risk Management: Implemented best in class risk management process based on threat intelligence, external climate and business risk tolerance levels.
•Team Builder: Took four-person team to over thirty personal global organization built on trust and mutual respect. Took the “no” team to the “how” team focused on enabling business strategies managing risk while maximizing revenue.
•Integration: Integration leader for all major acquisitions including MedFusion, now Intuit Healthcare division & Digital Insight 1B acquisition now Intuit Financial Services Division
COMPUTER SCIENCES CORP. (CSC) San Diego, CA 2000–2004
Fortune 500 global leader in providing technology enabled business solutions and services with 93,000 employees in 90 countries.
PROGRAM MANAGER
•Consulting Program Manager on $400M San Diego County account. Handled all contract negotiation.
•Led enterprise infrastructure from concept-to-design-to-implementation, including new security architecture.
Education Certifications Professional Development
Bachelor of Science, Information Technology
UNIVERSITY OF PHOENIX, San Diego, CA
Certifications:
Certified Information Systems Security Professional (CISSP) #69875, ISC ®, Virginia
Certified Information Systems Auditor (CISA) #646390, ISACA, Illinois
Project Management Professional (PMP) #187800, Project Management Institute, Pennsylvania
Internal Security Assessor (ISA), PCI Security Standards Council
PCI Professional (PCIP) #1001-869, PCI Security Standards Council
Contact this candidate