David J. Peyton

Stuart, Florida ***** • 772-***-**** • acybrr@r.postjobfree.com

SUMMARY

Sr. IT Compliance professional with 16+ years’ experience in strategic planning, portfolio management and regulatory compliance. My accomplishments include:

Project life cycle management of portfolios ($50-75M) and projects ($5M) consisting of Portals, B2B-B2C websites, POS assessment/planning, HRIS evaluation and implementation, merger/acquisitions, data center consolidation/relocation and enterprise software deployments

Managing projects teams with up to 50 members across 700+ locations

Regulatory compliance with HIPAA, PCI-DSS, SOC, and SOX and oversight for up to 40+ facilities.

Negotiating contracts with 3rd parties to conduct risk assessments, audits and penetration testing

Certified HIPAA Professional (CHP) and Certified Security Compliance Specialist (CSCS) PROFESSIONAL EXPERIENCE

TREATMENT MANAGEMENT COMPANY, West Palm Beach, FL DEC 2015 – PRESENT Compliance Officer and Program Management

Oversee compliance for 40+ facilities in 3 states

Direct all compliance efforts related to HIPAA and Joint Commission

Negotiate contracts with 3rd parties to conduct risk assessments, audits and penetration testing

Developed and delivered overall compliance and security training for all employees (1100+)

Implement Security and Privacy incident tracking system and reporting hotline

Conduct security/privacy investigations and work in conjunction with Legal and HR when necessary

Program management for new facility construction OPTIMA HEALTHCARE SOLUTIONS DEC 2013 – NOV 2015

Compliance Lead – Project Management

Directed compliance efforts related to HIPAA and Service Organization Control (SOC) Type1 and 2

Selected and negotiated contracts with 3rd parties to conduct risk assessments, audits and penetration testing

Developed and delivered HIPAA and Security training for all employees

Implemented Security and Privacy incident tracking system, ISD/IPS (SNORT and Fireeye)

Conducted security/privacy investigations - working with Legal and HR when necessary

Coordinated bi-monthly meetings for cross functional HIPAA oversight committee

Managed annual audits (internal and external) for validation of compliance

Facilitated creation and oversight of library of corporate policies

Conducted impact analysis for comprehensive disaster recovery and business continuity plans

Obtained Certified HIPAA Professional (CHP) and Certified Security Compliance Specialist (CSCS) certifications

Integrated project management efforts for all areas of the business (Executive, IT, Call Center, App/Dev)

Initiated application vulnerability scanning as part of the development lifecycle David J. Peyton... Page 2

ISPM MAY 2009 – DEC 2013

Principal IT Consultant

Provided consulting and training services in Enterprise Project Management, security and compliance best practices to corporations and governmental agencies

Installed/set-up/configured Microsoft Project Server and SharePoint Server 2003/2007/2010

Mentored clients on processes, procedures and standards for establishing a Project Management Office (PMO)

Counseled clients to improve their project management and portfolio management methodologies

Editor for the book: Forecast Scheduling with Microsoft Project 2010

Managed high risk, strategic and critical projects:

- PCI-DSS Certification (Bluegreen Corp Level 2, Algozzini LLC Level 4)

- Data Center Virtualization and consolidation, security auditing, penetration testing and application vulnerability scanning

- Call center and client management database optimization

- HRIS/Payroll migration from ADP to Ultimate

- State of Colorado (Bureau of Investigations and State Police) program for the validation and evaluation of approving handgun purchases

TBC CORPORATION APR 2006 – MAY 2009

PMO Manager

Defined requirements and processes for development of a Project Management Office (PMO)

Managed the successful completion of Level 2 PCI-DSS certification (included initial assessment, SAQ, log management solution, data security and retention, submitting to payment card processors definition of continued audit process)

Interviewed sponsors to develop and prioritize the portfolio of projects ($50-75M)

Managed team of 6 project managers in delivering projects on time and on budget

Hands-on management of 10 projects with teams with up to 50 members across 700+ locations

Developed project execution standards that governed issues, risks, communications, measures/ metrics, quality, and change management

Led creation of B2B website to automate order submission process for large volume national accounts (sales of $1.3M/month)

Initiated the creation of DMZ utilized by public facing websites. Included validation of security by perform vulnerability testing

Led projects for infrastructure, data center upgrades, software applications and ecommerce

Managed an acquisition and integration project for a warehouse location producing $32M annually IAP WORLDWIDE SERVICES (Formally Johnson Controls World Services) APR 2005 – DEC 2005 Sr. IT Project Manager (Contractor)

Planned and executed divestiture of all IT functions (applications, websites, 3rd party apps)

Integrated diverse email services (Lotus Notes, POP3, Blackberry) into a single environment

Tracked earned value vs. project budget ($4.1M)

Project deliverable was delivered 5.5% under budget and 9% ahead of schedule

Developed MPLS WAN topography to support global operations and VPN solution

Managed vendor installation of redundant 3 tier infrastructure – Cisco Routers, PIX, MARS IDS

Facilitated creation of B2B/B2C websites/intranet/portal environments - Vignette, BEA, Sightminder David J. Peyton... Page 3

SMITHS SPECIALTY ENGINEERING AUG 2003 – FEB 2005

IT Project Coordinator

Divisional lead for global initiatives to consolidate WAN, email (Exchange), voice, mobile, security, Altiris, Antivirus

Supervised migration of legacy Exchange/POP servers to a hosted Exchange 2003 solution (1,500 clients)

Managed installation of Cisco routers (800/1600 series) to join 58 global sites to MPLS WAN/VPN

Managed WAN load capacity planning, and monitoring for 58 locations (EMEA, USA, APAC)

Liaison between world class business partners (MCI, Vanco, HP, Ubizen, Trend, Message Labs, Verizon, Vodaphone)

Led effort to unify multiple domains into a single Active Directory structure and centralized antivirus.

Consolidated management of DNS zone files from legacy ISP’s to centralized administration point.

Represented Specialty Engineering division on Smiths Global LAN/WAN Standards Committee

Administered creation of divisional and site specific firewall rules. WACKENHUT CORRECTIONS CORPORATION AUG 1999 – APR 2003 Network Operations Manager

Oversaw operations for headquarters and 59 remote sites over a Cisco LAN/WAN network

Supervised creation of new domain (Win 2000 servers, tape library and Exchange 2000 server, firewalls/DMZ)

Lead security and compliance audits in accordance to federal and state governing body regulations

Project Manager Y2K compliance of Life Safety Systems and network upgrade

Engineer/Administrator of a video conference network (Australia, U.K., South Africa, USA)

Analyzed data and created quarterly presentations for executive management EDUCATION

Masters of Science Degree in Project Management, Florida Institute of Technology Bachelor of Science Degree in Statistics, Mathematics Minor, Florida State University CERTIFICATIONS

CHP, CSCS, PMP, MCSE, MCSA, CCNA, CCDA

Contact this candidate