Certified Information Systems Security Professional (CISSP)
Payment Card Industry Professional (PCIP)
Security Certified Network Professional (SCNP)
Certified Systems Development Life Cycle (SDLC)
Information Technology Infrastructure Library (ITILv3)
Provide strategic business management utilizing network integration and distributed systems design with an alliance to business and information risk management and auditing in federally regulated and compliance industries. Devise complete technical network/systems project management and security implementations including application development, performance testing and computer networking interoperability of various enterprise applications or solutions architecture. Lead, collaborated and drive cross-functional members in various disciplines as Developers and Testers, Network Engineers (CCIE), System Administrators (Unix/Windows) and DBAs for Microsoft SQL & Oracle Certified Professionals (OCP) including Security Professionals (CISA/CISSP) in complex Healthcare, Pharmaceutical-Labs, Financial Banking/ Brokerage, Retail and Insurance IT infrastructure.
Sirius Technologies 1/2013 - Present
Sr. Security Architect - Professional Services
Bank of New York Mellon
Sr. Security Architect
Security Engineer/Architect for an Integrated security monitoring, policy and scanning agent security products from Symantec Analytics / DLP and SPC/Enforce, Cloud Hypervisor (Virtualization / Physical) solutions using AWS (Amazon Web Services), Team Lead and thought leadership in establishing an Enterprise Banking Risk Management PCI Security frame work using Secuonics (SIEM) Analytics in Application (SaaS-Cloud) system application.
IBM / Brighthouse Financial (MetLife)
Security Engineer/Architect for an Integrated work using IBM - Qradar (SIEM) in Banking/ABS Secure Application (SaaS-Cloud) Best Practice – Corporate Banking System application development.
Cloud Access Security Broker (CASB) solutions using SkyHigh within AWS (Amazon Web Services) and MS-Azure IDM (AD/SSO/SAML/RSA-SecurID) solutions, IBM - QRadar (SIEM), RSA/Envision – LogRhythm/FIM (SIEM) and RSA/Archer, RSA/SecurID, Rapid 7 (Nexpos / Metaspolit) Vul/Pen Security tools, Qosmos (WAF), Qualys PCI Compliance, Cisco NAC-ASA, IPS 4000 Series and IDSM-2, netForensics, AirDefense, nCipher, Cisco-Radius/TACAS+, HP-QTP / Loadrunner and HP-Openview
IBM / Capital One
Team Lead and thought leadership in establishing an Enterprise Banking Risk Management PCI Security frame work and requirements in banking secure application (SaaS-Cloud) corporate banking system application development, vulnerability and penetration assessments and remediation. Utilized Nessus/Rapid 7 ensuring secure infrastructures.
Bank of America
Application Assessor; Auditing network security maturity, data & asset classification, incident and risk auditing. Audit findings and tracking using Archer GRC tools management including access controls RSA (SecurID) authentication, disaster recovery and business continuity and compliance in Federal Financial Institutions Examination Council (FFIEC and PCI-DSS); Security Practices.
Walt Disney Corporation
Vendor Risk and Compliance assessor for HIPAA-HiTECH / PCI-DSS / SOX advisory through the use of Cloud Computing in gathering and reporting product vulnerabilities assessments, validation, security control management, CVE incident and audit risk assessment management and Symantec DLP data enforcement. Lead KPMG members in an advisory and guidance capacity to ensure remediation with acceptable solution efforts and validation methods.
United Health Group, Inc. / VOYA
Secure Cloud (Hypervisor-VM/VDI) Product Commercialization; Senior Governance Advisory/Compliance Assessor, in establishing an enterprise security product using virtual F/W, SIEM and access controls (AD/SSO/SAML/RSA-SecurID) solutions for an ecommerce healthcare security OS hardening solutions design for (AWS-RackSpace-vBlock) - Cloud Hypervisor Virtualization / Physical) and established PCI - Tokenization Management programs and developed Governance Risk Compliance (GRC) projects using Archer/RSASecure Cloud Services (PaaS/IaaS/SaaS-Cloud), ecommerce infrastructures security, based on NIST-800-53 / NIST- HIPAA Toolkit, ISO 27002, Cobitv5, HIPAA-HiTECH/HiTRUST-CSF, PCI-DSS, PA-DSS, OWASP/SCAP; SANS Top 20 and SAEE16-T2.
The Clearing House Inc., / All Major U.S. Banks
Sr. Technical PM/ E-Commerce Product Architect
Global commercialization and code development in mobility devices, Secure Cloud (Hypervisor) IT security compliance, PCI-DSS audit, advisory, developing validation artifact review, security crypto product selection, and deployed security controls to meet compliance for Global Retail Payment (Google/Paydiant) Point of Sales (POS) product development and operations for eWallet payment mobility application, Secure Cloud Services, ecommerce infrastructure security.
Danaher Corp. / AAP 3/20013-12/2013
Sr. Security POS Architect
Establishing a PCI-DSS (ROC) review and an enterprise Retail Financials securing Credit Card transactions (DUKPT & Master/Session), P2P key injection (PKI) using FutureX (HSM) within an Encryption Service Organization (ESO) for corporate merchants & vendors to use EMV (Chip/PIN) preparing for card brand liability shift. Design Verifone POI/VHQ device for First Data Certification and Tokenization (TransArmor).
Developed code review, vulnerability and penetration program testing to ensure web/application code integrity through the use of Static/Dynamic code review.
Cognizant Technology Solutions 1/2009-3/2013
Sr. Manager, Security - Professional Services
Advised and developed a PCI-DSS Remediation Program valued at 12.4 million, resourced, managed and achieving security audit & remediation on Initial Report of Compliance (IROC)
Technical PM and Sr. Security Architect thought leadership professional for (Zales Inc,) in PCI payment compliance advisory, developing validation artifact review, security product selection and the use of vulnerabilities and penetration products and programs, and deployed RSA security controls to meet compliance for Global Retail operations infrastructures.
Conducted physical and telecom security compliance assessments using IPS/IDS-Agents, Qualys, Symantec for Stanley Works Inc. (EU) and developed corporate enterprise security risk management systems for Governance Risk and Compliance (eGRC) in major corporate process adhering to HIPAA/PCI/SOX/SAS70 Type II/PCI-DSS/GLB-Act compliance; mapping to NIST-800/DSA/ ISO-27002 Series Standards.
Project Manager in establishing an enterprise Financial Brokerage Insurance (ING Inc., and TIAA/CREF Inc.,) security risk framework for 25 Corporate vendors through the use of EMC RSA/Archer GRC tools in gathering and reporting vulnerabilities assessments, data classification, asset management, incident and audit risk assessment management including access controls, disaster recovery and business continuity.
Responsible for (FDA) compliance practice (GLP and GMP) developing and implementing security and auditing compliance, validation procedures (SOP), and good IT practices under (ITILv3/SDLC) and developed (CERT-CSIRT) process controls in ensuring incident/response handling and regulatory compliance for various industries applications and lab instrumentation environments within the US and European pharmaceutical (Abbott Labs) companies manufacturing innovative medicines and health care medical devices.
Corporate enterprise security compliance projects (Purdue Pharma) to address essential mission critical validated systems adhering to Compliance under FDA/PCI-DSS/GLBA/HIPAA/SOX/EU Directives; mapping to GAMP 5 /NIST/DSA/ISO-27000 Series Standards.
Project managed and team lead (AstraZeneca) in establishing, qualification and validation Cloud Computing Security testing requirements ensuring compliance for IPV6 (IPSec). Simulating 3,000 concurrent remote users from a cloud computing hardening solutions design for (- Cloud Hypervisor Virtualization Amazon Web Services (AWS) infrastructure utilizing HP-SaaS, HP-QTP and HP-LoadRunner targeting internet systems web application for QA, performance measurement, security adherence, data & asset classification, incident factors and audit risk management controls.
MasterCard Worldwide, GTO 1/2008-12/2008
Sr. Network Engineer, Security
Global Technology Operations; Corporate enterprise security encryption technology projects to address essential mission critical systems adhering to Compliance under PCI-DSS/GLBA/HIPAA/SOX/EU Directives; mapping to NIST-800/FIPS-2/ ISO-27000 Series Standards.
Integrated security monitoring, policy managed and scanning agent security products from IBM-ISS Siteprotector IPS/IDS-Agents, Qualys, Symantec, Cisco NAC-ASA, IPS 4000 Series and IDSM-2, netForensics, AirDefense, EMC/RSA, nCipher, Protegrity on Cisco/IBM/SunMicrosystems/HP-Tandom/HP-Openview to IPv6/IPsec migrations. Defined the security architecture design, testing and implementation strategies for over 1500 International Banking Institutions.
Team Lead in establishing Enterprise Security frame work and validation requirements of VISA-PABP (Payment Application Best Practice) – Corporate Billing System application ensuring network security encryption, data & asset classification, incident and audit risk management including access controls, disaster recovery and business continuity.
Job Gap, Achilles Tendon Injury 6/2007-12/2007
Doctors’ orders to maintain complete immobility for a full recovery.
IBM, Inc. 10/2005-5/2007
Senior Security and Privacy Consultant – Professional Services
Security program policy management for Miami-Dade County’s HIPAA security incident and remediation assessment in auditing application access controls, disaster recovery and business continuity.
Managing global IT remediation issues generated by policy for IPsec/SSL/FTPs/LDAPs encryption.
Infrastructure support for all Carlson’s ISS (Internet Security Systems) SiteProtectors and 380 intrusion detection/prevention devices (HIDS, NIDS and IPS) through Symantec SOC operations. Security operations center consulting and security advisory prioritizing Firewall Roles and Qualys auditing reports, eEye-Retina scanning reports and Symantec virus patch management reports.
Corporate enterprise security assessment project (Mead Johnson) to address essential mission critical corporate systems adhering to FDA/HIPAA/SOX/GLB-Act compliance; mapping to NIST-800/DSA/ ISO-27000 Series Standards. Established Enterprise Security Frame Work and PeopleSoft/ERP network security encryption, data classification, asset management, incident and audit risk assessment management including access controls, disaster recovery and business continuity.
Depart. Of Health and Human Services, State of N. Carolina 1/2005-10/2005
IT Security Architect, Consultant
Infrastructure Security consultant member representing 14 Metropolitan Hospitals and 172 regional offices.
Responsible for IT technical leadership in implementing, managing and enforcing information security directives as mandated by HIPAA (ISO-NIST/FIPS) Compliance within the organizational infrastructure of 19,800 users and Clinical\Financial applications throughout all divisional facilities.
Project consultant in Systems/Network Security Risk Assessment Management for access controls, disaster recovery and business continuity.
US-Homeland Security Infraguard registrant under Public Healthcare, Telecom and Emergency Services and member of the CTIA / Wireless Security Association Consortium in Infrastructure Design and Technologies achieving Federal Communications Commission (F.C.C.) regulations.
Rinker Materials Corp. 6/2004-1/2005
IT Manager / Security Compliance
IT Security responsibility for a Global SAP/R3 ERP financial client /server application on HP-UX/9000 for all of US-North America, Australia and Asia Pacific supporting 380 accessible locations consisting of 3,500 users.
Project managed organizational Process Improvement and AS/400 migrations relating to corporate direction, information security policies and procedures involving 5 Global Business groups coordinated for Corporate Global IT Shared Services and Corporate VP/Controllers Business Associates.
Managing 4 staff members developing policy management and procedures using centralized access authentication for an Enterprise Financial client/server applications complying with (SOX) Sarbanes-Oxley Section 404 Security Regulatory requirements based on Cobit guidelines.
Catholic Health East Hospitals 1/2004-6/2004
HIPAA Program Manager / IT Security
HIPAA Security Regional Committee Member representing 2 Metropolitan Hospitals and 100 regional Physician Offices. Responsible for IT technical staff leadership in implementing, managing and enforcing information security directives as mandated by HIPAA (ISO-NIST/FIPS) Compliance within the organizational infrastructure of 4,800 users for (Eclipsys, Cerner, Epic, IDX, Meditech, Siemens, McKesson).
Wireless (WiFi, WiMAX, RFID) Project Managed Qty. 200 (Hot Spots) Cisco Secure Wireless 1230 Series-Access Points (802.11a/b/g) including strategic encryption security features using redundant Cisco ACS/WLSE/Certificate Authority-VeriSign via Windows 2000 Advance Servers valued at .5Million.
Established HIPAA (NIST- ISO) Security Incident and Audit Risk Assessment management for access controls, disaster recovery and business continuity.
Palmetto Health Alliance Hospitals 1/2003-1/2004
IT Manager, Security Officer / Architect
Security Responsibility for Four Metropolitan Hospitals in adherence to HIPAA (ISO-NIST/FIPS) Privacy, Security Ruling - 45 CFR 164 relating to ePHI Administrative, Technical and Physical Safeguards ensuring required and addressable elements.
Project Managed 5 staff members in developing policy management and procedures using centralized access via LDAP authentication for an Enterprise Clinical (Eclipsys, Cerner, Epic, IDX, Meditech, Siemens, McKesson ) and Financial client/server applications complying with HIPAA (ISO-NIST/FIPS) Privacy/Security regulatory requirements for 8,500 users.
Tumbleweed Project manager for a real time auditing application based on analytical rules requiring login accounts, batch and SMTP/FTP/EDI integration interface and MS-IIS /SSL Web Servers and Secure MS-SQL Servers.
Developed the IT Security infrastructure to address proactive reporting, monitoring and response structure for Unix/NT/2000 Systems, Network Infrastructure, Internet\Extranet Web Servers, Internet Firewall Policies and WEB/SQL Engine minimizing enterprise security vulnerabilities.
North Broward Hospital District 6/1997-1/2003
IT Manager, Network & Systems Security
Supervised and project managed 12 technical staff members encompassing Unix/NT Admin., Oracle/MS-SQL DBA’s and Cisco Network Infrastructure Engineers with an operating cost of 1.8M.
IT Management HIPAA (ISO-NIST/FIPS) Committee member in evaluating IT Security Audits and Risk Assessments.
Disaster Recovery Implementation and Technical Support Manager for Lawson ERP (GL, AP, PO, HR MM and EDI Transactions) Enterprise Servers using IBM AIX/Unix RS/6000 (S80) running replicated Oracle Databases via IBM-GeoRM valued at 4.8Million.
Project managed various enterprise business applications for Cerner Classic & Millennium, Siemens PACS, Pyxis Pharmacy Systems, Siemens CathLab, Document/Medical Imaging and McKesson PHS centralized medical scheduler using HP/Alpha Digital Unix and NT Servers.
Security Certified Professional (SCNP) in network and systems design for various vendor products including Check Point/VPN, Cisco, Linux and Windows2000 relating to HIPAA compliance and considerations.
eHealth and eCommerce application design and support using MS-IIS/Web/SQL and Apache Web Server using Sun Microsystems Solaris/Unix ES Class UltraSparc, Microsoft NT/2000/XP Compaq Prolient Servers and IBM AIX/Unix Servers.
Managed the strategic criteria in the LAN/WAN evaluation, design and selection process for a Metropolitan Cisco ATM/Switching/xDSL/Frame Relay/Wireless technology supporting data, voice and video throughout our primary hospitals valued at 3.8M.
Evaluated, projected and planned centralized network/systems management utilizing HP-OpenView, Cisco Works, BMC/Patrol Enterprise Systems Manager including DB Knowledge modules for Oracle, Sybase and MS-SQL ensuring applications functionality and high availabilities.
Designed, planned and implemented Citrix/Winframe thin client architecture for various enterprise applications.
Managed Internet access utilizing multiple Checkpoint firewall and proxy services to include security vulnerability testing. Managed and implemented Client / Server requirements utilizing DHCP, DNS and LDAP multi-application access accounts.
Arthur Andersen & Company 1/1997-6/1997
Technical Manager, Global Enterprise Networks
Global committee member in the development of IT Project Standardization involving 12 business groups addressing application (SDLC) life cycle adhering to technological corporate requirements.
Responsible for the Arthur Andersen-North America Technology DataCenter’s operational network and support infrastructure for 300 Compaq Prolient 5000 Servers running Microsoft NT, Lotus Notes and ERP PeopleSoft UNIX SparcStations.
Established requirements for Enterprise Network Management for proactively monitoring network and system devices using HP-OpenView node manager and HP RMON agents.
W.R. Grace & Company 1994-1997
Consultant, Global Services / Sr. Network Design
Implementation Manager for Global SAP/R3 ERP financial client /server application on HP- UX/9000 roll-out for Asia Pacific, Europe, Australia, Latin America and North America.
Organizational IT direction, consolidation and technology infrastructure process management involving 6 Global business groups coordinated by Corporate Global IT Services.
Global Network Management design and implementations for world-wide AT&T frame relay network system for 10,000 plus users using 64 Cisco routers in 28 countries via HP OpenView Node Manager for HP-UX.
National Institute of Technology (N.I.T)
Associate of Science in Electronic Engineering Technology
Security Systems (SNCP) Security Certified Network Professional-HIPAA, Windows, Linux and Network Check Point Firewall NG/1-VPN (IPSec)
EMC enVision SIEM and EMC Archer eGRC Security Compliance and Risk Management
Cisco ATM/Catalyst Switching 8500, LightStream 1010, Cisco Catalyst Switching
HP OpenView Node Manager for HP-UX
Federal Communications Commission (F.C.C.), General Radiotelephone License with Ship Radar Endorsement