THOMAS FAZIO

CLEVELAND, OH 440-***-**** adem4u@r.postjobfree.com LINKEDIN: THOMAS FAZIO

CHIEF INFORMATION SECURITY OFFICER

I am a driven, results-orientated Certified Information Systems Security Professional with 20+ years of experience in information technology. During the last ten years, I have specialized in designing and delivering cybersecurity programs to protect data confidentiality, integrity, and availability for many organizations while working in the cybersecurity field. I am incredibly passionate about my profession and creating strategies that increase efficiency while maintaining security by using a layered and simplified approach.

HIGHLIGHT OF EXPERTISE

CISSP ê NIST ê PCI/DSS ê GDPR ê Information Risk ê Compliance and Regulation ê Vulnerability Management ê Analytical Skills ê Assessment Tools ê Training & Development ê Systems Security ê Business Continuity ê Sales Public Speaking ê Budgeting ê Vendor Management ê Policies and Procedures ê Audit ê CIS Critical Security Controls ê ISO 27002 ê Contingency Planning ê Access Control ê Incident Response ê Risk Management ê Physical Security TECHNICAL SKILLS

VMWare ê Virtualization ê SAN ê Cisco Routing and Switching ê Meraki ê Rapid7 Insight IDR ê Microsoft ATP ê Microsoft 365 ê Citrix RDP ê Salesforce ê Windows Server ê Active Directory ê Multifactor Authentication ê DUO ê Cisco Umbrella ê Barracuda Infrastructure as a Service ê Software as a Service ê IDS/IPS ê Elasticsearch ê Kibana ê Carbon Black ê Arctic Wolf ê Darktrace Okta ê Trend Micro ê Yubico ê Lastpass/Dashlane ê Slack ê Crowdstrike ê SIEM PROFESSIONAL EXPERIENCE

DIRECTOR OF CYBERSECURITY/VCISO ACCELLIS TECHNOLOGY GROUP, LLC CLEVELAND, OH 04/2018-PRESENT Serve as the cybersecurity leader of a managed information technology systems company and provide strategic consulting focused on providing cybersecurity programs to legal and financial firms. Provide the sole management and support of a team of Certified Ethical Hackers delivering penetration testing, vulnerability scanning, SOC, and remediation. A significant focus of my position is to create cybersecurity roadmaps based on security gaps and then engineer and execute the cybersecurity plan.

• Passionate about cybersecurity and making clients aware of the importance of a mature Cybersecurity plan.

• Stay abreast of current threats and plan mitigation strategies.

• Lead development of cybersecurity programs and implementations across 120+ clients.

• Perform annual penetration testing for multiple companies and present the findings.

• Perform security assessments.

• Worked with team on the creation of a SIEM built-in Elastic Cloud to monitor client environments.

• Meet with executives to perform risk analysis and identify gaps and appropriate security countermeasures to improve security posture.

• Conduct cybersecurity presentations and participate in panels and discussions at security conventions and InfraGard meetings.

• Work with my team to reduce vulnerabilities by 78% across all clients using Rapid7 Nexpose.

• Perform security and information technology audits for large law firms.

• Work with clients to develop Incident Response Plans (IRP) and Business Continuity Plan (BCP) for clients.

• Provide security administration for Office 365 environments.

• Serve as an advisor to the engineering team for incorporating security measures in client projects. Design and present security recommendations during client roadmap meetings.

• Hold quarterly Cybersecurity meetings with clients to go over plans and continuous improvement. OWNER BIG MOUNTAIN TECHNOLOGY, LLC CLEVELAND, OH 01/2008-03/2018 Implemented and supported cybersecurity and managed technology services for multiple firms primarily in the financial industry. Provided cybersecurity direction and advice on industry-leading frameworks, best practices, common critical controls, and regulations for clients. Led eight team members by driving the highest level of performance through hands-on coaching and training to meet business objectives.

• Provided vCISO capabilities for clients, including a national mortgage banking firm consisting of 250+ employees across the

• Advanced client networks using virtualization with VMWare, and SAN infrastructures. Developed consistent backup and business continuity strategies using off-site snapshots.

• Provided vCISO capabilities for a national mortgage banking firm consisting of 250+ employees in 15 branches across different time zones.

• Developed cybersecurity plans to strengthen our client's cybersecurity posture.

• Identified, recruited, and hired talent to build a highly successful team.

• Acting CTO/CISO and audit advisor for multiple clients regulated by the SEC, Fannie Mae, and Ginnie Mae. CHIEF TECHNOLOGY OFFICER NATIONAL CITY BANK/CAPSTONE REALTY CLEVELAND, OH 03/2000-01/2008 Developed, implemented, and supported a Windows data center infrastructure designed to meet business goals and objectives. Led regular technology steering meetings; created vendor management and audit processes to push value. Provided support for 180 employees across nine branch offices and was team lead on audits, business continuity, and disaster recovery initiatives.

§ Designed, installed, and supported on premise Microsoft Windows, Citrix, infrastructure and WAN.

§ Worked with regulators, aligned team with corporate goals, improved team morale and engagement, envisioned a future state for technology and security.

§ Responsible for 750k annual information technology budget.

§ Provided leadership and support to hundreds of end users.

§ Oversaw Fitch and Fitch rating reviews and Fannie Mae and Freddie Mac government security and technology audits; presented findings to board with recommendations for remediation.

§ Established and tested and build a fully redundant hot-site to maintain data accessibility during natural disasters or long- term outages.

§ Conducted yearly DR/BR plan tests

DIRECTOR OF ASP THINSOLUTIONS CLEVELAND, OH 06/1997-3/2000 Provide consulting and support for clients in a variety of environments. Eventually became the director in charge of developing and supporting a hosting as an application service provider.

§ Lead engineer and director providing support for multiple financial clients.

§ As a technical engineer I was instrumental in building one of the earliest application service provider solutions on a Citrix server farm.

§ Hosted Exchange Server in Citrix environments, even when not supported by Microsoft.

§ Lead on all regulated client’s needing disaster recovery and business resumption plans. MECHANICAL ENGINEER MILLER BEARING COMPANY BRIMFIELD, OH 01/1992-06/1997 Revamp shop drawings first on paper then using AutoCAD. Setup Netware server and BNC network to share drawings using file server. Eventually move the company to Windows NT and became proficient with Windows server environment.

§ Provide IT support employees.

§ Learn Autocad version 10, convert all paper drawings to digital for manufacturing process.

§ Develop procedures for sending updated drawings using CAD and file server directly to CNC operators across a BNC network.

HOBBIES

Mountain biking, snow skiing, camping, guitar

REFERENCES

Available upon request

Contact this candidate