Security Officer Cyber

Simon Y Cao

Irvine, CA, USA – 949-***-**** – ***********@*****.*** – www.linkedin.com/in/simoncao/

Global Tech Executive

Software Development – Product Development – Cyber Security

Agile BizDevOpsSec

IT as a Service (To productize IT)

Global Infrastructure Operations & Optimization

Digital Transformation

SDN, SD-WAN

Artificial Intelligence

Cyber Security

Business Technology Alignment

Leading by example

Player Coach

26 years of demonstrated senior tech leader experience to align business goals, with technology and process, to grow engineering, and operations, 16 years with startup, medium companies with entrepreneur spirit, 10 years with the Global 100 companies

26 yeas of a hands-on player coach in product development, software development and cyber security to embrace the latest technologies and to transform an IT organization. Expert on deliver rapid and incremental results via Agile BizDevOpsSec

26 years of managing both small teams and very large national/global teams over 1,000 staff. 10 years of annual P&L of $1+ billion. Focused on increased productivity while reducing costs by consistent budget accuracy

26 years of cyber security experience: COSO, COBIT, ISO 27000/27001/27002, SOX, SOC2, NERC-CIP, GDPR, FISMA; NIST: CEF, SP-800-53r5; HIPAA, HITRUST; FCC: CPI, CPNI; GAGAS: GAO-18-568G; Firewall, IPS, IDS, camera to integrate physical security; DDOS; BCP, DRP

Accomplished communicator skilled in building and strengthening relationships across functions to drive cohesive, strategic operations

CAREER ACCOMPLISHMENTS

●Tenacity and resilience: Survived the most challenging life events, to accompany my late wife in her cancer-battling journey, resigned from the global network head of the bank of America in 2014. Supported my family full-time until she passed away in 2020. Walked through the grief journey with my children. Moved, restarted a new family and rebooting my career now. Meanwhile working as a virtual CIO, CTO, CISO.

●As vCTO for start-up division of an outsourcing company, developed Software as a Service (SaaS) solutions, using Agile methodology, Lean Six Sigma, to improve the speed of and quality of software development for product releases.

●As CIO and CISO at NJ Department of Labor and Workforce Development —, digitally transformed the IT department to produce more major applications in nine months, produced more results the previous five years via BizDevOpsSec.

●As Senior Vice President for Bank of America Merrill Lynch, managed $1.3 billion annual P&L, productized IT as a service, achieving $51 million in savings in first year, developed a product strategy of 30% savings in 5 years.

●As Comcast Midwest Division VP Engineering and Operations, succeeded as the fastest division to upgrade of $1 billion of networks and systems, and launch all new digital video, voice and high-speed products. Thus promoted to Comcast Corporate VP Engineering and Operations with a team of Tech PMs, architects, automation tools to improve both product development life cycle (CTO group domain) and the software development life cycle (CIO group domain) as both a tactical SWAT team leader and a strategic enterprise process transformation leader.

PROFESSIONAL EXPERIENCE

World Vision Technologies Irvine, CA

Consultant (a virtual CIO, CTO, CISO) 2/2019-Current

●Tech Advisory: Provided technical insights and strategic advice to worldwide technology and investment community.

●Product development: e.g “Hotel-IT-in-a-box” solution. Video, IP PBX, WiFi, door lock, cyber security, “Smart-home” IoT home automation solution, Ecommerce B2B supply-chain API integration and automation.

●Cyber Security consulting projects.

NeoTech Solutions, Inc., Plainfield, NJ (www.neotechusa.com)

Chief Technology Officer 1/2018-2/2019

As the principal strategist and visionary for a mobile SaaS app start-up division to transform the outsourcing company, directed concurrent product development projects, quality processes, speeded up time-to-market cycle. Coding once in C# and .NET, and functioning on IOS, Android, and Web. Cloud providers: AWS, Azure. Applied Agile DevOps, Lean Six Sigma, collaborated with US based sales team and offshore developers. The software product line and its customers added significant valuation to the parent out-sourcing company when it was acquired.

The New Jersey Department of Labor and workforce Development Trenton, NJ 1/2017-1/2018

Chief Information Officer & Chief Information Security Officer

Delivered more results in one year than the previous 5 years. Transformed the IT team of 130 members into a high-performing organization aligned with agency needs from a directionless, unmotivated group. Implemented Agile methods and a Project Management Office to prioritize business needs and drive the results via new processes and governance.

●Application Development: Led the organization to produce a ‘wage compliance’ Internet claim system, going from paper to the web, live in nine months, with four major releases.

Led the disaster recovery exercise of the legacy Unemployment Insurance (UI) mainframe system, for the first time in New Jersey and in the US. Succeeded the proof-of-concept modernizing legacy UI via the latest FinTech to product rapid and accurate audit and BI report via modern data-mining tools.

Improved the disability claim (HealthTech) processing speed with process and system automation for the claimants, doctors, and the NJ state agency with the NJ Temporary Disability Insurance process system. Modernized the front portion of the legacy system with HIPAA compliance, and implemented EMR exchange.

Additional accomplishments included building a modern data warehouse to extract mainframe data and thereby enable production business intelligence of 15 accurate and verifiable financial accountability reports to the US Department of Labor. New Jersey was the only state ever to accomplish production of all reports.

Built and migrated to private and public clouds (AWS, and Azure).

●Cyber Security: Chief Information Security Officer (vacancy report to me), developed the BCP and DRP, assessed & refreshed security strategy, satisfied all the external audit & regulation compliance. Succeeded for the first time mainframe based unemployment DR exercise in NJ and US history. ISO, NIST, GAO-18-568G, PCI, PHI, HIPAA, HITRUST audit and compliance. Collaborated with the FBI, NJ State Police SOC and NJ OIT SOC on critical infrastructure, cyber attacks and mitigation.

Time Warner Cable (Contractor) – Reston, VA 4/2014-12/2016

●Supported SVP engineering to have provided merger business and tech integration and planning activities.

Bank of America Merrill Lynch Headquarters New York, NY 5/2013-5/2014

Senior Vice President Global Network Product Portfolio Leader

Productized IT as Service. Realigned IT spending, implementing a more comprehensive set of business metrics and benchmarks for global IT enterprise. Collaborated with business unit leaders, and other C level executives on business planning and charge-back implications. On a weekly basis initiated, reviewed, evaluated, and approved global spend proposals in concert with other corporate executives. Oversaw 100+ major vendor contract renewals, and implementation of new contracts, jointly with Sourcing, Vendor Management, and Legal.

●Product Management: Built and led a team of global Tech Product Managers, manage spending on weekly bases with finance, global vendor management and global sourcing teams. Collaborated with CTO, CIO of global BUs and LOBs and developed a three-year plan with 30% savings, five-year SDN product roadmap, and vendor strategy.

●Innovation and cost reduction: Developed solution and plan for global data centers with SDN and cloud; integrated cellular/Wi-Fi with private cloud, instituted broadband access via VPN (SD-WAN) Request for Proposal (RFP); implemented the carrier class IMS as the global enterprise unified communication platform.

●ITIL/ITSM Best Practices: Provided consultative support on organization, structure, processes, and telecom expense management as the Bank migrated the global network from the HP outsourcer to an in-house responsibility.

●Security: Designed and implemented a Distributed Denial of Service (DDOS) mitigation plan and collaborated with the Global Information Security team on cyber security best practices for the Bank.

Campbell Soup Camden, NJ 1/2013-5/2013

Senior Architect (contractor)

Designed, collaborated and implemented global (Americas, APAC, and European theaters) IT strategies: cost reduction, cloud migrations, global SD-WAN implementation and optimization, modernized mobile and WIFI solutions. Refreshed and modernized the legacy robotic manufacturing network with the latest and secure technologies.

Comcast 5/2004-1/2013

VP of Engineering and Operations, Philadelphia, PA,

Supported the Senior Vice President of Operations in the following key functions:

●Enterprise Architecture: Member of the Enterprise Architecture Review Board, contributing to Service Oriented Architecture (SOA) applications, product development, and security, for review, and approval of new projects.

●Enterprise Standards and Optimization: Hired and developed cross-functional teams to oversee and manage the enterprise top 50 projects. Designed, and gained consensus support for an enterprise standard of a new product Operations Readiness Model, and other enterprise standards, such as the video channel name convention.

●Other Achievements: prototyped an agile end-to-end service outage isolation and customer experience “integration correlation engine” using Artificial Intelligence and open source. Competed against the vendors for work, with initial savings of $3 million, cost avoided $30 million of Digital-to-Analog Adaptor deployment program.

●Known as the firefighter: C level’s go-to person to lead cross-functional SWAT team to solve the sev-1 technical and cyber security issues, and to speed up the new product “go to market” with improved quality and lower costs.

Senior Principal Consultant: CISCO premier advanced service partners that are the turnkey system integrators for the CIOs and CTOs of the healthcare, insurance, manufacturing, retail and global telecom industries, 9/1990-5/2004

HANDS-ON TECHNICAL PROFICIENCIES

Software and middleware: Microsoft C#/.Net, Xamarin, mobile (Android and IOS); Java and open source, cloud (DaaS, IaaS, PaaS, SaaS), micro service. Data: all flavors of databases, big data, deep data and high performance mining to business intelligence. Networking & infrastructure: World largest telecom and enterprise network architect/design, routing protocols, traffic optimization, QoS, optical C/DWDM, LAN, WAN, cache & acceleration, SDN (data center and SD-WAN), CMTS and DOCSIS 2, 3, 3.1, Cell Back-Haul, routers/switches. UC, Voice and IVR Technologies: Cisco, Avaya, Microsoft, Huawei, SIP & IMS (carrier-class voice). Video: HTTP streaming, MPEG2/4, VOD, CDN, Arris and Cisco head-ends. Security: application source code, data end-to-end, OSI layer-by-layer, physical security (sensors and cameras), IDS, IPS, firewalls, DDOS, PCI, PHI, HIPAA compliance.

EDUCATION, CERTIFICATIONS & TRAINING

CASE WESTERN RESERVE UNIVERSITY, Cleveland, OH

Master of Business Administration, Finance and Marketing

UNIVERSITY OF MASSACHUSETTS, Lowell, MA

Bachelor of Science, Information Systems

Selected Certifications among 20+ others

ITIL Certification (ITSM) IT Service Management

(CISSP) Certified Information Systems Security Professional (CCIE) Cisco Routing & Switching Written Exam

(CCNA) Cisco Certified Network Associate (CCNP) Cisco Certified Network Professional

(RCSA) Riverbed Certified System-Administrator (SCSA) Solaris Certified System Administrator

Contact this candidate