CISO, Chief Information Security Officer, CIO
Resume:
PETER B. SOKOLOWSKI
Chief Information Security Officer (CISO)
408-***-**** *****.****@*******.*** linkedin.com/in/globalsecurity Alpharetta, Georgia (Eastern Time Zone)
EXPERIENCE
Chief Information Security Officer (CISO)
Kahua
07/2024 - Present Alpharetta, GA
Provided strategic vision and leadership in cybersecurity across Kahua’s commercial, government, and corporate sectors by designing a proactive and resilient security roadmap that aligns with business objectives and regulatory requirements
Spearheaded compliance and certification initiatives, including FedRAMP, SOC 2 Type 2, ISO 27001, DoD Impact Level 2 (IL2) and Level 4 (IL4) authorizations, as well as UK Cyber Essentials and Cyber Assurance, positioning Kahua as a leader in secure and compliant SaaS offerings
Implemented a comprehensive governance framework that fosters a security-first culture through tailored cybersecurity awareness programs while championing a robust third-party risk management strategy to safeguard the supply chain
Strengthened incident response and crisis management capabilities through red team exercises and drills to enhance Kahua's preparedness for rapid threat containment and response Built and lead an elite cybersecurity team by attracting top-tier talent while promoting a culture of innovation, continuous improvement, and industry-leading practices
Served as Kahua’s security ambassador to regulatory bodies and strategic partners, enhancing the company’s reputation as a thought leader in cybersecurity within the cloud based software sector SUMMARY
Highly skilled and experienced IT executive with
a reputation for delivering effective and
innovative IT solutions. Extensive background in
IT senior management, specializing in IT security
architecture, strategy, infrastructure, cloud
technology and operations. Consistent history of
driving corporate growth and profitability by
mitigating risk, maximizing information and
systems security, and enabling continued
operations.
Excel at building and leading top-performing
teams, evaluating and implementing new
technologies to keep pace with rapidly changing
business needs, and delivering innovative
solutions to keep ahead of potential security
challenges.
SKILLS
IT Security Risk & Compliance
Security Architecture DevSecOps
Disaster Recovery DLP SOX
Enterprise Architecture PCI
ISO 27001 NIST CSF GDPR
Identity & Access Mgmt. ITIL
Cloud Security Third Party Risk
Policy Creation Security Operations
Data Governance Vendor Risk
Application Security Standards
Documentation Technical Writing
FedRAMP SOC 2 Type 2 Compliance
E q
•
•
•
•
•
•
Senior Global Director of Cybersecurity
DMH Technologies
01/2019 - 07/2024 Remote, Alpharetta, GA
Strategically fortified the information security postures of diverse organizations in sectors such as banking, healthcare, oil, and retail, aligning them with IT security and compliance mandates Led global teams to develop and execute IT security strategies supporting critical business and compliance goals
Established and led the Global Security Architecture program, providing comprehensive IT security oversight for a vast network spanning over twenty thousand sites
Instituted a technology governance program, ensuring security compliance for new and existing technology integration through comprehensive IT audits, security solution reviews, and risk management analysis
Managed Third-Party Cybersecurity Risk Management program implementing comprehensive safeguards and strategic measures safeguarding sensitive data and ensuring robust protection against external threats and vulnerabilities
Spearheaded data retention/classification initiatives and developed enterprise ransomware response strategy
Established and maintained policies and standards in alignment with information security regulations
•
•
•
•
•
•
•
EXPERIENCE
Senior Manager IT Security
Bank of America
03/2014 - 05/2017 Remote
Directed IT security architecture & engineering program Managed and oversaw global enterprise threat and vulnerability management team (security operations)
Managed enterprise IT security audits and remediation Senior Manager IT Enterprise Architecture
Bank of America
02/2008 - 03/2014 Hybrid, Los Angeles, CA
Responsible for maintaining technical and operational stability, driving innovation, and oversight of all corporate IT solutions Directed mergers and acquisition IT technical integration Data Center design, implementation, and support
Disaster Recovery Change Management IT Audit and Remediation Senior IT Enterprise Architect
Countrywide Home Loans
08/2002 - 02/2008 Calabasas, CA
Developed and implemented enterprise-wide standardized IT processes and procedures in preparation for Countrywide's aggressive expansion into the mortgage lending market Sr. Managing Systems Engineer
Northrop Grumman
12/2001 - 09/2002 Woodland Hills, CA
Managed data center IT engineering staff and user support team Principal IT Consultant
Dynamic Computer Systems
08/1998 - 01/2002 Los Angeles, CA
Oversight of business operations, design and implementation of network systems, managing upgrades, and client/server technology IT Support Manager
IBM
01/1995 - 08/1998 Chicago, Il
L2/L3 Engineering support for Monsanto World Headquarters CERTIFICATIONS
Qualys PCI Compliance Specialist
VMWare Certified Professional 5.5
Data Center Virtualization
ITIL V3 Foundation
EDUCATION
Applied Science
University of California, Los Angeles
Foundational Science
Wilbur Wright College, Chicago, IL
M.B.A. IT Systems Management
Canterbury University
B.S. Information Technology
Canterbury University
•
•
•
•
•
•
•
•
•
•
Akamai Guardicore Microsegmentation
Certified Systems Engineer & Administrator
Cybrary Certified DevSecOps
Microsoft Certified Professional (MCP)
•
Senior Director of Cybersecurity
Wells Fargo Contract: Hoffman and Associates
05/2017 - 01/2019 Remote, Alpharetta, GA
Directed cybersecurity efforts, strategically orchestrating comprehensive strategies and initiatives
Managed Security Architecture team ensuring technical solution and initiative adherence to policies and standards
Led and executed comprehensive red teaming exercises, probing and assessing security measures to identify vulnerabilities and enhance overall cyber resilience
Led efforts to safeguard sensitive data, adhering to ISO27001, PCI, GDPR, FedRAMP, and other regulatory standards
Led a successful FedRAMP audit and assessment initiative
•
•
•
•
•
Contact this candidate