Chief Cyber Architect, Zero Trust Architect
Resume:
Randall R. Wynes
Kansas City, MO., ***** Mobile 816-***-**** E-mail
*************@*****.*** https://www.linkedin.com/in/randall-wynes-470626255/
SUMMARY AND PROFILE
Accomplished executive leader leading teams or operating as a Subject Matter Expert (SME) in enterprise security architecture and engineering, Zero Trust, Security Operations Center (SOC), Cryptography, Executive Leader / Senior Program/Project Manager.
PROFESSIONAL SKILLS
Cybersecurity Executive
Cybersecurity Strategy and Leadership
Cybersecurity Architecture and Design
Cyber Defense, Threat Intel Operations (SOC)
Cybersecurity Vendor Management
Continuous Diagnostic and Mitigation (CDM)
Zero Trust Strategy, Architecture and Implementation (ZTA)
Vulnerability and Remediation Management
Post Quantum Cryptography, Encryption Key Management, PKI, Thales, Entrust HSM
Cloud Security (AWS, Azure)
FedRamp
Program Management, Project Management and tools such as Microsoft Project, Jira, Trello, Wrike, Kanban Flow and Confluence, ServiceNow
Agile, Scrum Master, Scrum Product Owner
Frameworks – Agile, ITIL, NIST 800 Series, ISO Series, HIPAA, PCI-DSS, TOGAF, COBIT 2019
Pre/Post Sales Cyber Solutions
RFP, RFI, RFQ, Proposals
PROFESSIONAL EXPERIENCE
BMR Consulting Group / Kansas City, Missouri
Chief Technology Officer & Zero Trust Chief Architect/Advisor
April 2024 – September 2024
Led executive and strategic consulting initiatives focused on CDM, Zero Trust, and Risk Management. Providing executive technical advisory and subject matter expertise with Aspis Consulting, WynCyb, Customer Value Partners, Alpha Omega Integrations, and Allied Mission Group. Spearheaded an initiative focusing and completing full comprehensive cybersecurity posture assessments including Zero CDM, Zero Trust, CMMC, SOC2, and NIST CSF.
Executive and C-Suite Advisor, Consultant and Strategist, Providing Architecture, Design, Program & Implementation Plans, Zero Trust SME, Advisory and Consulting, Complete Identity, Device, Data, Network, Asset, Application Assessments, Cloud Security, Azure Cloud Security, Azure Cloud Security and Security Operations Center (SOC)
Writing and responding to RFP, RFI, RFQ, Federal Government Proposals. Small Business, 8(a), HUBZone.
Leading cybersecurity assessments, developed strategic IT roadmaps, and advising clients on emerging technologies. Organizational improvements to security operations, cyber defense, risk management, vulnerability management and remediation. Proactive security posturing
Post Quantum Cryptography Advisory and Consulting, Encryption, Key Management, PKI
IT and Cybersecurity Product Consulting, Cybersecurity Vendor Assessments, Management and Evaluations, CI/CD Pipeline Assessment and Implementation Plans to include RoadMap creation, managing project deliverables.
NIST CSF, NIST RMF, (NIST 800 Series), HIPAA, HITECH, PCI-DSS, ZTA, COBIT Frameworks
FedRamp Consulting, Standardizing Cloud Security, Continuous Monitoring, Authority to Operate (ATO), Assessment & Authorization (A&A), Security Plan (SSP), Plan of Action & Milestones (POAM), Cyber Vendor Management
Customer Value Partners, Washington, DC (May 2019-April 2024)
Executive Director & Program Manager, Cybersecurity Strategy & Innovation
October 2022 - April 2024
Led strategic consulting initiatives for the Clients Cybersecurity division, focusing on developing and implementing cybersecurity strategic plans such as Zero Trust, Lumen, SOC Maturation, and DevOps. These efforts aimed to secure USDA's IT environment across the department, enhancing its ability to prepare for, respond to, and recover from cyber threats. By adopting zero-trust architecture, modernizing legacy applications, and continuously protecting cyber infrastructure, USDA's cyber resilience is strengthened, allowing the department to adapt to both known and unknown crises, threats, and challenges. Spearheaded the implementation of Clients Security Information and Event Management (SIEM) solution, providing near real-time and archival views for monitoring systems, initiating troubleshooting efforts, and conducting investigations across USDA infrastructure and application systems. By leveraging SIEM’s integrated AI capabilities, enhanced USDA’s predictive and preventative cybersecurity resilience.
Executive Technical and Cyber Advisor to CISO, DCISO for USDA CPOC
Strategic Advisor to Directors and Branch Chiefs at USDA CPOC, DOI, ACF, HHS (NCI)
Federal Government Contracting, USDA (FPAC, FSIS, CPOC), DOI, ACF, DHS and HHS (NCI)
Led and Supported 140+ Cyber Professionals, Contracts totaling $200 Million Budget
Writing and responding to RFP, RFI, RFQ, Federal Government Proposals. Small Business, 8(a), HUBZone. Fixed Price, Time and Material
Managing and responding to BPA’s, SOW’s
Leverage and develop our partners in cloud & managed service providers and building relationships with key decision makers and influencers
Product Development, Generative AI, Cyber Tools, Cyber Tracking, Pre/Post Sales
Cyber strategies, architecture, while implementing solutions for complex government cyber projects. Completed and updated strategies for the following: Security Operations Center (SOC), Data Security, Zero Trust, Identity Access, and Encryption (Key Management)
Cryptography, Encryption, Key Management Modernization Projects – Data Protection, data in transition and data at rest, managing 75 HSM’s (Cloud and On-Prem). Managing Software Key Managers.
FedRamp Consulting, Standardizing Security, Continuous Monitoring, Risk Management, A&A, SSP, POAM, ITIL and NIST 800 Series, Change Management
Ongoing CDM, Zero Trust and SOC Maturity
Ongoing evaluations for emerging threats and technologies. GOT versus COT. Vendor Engagements
Zero Trust SME, Architecture, Assessment, Advisory. Cloud and On-Premises projects. Completed 5 initial assessments for Zero Trust Architecture focusing on Identity, Device, Access, Data Security and Compliance. Ongoing implementation plans towards Zero Trust compliance and maturity
Stakeholder Planning, Integration Management, Resource Management, Scope Management, Cost Management, Procurement Management (Vendor Management). ServiceNow and Jira
Cybersecurity Vendor Assessments, Management and Evaluations
Post Quantum Cryptography Assessments, research, analysis, reporting and C-suite knowledge share
Directing cybersecurity engineering and operations teams, overseeing projects and ensuring compliance with industry standards for five US Government Agency Cybersecurity Programs
Utilized FAR / AGAR supporting data center, infrastructure and cybersecurity procurement processes, USDA Procurement Office
Data Center Migration Program
Customer Value Partners, Washington, DC
Cybersecurity Chief Architect and Sr. Technical Program Manager
September 2021 - October 2022
Ongoing CDM, Zero Trust and SDLC/DevOps Maturity Projects
Program Manager, managed 4 projects tied to Cryptography, Encryption, Key Management Modernization – Data Protection, data in transition and data at rest
Utilized FAR / AGAR supporting data center, infrastructure and cybersecurity procurement processes, USDA Procurement Office
Data Center Migration Program, Cloud Migration Program
Ongoing evaluations for emerging threats and technologies. GOT versus COT. Vendor Engagements
Hands on Leader for cybersecurity architecture and design teams, implementing Zero Trust strategies and DevOps best practices. Completed 3 security assessments and began ongoing implementation plans for DevOps
Stakeholder Planning, Integration Management, Resource Management, Scope Management, Cost Management, Procurement Management (Vendor Management). ServiceNow and Jira
Managed 5 Projects tied to Splunk, architecting, designing the solution for system builds, performance, implementation, and capacity
Provide Research Data and Security Architecture design services to portfolio teams during their engagement within the established solutions development lifecycle (SDLC), Configuration Management, SecCM Guidelines
Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in overall processes
Architected the CI/CD DevOps Environment, Cloud and On-Premises, OWASP.
SonarQube, Fortify; SAST and DAST
Provided technical leadership and project management for cybersecurity initiatives, managing a team of 12 Security and Application Assessors, 2 ISSO’s and 1 ISSM.
Product Development, Generative AI, Cyber Tools, Cyber Tracking, Pre/Post Sales
Writing and responding to RFP, RFI, RFQ, Federal Government Proposals. Small Business, 8(a), HUBZone. Fixed Price, Time and Material
Managing BPA’s, SOW’s
Customer Value Partners, Washington, DC
Security Operations Center Division Manager and Technical Program Manager
January 2020 – September 2021
Ongoing management of CDM, Zero Trust and SOC Maturity Programs and Projects
Stakeholder Planning, Integration Management, Resource Management, Scope Management, Cost Management, Procurement Management (Vendor Management). ServiceNow and Jira
Managed 8 Projects tied SOC maturation, modernization
Ongoing evaluations for emerging threats and technologies. GOT versus COT. Vendor Engagements
Hands on and active leader for a team of 30+ cybersecurity professionals. Threat Analysts and Threat Intelligence Analysts
Facilitated Modernization Projects, developed and implemented maturing and improving cybersecurity strategies and processes
Incident Response Escalation Team of 5 Associates / Analysts – 24x7 On-Call
Conducted SOC maturity assessments and audits. Completed 4 Phases of SOC Modernization
Completed architecture for data privacy and protection initiatives
Completed architecture and design encryption key management while actively leading the Operations Team
Revise and develop processes to strengthen the current Security Operations Framework, review policies and highlight the challenges in overall processes
Cryptography, Encryption, Key Management Modernization Projects – Data Protection, data in transition and data at rest, managing 75 HSM’s (Cloud and On-Prem). Managing Software Key Managers.
Writing and responding to RFP, RFI, RFQ, Federal Government Proposals. Small Business, 8(a), HUBZone. Fixed Price, Time and Material, Fixed Price.
Managing BPA’s, SOW’s
Customer Value Partners, Washington, DC
Cybersecurity Engineering Division Manager and Technical Program Manager
May 2019 – January 2021
Program Management covering CDM Efforts Continued – BOD 18-01 (Email /Web Security), BOD 18-02 (Secure HAV), BOD 23-01 (Vulnerability Mgmt.)
Tenable.sc, Tenable.io and Tenable Security Architecture and Design. Conducted thorough vulnerability assessments. Working with Remediation Teams, System Owners and Key Stakeholders
Utilized FAR / AGAR supporting data center, infrastructure and cybersecurity procurement processes, USDA Procurement Office
Stakeholder Planning, Integration Management, Resource Management, Scope Management, Cost Management, Procurement Management (Vendor Management). ServiceNow and Jira
Data Center Migration for Vulnerability Program (On-Prem, Cloud) and Splunk
Prioritized and remediate critical security risks
Generated insightful reports and dashboards
Streamlined and automated vulnerability management processes
Enhanced client security posture
Leading the Modernization Program for Cyber and Infrastructure
Helped facilitate growth of the team from 8 to 19 cybersecurity engineers.
Architected, Designed and Implemented Splunk ES, Planning and Acquisition (FAR/AGAR)
Spearheaded Cybersecurity Engineering Modernization Projects, AWS, Azure, Cloud and On-Premises
Guided efforts and implemented Data Security Maturing and Improved Processes
Program and Project Management related to Cybersecurity, Vulnerability Scanning, SIEM, and SOC Maturity. IPS, IDS, Endpoint Management, Data Science, Security Log Management
Ongoing evaluations for emerging threats and technologies. GOT versus COT. Vendor Engagements (FAR/AGAR)
Cryptography, Encryption, Key Management Modernization Projects – Data Protection, data in transition and data at rest, managing 75 HSM’s (Cloud and On-Prem). Managing Software Key Managers.
Kingfisher Inc., Washington, DC
Senior IT Security Engineer / Team Lead / Technical Project Manager (Agile)
December 2014 – April 2019
Demonstrated ability to deliver scalable and high-performance Elasticsearch solutions that empower SOC teams to effectively detect, investigate, and respond to cyber threats Proficient in designing, architecting, and implementing Elasticsearch solutions for SOC environments. Experienced in:
Program and Project Management for CDM initiatives: Elastic for Dashboards/Reports, IAM – PIV Cards (CAC), Data Protection DLP, Encryption, Vulnerability Management. (Agile)
Stakeholder Planning, Integration Management, Resource Management, Scope Management, Cost Management,
Utilized FAR / AGAR supporting data center, infrastructure and cybersecurity procurement processes, USDA ISC Procurement Office
Data Ingestion: Optimizing data ingestion strategies for diverse security data sources.
Index Management: Creating and managing efficient Elasticsearch indexes to support real-time search and analysis.
Query Optimization: Developing and tuning complex queries for optimal performance and accuracy.
Alerting and Automation: Configuring Elasticsearch to trigger alerts and automate incident response workflows.
Integration: Integrating Elasticsearch with other security tools and platforms to create a cohesive security ecosystem.
Modernization for Cryptography, Encryption, Key Management Modernization, PKI, KMIP, Cryptography, Encryption, Key Management Modernization Projects – Data Protection, data in transition and data at rest, managing
Modernization of SIEM, vulnerability scanning, data center consolidation, and secured data backup
Genesis 10, Kansas City, Missouri
Senior IT Project Manager (Contract)
June 2014 – December 2014
System Integrations/Migrations: Project-manage large-scale initiatives involving the transition of programs to new platforms and the merger of disparate and legacy systems from acquisitions and mergers. Results: Achieved seamless migrations and integrations that were transparent to client customers, accomplished with no unscheduled downtime.
Enterprise Implementations/Platform & Refresh: Project Manage global rollouts of new software and systems for multiple lines of businesses and business partners. Results: Ensured defect-free releases through careful planning, testing and QA efforts.
MS Project, MS Office, CA Clarity, Open Workbench: Planning and Designing, Execution, Monitoring, Reporting and Metrics.
Project Management/Program Team: Lessons Learned and Improvement Initiative Team
Multiple Lines of Business Project Support and Assignments for Cryptography and Key Management Processes
Senior IT Engineer / Technical Project Manager / Pre and Post Sales Engineer
Prime Factors Inc., Eugene, Oregon
August 2012 – June 2014
As a seasoned pre and post sales engineer specializing in cryptography, encryption, and key management, Thales HSM, I have successfully driven the sale of encryption software, key management software, and application-level security solutions to a wide range of clients, with a particular focus on the financial services industry. My track record includes achieving a total sales volume of $25 million by partnering with C-suite executives, senior management to architect, design, and implement robust application-level encryption solutions tailored to their specific needs. Provided technical project management support to various clients as part of the post-sale process.
Bank of America, Kansas City, Missouri
Sr. Encryption Consultant / IT Project Manager (Assistant Vice President)
April 2006 to August 2012
Spearheaded the establishment of a new encryption and key management team at the bank successfully managed the implementation and maintenance of hardware and software encryption and key management components. Architected and designed robust encryption solutions for applications, field-level data, and transparent database encryption. Led the design and implementation of a "Private Network" Star Topology for Hardened Security Modules (HSM), ensuring secure and efficient key management operations Architected and designed encryption and key management strategies for both data and tape storage infrastructure, safeguarding sensitive information. Six Sigma Lean Project Management, Metrics, KPI.
EDUCATION AND TRAINING
Johnson County Community College Associate of Arts Program (Deaf Education), 1986
Liberty Bible Institute / Physical Education and Coaching (Teachers Certification), 1990
AD Banker Data Processing and Operations Certification, 1990
AD Banker Data Processing IBM MVS, TSO and JCL Certification, 1991
Park University Bachelor of Arts Program (Business and Technology), 2004
New Horizons Computer Learning Center, MCSA, 2004
New Horizons Computer Learning Center, CompTIA – A+, Server+, Network+ and Security+, 2004
Bank of America University Leadership & Management, 2006
Bank of America University Six Sigma Training, 2006
Red Hat Training, CentOS Training, 2014 - 2015
Certification COBIT 2019, 2023
Certification ISC2 Secured AI / ISC2 Associate, 2023
Secured AI and ML Training / Udemy 2023
Certification Zero Trust Forrester, 2022
Cloud Security Alliance (CCZT), 2024
Certification Project Management (PMP, CSM, CSPO), 2024
CISSP and CCISO Training and certification (In Progress), 2025
SECURITY CLEARANCES
Public Trust (Active December 2013)
Department of Energy Top Secret Q (2000-2006)
HONORS AND AWARDS
Seven Customer Value Partner (CVP) Be Better Awards – 2019 - 2022
United States Department of Agriculture Certificate of Appreciation – 2018
Kingfisher Systems / ASOC (USDA) Associate Excellence Award – 2017
Kingfisher Systems / ASOC (USDA) Associate Excellence Award – 2015
Prime Factors Inc. Field Engineer and Customer Support Award - 2012
Three Bank of America Spirit Medallions – 2007 and 2008
Bank of America Award of Excellence – 2008
Two Bank of America Platinum Awards – 2011, 2012
Two Bank of America Gold Awards – 2011, 2012
Contact this candidate