Project Manager Scrum Master
Resume:
Unit A
Los Angeles, California 90066
Cell: 773-***-****
***********@*****.***
https://www.linkedin.com/in/thomas-r-hamilton-54a5a22/
Thomas R. Hamilton
GOAL
A certified Project Manager/Scrum Master, noted for delivering projects and sprints on time, on budget and with the business definition of “done”, seeks a remote opportunity that leverages my skills and expertise garnered from a variety of project types including cybersecurity, remediation, mobile, web and back-end services development. Affiliated with top-tier organizations such as the Walt Disney Company, Las Vegas Sands Corporation, United Airlines, and Palo Alto Networks.
OVERVIEW
• 25+ years of delivering complex, cross-functional, enterprise-level projects and initiatives in the role designated as Project Manager/Scrum Master or SAFE Agilist.
• Experienced in regulatory/matter remediation for Banking, Airline and Information Security.
• Developed and managed an annual portfolio OpEx and CapEx spend ~ $17.5MM
• Directly guided and directed individual contributors and teams as large as 40 people, with locations onshore and offshore.
• Proficient in waterfall, agile and hybrid SDLC frameworks for SaaS, on-prem and mobile devices.
• Transformed organizations by coaching teams on Agile methodologies and developing and delivering training on concepts such as scrum ceremonies and product backlog grooming.
• Experienced with mergers and acquisition projects including those focused on post-merger application harmonization and data uniformity.
• Deep familiarity in cybersecurity theories and the hands-on management of cybersecurity projects focused on resiliency, data privacy, intrusion monitoring and vulnerability management.
• Thrive within collaborative cultures where face-to-face interactions are a matter of principle.
• A self-development ethos and a desire to master Ai and other new technologies, makes me a strong candidate for enabling an innovative continuous delivery pipeline.
• Based in the Pacific time zone; but working a schedule in other time zones is not an issue.
• Excited to bring fresh perspectives and a strong Midwestern work ethic to my next opportunity.
Sampling of Projects Implemented:
Walt Disney Corp. Vulnerability Management; Findings Analysis, Investigation and Remediation, and Resilience
Huntington Bank IAM Remediation of MRA (matter requiring attention)
Las Vegas Sands Cyber Security – Implement SaaS solutions inc.: Aqua Cloud, Cycode, Contrast, OneTrust and IriusRisk, BAS
United’s Employee Intranet Portal Upgrade Including Mobile Device Strategy
United Airlines Red Carpet Club Management Platform Upgrade
Enable Sabre/United Economy Seat Plus® Purchase
United Airlines Drug/Alcohol Testing Remediation/Upgrade with Mobile Device Testing Opportunities functionalities
Disney Vacation Club Member Site Refresh and Ticket Media Integration
“Run Disney” Merchandise Store w/ Optimized Mobile
NORC @ University of Chicago Upgrade of Call Center/Telephony Mgmt.
Destination Disney Sales and Booking Client
Destination Disney Accounting Engine
Verticals/Industries Worked: Commercial Airline/Travel, Media & Entertainment, Digital Communications, eCommerce, Hospitality, Hotel, Theme Park, Gaming/Casino and Banking
RELEVANT EXPERIENCE
Walt Disney Company
Corporate Information Security Office
08/24 – 02/25
Project Manager
Engage with Disney’s Corporate business units to ensure that Information Security Policies and Standards are followed by conducting analysis against control violations and issues and working with product owners, project teams and leadership to implement corrective actions. Also worked on several initiatives to deploy monitoring and risk mitigation software onto network devices.
• Assess, diagnose, communicate, and ensure the remediation of “vulnerabilities” that are discovered within application code, BYOD and company issued devices, servers, laptops, and hand-held cellular technologies and across the Disney Global Network (DGN).
• Worked collaboratively with application owners to audit and validate each Tier 1 application’s user population was confirmed in SailPoint and that the “leaver” / “joiner” process was working as designed for SSO/IAM-EntraID.
• Review reporting and guidance pertaining to Common Vulnerability and Exposure and analyze impact on the organization and implement remediation planning if necessary.
• Manage progress and vulnerability drawdown length using the Archer and Jira applications and Smartsheet. Proficient with advanced use of Jira and Archer functions and reporting.
• Ensure that malware and enterprise monitoring software is deployed and continually reporting back to the SIEM and other monitoring and tracking tools.
• Composed situation analysis and position papers to capture the severity of Disney security protocols not being followed relative to published standards. Documents authored included deep analysis on password rotation compliance and third-party attestations.
Huntington National Bank (HNB)
Sailpoint IIQ/SSO Deprovisioning Project
(Contracting via HTC Global Services, Inc.)
07/23 – 04/24
Program Manager
With more than 1,000 branches in 11 states, Huntington National Bank provides consumers, small and middle-market businesses, corporations, municipalities, and other organizations with a comprehensive suite of banking, payments, wealth management, and risk management products and services.
• Organized a team of 20+ onshore analysts, developers, and quality assurance team members to render IAM based security services to HNB that remediated an MRA (matter requiring attention) pertaining to the deprovisioning of access from applications.
The services provided increased the controls for a lifecycle management process as well as included the onboarding of approximately 227 applications from IAM systems to access automation and Single Sign-on (SSO) capabilities.
• Worked collaboratively with HNB application owners to validate each application which included a comprehensive understanding of the current authentication method to SailPoint IIQ and SSO; and then the team established a remediation state for each application to satisfy the MRA.
• A sprint/release schedule was developed which addressed the remediation of the applications over 7 months with approximately two sprints realized per month.
• ADO boards were utilized to track each application’s status in the sprint by conceptualizing each application as a “card” placed on the board. Each team member was able to know if an application was in development, testing or deployment by the placement of the card on the board and copious notes placed in the card’s comments section.
• A hour daily stand-up meeting occurred every business day at 10:00 a.m. All developers, testers and deployment team members were present on the call and blockers were discussed and resolved on the spot or else subsequent meetings were scheduled.
• Produced detailed status reporting and burndown charts for stakeholders including a weekly project status report which was distributed every Friday afternoon and a monthly Executive Steering Committee deck which tracked executive level progress and issues.
Las Vegas Sands Corporation
(Contracting via Taurean Consulting)
07/23 – 03/24
Cybersecurity Project Manager
Las Vegas Sands Corp. is an American casino and resort company with corporate headquarters in Las Vegas, Nevada, United States and is the world leader in developing and operating international, world-class integrated resorts.
• Partnered with organizational resources from cybersecurity and IT engineering, Application Security Posture Management, CSOC and risk mitigation to implement SaaS cloud-based cybersecurity software designed to secure online Digital Gaming product offerings which is a new line of business for Sands Corp.
• Managed the installation and adoption of numerous monitoring products and tools through the lifecycle of the Program to support Threat Modeling (IriusRisk), IAST (Contrast), Secure Configuration Management (Cycode), ASPM (ArmorCode), DAST (Snyk) and a home grown fuzzing application.
• Implemented a firewall monitoring cloud solution to yield increased governance and oversight at Corporate locations. Migrated this from previous on-prem to cloud solution and implemented additional monitoring features.
• Responsible for compiling weekly Executive-level reporting deck to convey the status of my projects within the Digital Gaming Program.
• Develop burn-down charts to illustrate progress against goals and objectives.
Walt Disney Company
Corporate Information Security Office
(contracting via HTC Global Services, Inc.)
07/21 – 06/23
Project Manager
Engage with Disney’s Corporate business units to ensure that Information Security Policies and Standards are adhered to by conducting analysis against control violations and issues and working with product owners, project teams and leadership to implement corrective actions. Also delivered several projects and initiatives to deploy monitoring and risk mitigation software into the cloud, onto the network and to devices including portable cellular tools.
• Assess, diagnose, communicate, and ensure the remediation of “vulnerabilities” that are discovered within application code, BYOD and company issued devices, servers, laptops, appliance, and hand-held cellular technologies and across the network itself.
• Manage projects and vulnerability findings using Jira application. Proficient with advanced Jira functions and reporting.
• Supported migration from Jira to Archer as the new system of record for findings management. Generated intuitive findings dashboard and reporting tools for business pillars to easily locate their issues requiring resolution.
• Ensure that malware and enterprise monitoring software is deployed and reporting back to the SIEM and other monitoring and tracking tools.
• Responsible for compiling a weekly Executive-level reporting deck for leadership conveying the status of all cyber projects and remediation initiatives across a team of 15 resources.
Palo Alto Networks
(contract assignment)
Robotic Process Automation Center of Excellence
Project Manager
09/20 – 07/21
Palo Alto Networks includes advanced firewalls and cloud-based offerings that extend firewalls to cover other aspects of security. They have recently realized the benefits of increased productivity and cost savings associated with a robust Robotic Process Automation (RPA) program.
• Developed standardized project reporting and facilitated individual weekly status meetings across all business domains (HR, Legal, Purchasing, Finance, etc.) to discuss automations that were under development and the ongoing status of those automations that recently deployed.
• Facilitated quarterly intake meetings with business peers to prioritize the next RPA processes to automate for the subsequent quarter.
• Reviewed RPA development methodologies to implement improvements and increase value. Was able to effectively implement increases in quality and decreases with development time.
• Implemented UiPath Automation Anywhere tool which provides domain experts with a custom view of their implemented, pending, and future automations and cost savings/analytical data.
United Airlines, Chicago, IL
Multiple Roles
10/05 – 04/20
While performing Senior Project Manager duties within United Airlines:
• Working with older and new technologies including SaaS solutions, .NET, WebLogic and OpenShift and Identity Management platforms.
• Demonstrated a comprehensive understanding of project management fundamentals including budgeting, forecasting, status reporting, scope definition, requirements gathering, workflow/process mapping, code reviews, and automation testing.
• Adept at deployment readiness tasks including documenting a comprehensive release and support plan and partnering with sponsors for change management and training planning.
• Effective with dynamic reporting relationships including direct, dual, individual contributor, contract hires, and 3rd party.
• Resolute in holding strategic partners/vendors accountable for executing against priorities.
• Implemented custom and off-the-shelf applications into organization managed data centers.
• Well-practiced integrating SaaS, cloud, and subscription solutions with internally managed applications including SSO and integrations with required data sets.
• Orchestrated hardware installations (e.g., upgrade of timeclocks) across multiple locations.
• Migrated data from legacy applications to replacement systems including data warehouses.
• Skillful at multi-tasking, prioritizing and efficient time management.
• Facilitated “wall walks” and large planning sessions to prioritize, evaluate effort and problem-solve.
While performing Certified Scrum Master duties within United Airlines:
• Evangelized a culture guided by Lean-agile leadership principles.
• Acted as Product Owner and Technical Lead for enhancements and maintenance to the Drug and Alcohol reporting system. Prioritized and groomed backlog and estimated enhancements.
Supported the Product Owner and Development Team by organizing and facilitating ceremonies including the Daily Stand-up and Sprint Planning, Review and Retrospective sessions.
• Resolved impediments and roadblocks that hindered Development progress.
• Experienced with scaled agile frameworks, Release Trains, and Scrum of Scrum meetings.
• Utilized Kanban to track the progression of tasks through the stages of work through “done” status.
• Compiled financial budgets, staffing and progress reporting for stakeholders.
• Possess a thorough understanding of product planning and DevOps in an empirical environment.
• Cultivated team trust, support, and organizational excellence by serving as a coach and mentor.
While performing PMO Portfolio Delivery Manager duties within United Airlines:
• Enabled business agility for the Enterprise and Employee Systems (EES) portfolio by securing and managing an annual capital/operating budget of $19M.
• Garnered trust and domain knowledge within the Human Resources, Payroll, Finance, Revenue Accounting, Corporate Communications and Legal business functions.
• Responsible for the initiation of all projects within this portfolio including building the annual operating plan into the enterprise tracking tool, estimating scope and budget for each project, and identifying staffing resource needs to get the projects to Design phase.
• Exercised portfolio governance and oversight to actualize a delivery stream of ~60 medium to large-scale projects and initiatives annually.
• Counseled project teams on United’s SDLC and served as an escalation point to assist in removing impediments and navigating organizational knowledge and resources.
• Balanced the supply and demand of 190 Digital Technology FTE and contract resources across the EES portfolio.
• Prepared portfolio budget reporting for executive leadership including variance justification, forecasting, headcount tracking and other health metrics.
• Adroit at contract negotiation, Statement of Work (SOW) review, Solution Integrator selection, RFI and RFP generation, recruiting and resource onboarding.
While performing Architecture Services Senior Analyst duties at United Airlines:
• Internal consultant to project team resources shepherding them through United’s Architectural Review governance process.
• Continuously monitored Tier-1 project roster to assess the impact of unplanned events and change requests on enterprise/cross-functional dependencies and integrations.
• Developed the content and facilitated “brown bag” learning sessions addressing architecture standards, network security, PCI/PII data security and other relevant topics.
While performing Special Projects & Initiatives within United Airlines:
• Refreshed United’s Integrated Delivery Framework (internal SDLC) including development of comprehensive documentation, templates, job aids and training roll-out.
• Improved infrastructure resiliency by updating Disaster Recovery plan for the HR and Corporate Systems portfolio including those systems impacted by Ransomware or force of nature event.
• Key team member for United’s Robotic Process Automation (RPA) initiative which entailed:
Assessment, selection, and onboarding of a strategic Delivery Partner.
Defining RPA architecture standards and security policies.
Selection of the RPA platform including supplier negotiation.
Developed the intake procedures for valuing and approving new automation requests.
Jointly developed the framework to enable a continuous development pipeline of RPA automations including Analysis, Development, QA, Deployment, and Maintenance.
Tracked the total cost of creating automations and reported and measured against ROI.
Worked on internal branding of RPA initiative and helped organize RPA “hackathon” events.
Walt Disney Parks and Resorts Online, Celebration, FL
10/04 – 10/05
Technical Producer / Project Manager
Walt Disney Parks and Resorts Online (WDPRO) is responsible for the development and execution of web strategy for all Disney theme parks, resorts, and affiliated businesses.
• Acted as Product Owner and Technical Lead for enhancements and maintenance requests for Disney branded websites as directed by the line of business sponsor. Prioritized backlog and estimated enhancements.
• Guided and directed resources from multiple disciplines including information architecture, content strategy, copywriting, graphic design, media specialists, search engine optimization, technical developers, and quality assurance.
• Co-devised the creative direction and technical approach for overhaul of the Disney Vacation Club (DVC) Member and Prospect websites including optimization of the mobile experience.
• Refreshed imagery on every page of the DVC Member site to align with a new branding strategy.
• Created a new “Member Perks” section that conveyed discounts and incentives exclusive to members across 30 content pages and included photo elements, pricing and terms and conditions.
• Designed and launched a comprehensive intranet knowledge sharing website utilized by Call Center “cast members” who were booking vacations for a new Disney line of business called “Adventures by Disney”.
• Launched a seasonal on-line e-commerce store that enabled registered participants to purchase exclusive Disney Marathon merchandise and pay for these with a credit card. The site processed secure credit card transactions, allowed for personalization of certain items, and arranged for fulfillment/shipping.
• Drove the preparation of wireframes, storyboards and concept art and then had to present these artifacts to a governance panel designed to ensure the probity of Disney character usage.
SoftBrands Hospitality Solutions, Kennesaw, GA
05/02 – 10/03
Senior Business Analyst – “Destination Disney at Home”
“Destination Disney” was a $400 million-dollar Program designed to increase revenue at Disney theme parks and resorts by fostering an ongoing, cohesive relationship with their guests.
• Facilitated iterative user-interface design sessions to assist Disney business resources and product managers in conceptualizing and approving the application’s desired functionality.
• Gathered and documented functional requirements so that Architects and Developers could conceive the technical design for the various solution modules (e.g., back of the house included Guest Services, Front Office, and Accounting while guest facing modules included Resort Selection/Offer, Room Type/View, Partner Air arrangements, Partner Rental Car arrangements and 3rd Party Trip Insurance).
• Mapped data elements between the application prototype and the logical and physical data models to ensure that all desired data elements were accounted for in system design.
• Assisted with the creation of Middleware/XML messaging schemas to ensure that SoftBrands applications could integrate properly with Disney legacy systems and new 3rd party systems.
• Authored and executed test scripts to validate application features and performance and to identify bugs and quality defects.
• Implemented a change request procedure to assist the business sponsors and developers in prioritizing and costing of code modifications prior to deployment to the user community.
SDLC/TOOLS/Technical Expertise
SDLC Proficiencies: Waterfall, Agile, SAFe 5.0, Kanban and hybrid methodologies
Tools: Jira for Project Management & Vulnerability Management tracking, Asher, Azure DevOps, ServiceNow, Confluence, Smartsheet, MS Project Server, Asana, Wirke, MS Office Suite, MS Teams, AWS/Azure, UiPath Automation Hub, Orchestrator and Studio, SIEM/Splunk and Sentinel
Technical Subject Matter Expertise: PCI compliance, CVE Detection/Root Cause Remediation, Attack Surface Area Analysis, Third Party Assessments, Application Technical Review/Attestation, Password Rotation, User Audits, CVE Detection/Root Cause Remediation, Application Patching, Native Cloud Computing, SaaS Implementations and Integrations, Call Center Routing and Predictive Dialing, Robotic Process Automation (RPA), Infrastructure and Network resilience, Multi-factor Authentication, Mobile Device Development and Authentication, Data Loss Prevention, Zero Trust Security Principles, Identity Management (e.g. Leaver/Joiner, Forests, Domains), and general Network, Infrastructure and Device interplay and lateral threat detection
CERTIFICATIONS
• Certified SCRUM Master (CSM)
• Certified SAFe 5.0 Agilist (SA)
• Certified Scrum Product Owner (CSPO)
• (CPM) Certified Project Manager (IAPM)
• (PPM) Professional in Project Management
• Cybersecurity certifications on ISO 27001, Data Privacy, Data Governance
EDUCATION
• Bachelor of Science: Business, Purdue University, West Lafayette, IN
Contact this candidate