Information Security Engineer
Resume:
Larry Huddleston
Senior Technology Leadership Professional
*****.**********@*******.*** https://www.linkedin.com/in/larry-huddleston-147080200/
Temple, Texas 772-***-****
Dynamic and self-motivated technology leader with demonstrated expertise in running large-scale projects. Exceptional ability to collaborate with stakeholders, engineers, and leadership to execute strategic initiatives and protect the integrity of IT infrastructure. Specializing in Mergers & Acquisitions process improvement and Security Framework alignments and Risk assessments.
Work Experience
Senior Security System Engineer Dec 2023 - Jan 2025
Acumera, Inc. Austin, TX
Led a team of five compliance analysts in driving PCI DSS compliance initiatives, leveraging expert technical experience and skills to boost risk management, optimize processes, and promote security excellence, enhancing organizational security and operational efficiency. Specializing in (Mergers & Acquisitions) process improvement and Security Framework alignments.
Strengthened the company's vulnerability management process by identifying and mitigating over 200,000 risks, aligning business objectives with security policies, and supporting executive decision-making with actionable insights.
Enhanced Security Framework compliance by collaborating with QSAs, creating scalable security systems and protocols, and coordinating cross-functional efforts to maintain organization-wide consistency.
Established audit and/or reporting standards for PCI-DSS and Identity Access Management (IAM) compliance activities
Support data flow mapping, and other privacy and security initiatives that address product-based privacy and cybersecurity measures.
IT Help Desk Manager Oct 2021 - Nov 2022
Rapid Radiology, Inc Lakeway, TX
Led a team of six remote helpdesk analysts in delivering exceptional technical support and customer service to diverse client groups. Responsible for all aspects of software and hardware performance.
Created helpdesk training that improved ticket management by 75%, meeting SLA requirements and enhancing overall departmental effectiveness.
Created risk mitigation plans using CVSS scoring to prioritize and address vulnerabilities while collaborating with the VP to develop DR/BC policies, Security Framework compliance and procedures.
Executed and developed policies and procedures for Identity Access Management (IAM).
Designed security dashboards and SOP documentation to improve end-user training, compliance, and departmental performance.
Developed and optimized employee and vendor onboarding and offboarding processes using Azure Administration to enhance efficiency.
Sr IT Specialist Jan 2019 - Dec 2020
U.S. Census Bureau Atlanta, GA
Managed technical and operational support for regional census and 42 field offices across seven states, enhancing efficiency and accuracy in timely census operations.
Leveraged NIST, FedRAMP, FIPS, IAM 800-175A -relevant frameworks to develop and implement DR/BC plans and policies.
Directed training programs and IT staff development, mentoring local teams to enhance technical expertise.
Managed employee onboarding processes, including system and network access setup, device distribution, and training on applications, security awareness, and compliance.
Oversaw employee offboarding, ensuring system access removal, device collection, and secure data backup and migration in compliance with data privacy regulations.
Administered inventory management and distribution of office and mobile equipment.
Utilized BMC Remedy to streamline incident management, asset configuration, and service request ticket routing.
Supervised hardware maintenance, IT emergency responses, and property asset support.
Resolved AV, Windows OS, and daily Zoom video conferencing issues to minimize downtime and improve user experience.
CJI Security Analyst Dec 2017 - Dec 2018
Georgia Bureau of Investigation GBI Decatur, GA
Improved cybersecurity and compliance through risk management, security framework development, and efficiency processes.
Recorded vulnerabilities for 140 Georgia counties, while promoting cooperation and collaboration with local law enforcement security officers.
Developed risk vulnerability metrics, using CVSS to identify, prioritize, and remediate vulnerabilities.
Collaborated with the CISO in conducting security framework risk assessments to ensure compliance with NIST, HIPAA, PII, FIPS and Identity Access Management (IAM) policies.
Developed DR/BC plans informed by detailed tabletop exercises
Supported project managers and security teams with vulnerability management, providing regular stakeholder updates.
Partnered with CISO to create security dashboards, policies, SOPs, and training materials for end users to enhance compliance and awareness.
International Hardware and Software Consultant Feb 2016 - Sep 2017
Jamaica's Ministry of Science, Energy, Telecommunications, and Transport Kingston, Jamaica
Leveraged emerging technologies to drive process improvement and strategic growth by enhancing system processes, ensuring compliance, managing disaster recovery planning, and overseeing technology upgrades and network installations to support organizational goals.
Developed a $250 million ROI feasibility study for IaaS implementation, including asset inventory evaluation.
Conducted research on industry data to enhance IT systems documentation, process improvement procedures, and ITSM design for compliant IT service delivery and support.
Developed DR/BC plans informed by detailed tabletop exercises, NIST 800-175A (IAM) policies.
Provided expertise on CRM systems and legacy hardware/software upgrades.
Applied unit testing expertise to ensure software stability and functionality across multiple projects and teams.
Led the strategic planning, design engineering, and installation of network computer systems.
Incident Manager, Network Operations Center (NOC) PCI-DSS Sep 2014 - May 2016
Fanatics Jacksonville, FL
Managed the NOC Operations team and six engineers on the 24/7 NOC Technical Recovery teams, utilizing strong communication skills to ensure clarity and efficiency in project execution.
Created over 130 SOPs to improve ticket resolution, manage incident bridge calls, and provide actionable metrics for executive decision-making.
Collaborated with the application security team and stakeholders to interpret and develop NIST security frameworks (800-79-2, FIPS-199, PCI-DSS, IAM, 800-175A, 800-53) and develop robust BC/DR and IR plans.
Developed and enforced security policies, procedures, and awareness initiatives to strengthen compliance for IAM/Password Management and the organization’s security posture.
Implemented AWS, SolarWinds, and Google Cloud to monitor application security, leveraging Remedy and ConnectWise ticketing systems for efficient issue resolution.
Manage the 3rd Party audits regarding SOC2 – Type II, PCI-DSS, IAM, HIPAA and other frameworks, as applicable.
Trained NOC engineers on incident management and led technical recovery efforts, ensuring swift and effective responses to critical issues.
Core Skills
Mergers & Acquisitions,Cybersecurity, Confluence, Jira, Network Security, Cloud Security, Policy Development, Information Technology, VMware,,, Strategy Planning, SRE, NIST, FedRAMP, CVSS, IaaS, FIPS, HIPAA, PII, Risk Management, Identity Access Management Compliance, Security Framework Development, Efficiency Processes, Risk Vulnerability Metrics, Process Improvement, Network Installation, ITSM Design, SOP Development, DR/BC Plans, Staff Development, Employee Onboarding and Offboarding, Training, Splunk, AWS, SolarWinds, BMC Remedy, PCI-DSS, Team Manager, Reporting, Security Architectures, Policy Development, Reports on Compliance, Attestations of Compliance, Executing Vulnerability Management Plans and Remediation Processes, Process Engineering, Analytic Problem Solving, M&A, Project Management, Compliance PCI, Technology Implementation, GCP, Design Engineering, Technical Support
Education
Florida Institute of Technology Present
Master of Science Information Technology Management Cyber Security
Park University Present
Bachelor of Science Criminal Justice
Certificates
Disciplined Agile Scrum Master (DASM)
Project Management Institute (PMI)
ITIL 4 Foundation General Management Practices Certification
AXELOS
DoD 8570 (Information Assurance Security) Certification
Department of Defense (DoD)
System Administrator/Security Manager Certification
Department of Defense (DoD)
Network + Certification
Computing Technology Industry Association (CompTIA)
ITIL Operations Support and Analysis (OSA) Certification
AXELOS
Naval Supply System Command Certification
Naval Supply Systems Command (NAVSUP)
Disaster Recovery Certification
McClelland Enterprise
ISC2 Candidate
ISC2 Cybersecurity
Contact this candidate