Security Operations Information
Resume:
PATRICK S. PHILPOT, CISSP
PROFESSIONAL PROFILE
CONTACT
Seasoned Professional with over 15 years of experience leading security initiatives, managing technology infrastructure, and overseeing complex security operations across diverse industries. Proven expertise in aligning technology with business objectives to drive growth, enhance operational efficiency, and ensure security and compliance. Adept at fostering collaboration and leading high-performing teams to drive continuous improvements. Possess a deep knowledge of the banking and financial services sectors, including a comprehensive understanding of their regulatory requirements and IT policies. Possess excellent problem-solving skills, strong organizational aptitude, and meticulous attention to detail. An adaptable individual who can multitask, prioritize, and excel in a fast-paced environment.
Oakland, TN
********@***.***
TECHNICAL SKILLS
PROFESSIONAL EXPERIENCE
Operating Systems and Servers: Windows Server (2019, 2016, 2012, 2008), Windows 11, 10, 7, Vista, Microsoft NT 4.0 (Server & Workstation), Windows 95/98 Microsoft Exchange (2000-2013), Office 365
Cloud and Virtualization: Microsoft Azure, Microsoft 365, VMware
Networking and Security: Active Directory, Cisco Routers/Switches, Fortinet, CheckPoint, SonicWall, Websense, Blue Coat, Carbon Black, Darktrace, Elastic, Splunk
Communication and Collaboration: VoIP Systems, O365, Captaris RightFax, Citrix, Microsoft ISA, Terminal Server, Novell GroupWise, Advanced Revelation, Novel (4.11, 5.0)
Security and Monitoring: DVR Camera Systems, Symantec Web Security, ServiceNow, Symantec Ghost, HP Print Servers
Others: Kali Linux, Metasploit, Microsoft SQL, Excel, Outlook, MSDOS
Compliance and Standards: NIST, FISMA, PCI DSS, GLBA, SOX, SOC
CYBERSECURITY ENGINEER
Amplify Cell Technology June 2024 - Present
Manage the information security team and work closely with IT, Operations, Legal, and other departments to ensure comprehensive security coverage.
Conduct regular vulnerability analyses to identify and address potential threats, as well as implement security technologies to enhance the company's digital security posture.
Monitor and respond to security incidents, perform root cause analysis, implement corrective actions, and conduct post-incident reviews to drive improvements.
Assess third-party vendor security practices, negotiate security requirements in contracts, and ensure compliance with security standards.
Oversee the protection of operational technologies (OT) and industrial control systems (ICS) used in battery manufacturing processes.
Establish and enforce security policies and standards that comply with industry regulations and best practices, including GDPR, HIPAA, CCPA, ISO 27001, and NIST).
CYBERSECURITY ARCHITECT
Dunlap and Kyle Co,Inc. Batesville, MS December 2022 – June 2024
Developed and implemented enterprise-wide security technology solutions that protected the organization from existing and emerging threats.
Conducted periodic assessments of current and proposed architectures, identified security gaps, and recommended changes to enhance overall security.
Served as the cybersecurity expert, advising IT teams on threats, security gaps, and policy improvements, as well as translating technical concepts to non-technical stakeholders.
Oversaw the resolution of audit findings and ensured corrective actions were taken to address vulnerabilities and security issues.
Achieved and maintained PCI-DSS compliance through regular audits, documentation, and implementation of necessary security measures.
MANAGER, IT SECURITY AND COMPLIANCE
Sedgwick CMS, Memphis, TN October 2021 – December 2022
Directed IT security operations, providing advanced, specialized tasks related to data security, focusing on healthcare data protection.
Defined, validated, and assisted in system and software architecture and design to ensure continuous security of assets.
Conducted and supervised IT forensic investigations, as well as followed up on audit findings to ensure corrective actions were taken.
Ensured data confidentiality, integrity, and availability across workstations, servers, and repositories and advised on encryption methods to secure data at rest and in transit.
Responded to inquiries from clients, carriers, and legal counsel on IT security matters.
CERTIFICATIONS
CISSP CySA+ ITIL Project+ Network+ A+ CIOS CIW WSA
EDUCATION
CHIEF TECHNOLOGY OFFICER / INFORMATION SECURITY OFFICER
The Bank of Fayette County, Piperton, TN November 2019 -- October 2021
Maintained the Bank Information Security Program, ensuring compliance with federal and state laws, regulations, and industry standards.
Oversaw security incidents and managed cybersecurity audits by regulatory agencies and third-party consultants, ensuring compliance and mitigating audit findings.
Implemented strategies for disaster recovery, business continuity, risk management, and access control to ensure operational resilience during disruptions.
Oversaw the Bank's Vendor Management Plan, including conducting due diligence, issuing RFPs, and managing the Vendor Contract Log to ensure compliance and performance.
CHIEF INFORMATION SECURITY OFFICER
Perspective, Inc., Bartlett, TN August 2017 – November 2019
Develop a comprehensive information security program that safeguarded organizational data, ensuring integrity, confidentiality, and availability while minimizing risk.
Maintained and ensured that information security policies and procedures for healthcare, financial clients, and the local corporation were up to date.
Managed security incidents and events by promptly investigating and mitigating cybersecurity threats to minimize their impact.
Conducted regular cybersecurity audits for clients, identifying vulnerabilities and recommending corrective actions to improve security posture.
Implemented backup retention policies, disaster recovery, and business continuity processes to ensure minimal disruption of the facility and clients' services.
CONSULTANT
Sawyers & Jacobs, LLC., Collierville, TN March 2015 – August 2017
Audited client networks' GLBA compliance, identified vulnerabilities, and recommended solutions that mitigated threats and secured their infrastructures.
Researched and implemented new technologies required to keep clients updated with emerging trends and evolving security practices.
Oversaw backup retention and disaster recovery policies, ensuring data integrity and security in case of system failure.
Regularly tested backup and disaster recovery systems to ensure operational continuity and security readiness.
Managed a VMWare server farm hosting over 65 virtual servers to support client operations.
SENIOR NETWORK ENGINEER/ INSTALLATIONS ENGINEER/SYSTEM ADMINISTRATOR/ SPECIAL PROJECTS
Share One, Inc. Memphis, TN November 2008 – March 2015
Audited client's network, recommended and implemented changes, and assisted in setting up and maintaining computer systems for core processing packages.
Maintained and managed the 2008 R2 Cluster server running SQL 2008, which hosted the financial data for 20 different credit unions.
Led special "Crisis Teams" to address emergency situations at client locations, resolving hardware and software issues in critical environments.
Performed security audits in line with ISO and PCI Compliance requirements, ensuring systems adhered to necessary regulations.
Implemented backup retention policies and disaster recovery plans, as well as maintaining the ShoreTel phone system for communication needs.
SENIOR NETWORK ENGINEER\ CORPORATE SECURITY OFFICER\IT MANAGER
Cook Systems International, Germantown, TN July 2008 – November 2008
Led the design, implementation, and upgrade of network systems to ensure alignment with ISO 27001 standards.
Managed and directed onsite contractors and interns, ensuring alignment with corporate objectives, timelines, and quality standards.
Monitored and responded to ISO security incidents, ensuring timely logging, resolution, and corrective actions were taken
Audited IT-related financials and bills, as well as keep up with all checked-out assets for the corporation.
BS Cybersecurity and Information Assurance Western Governors University, Franklin, TN
October 2019 – September 2021
Classes for A+, Windows MCSE
Athena, Memphis, TN
May 1999 – October 2001
Classes for Windows 95, Word, Access, Excel and Windows MCSE
New Horizons Computer Learning Center, Memphis, TN
February 1998 – August 2002
Classes in Electrical Engineering Technologies
State Technical Institute at Memphis, TN (Now Southwest Tenn. Community College) 1989 – 1992
ADDITIONAL EXPERIENCE
Technical Services Engineer
Ricoh Business Solutions, Cordova, TN
December 2007 – July 2008
Deputy Technology Coordinator/ IT Project Manager/ System Engineer Marshall County School System, Holly Springs, MS
January 2006 – December 2007
Special Projects Engineer/ Manager Perspective, Inc., Bartlett, TN
October 2000 – December 2005
Systems Engineer
Loonie Ricks Kiss Architects, Memphis, TN June 1999 – October 2000
Contact this candidate