Functional Skills
Market Research
Budgeting
Cybersecurity
Database Administration
Incident Response
Risk Management
Leadership Development
Incentive Management
Innovation Management
Sales and Operations Planning (S&OP)
Marketing Analytics
E-commerce Implementation
Operations Management
Requirement Analysis
Compliance and risk
Software Skills
AWS
ServiceNow
Endpoint Security
Sector Experience
Aerospace & Defense
Energy
Financial Services
Technology
Telecom
Fortune 500
Experience
Magna Reign
Information Technology
Founder (Remote
10/2022 - Present
• Develop comprehensive security strategies tailored to the unique needs and growth stages of pre-IPO companies.
• Create and execute comprehensive security roadmaps, including threat assessments, security policies, and incident response plans
• Collaborate with client stakeholders to ensure compliance with industry standards (e.g., NIST, ISO 27001) and regulations (e.g., GDPR, HIPAA)
• Conduct security assessments and audits, identifying vulnerabilities and recommending remediation measures
• Spearhead incident response efforts, coordinating with clients to minimize the impact of security incidents and improve resilience
• Lead cross-functional teams to ensure compliance with regulatory requirements and industry standards.
• Lead and mentor client security teams, fostering skill development and raising cybersecurity awareness.
• Create and execute comprehensive security roadmaps, including threat assessments, security policies, and incident response plans
• Collaborate with client stakeholders to ensure compliance with industry standards (e.g., NIST, ISO 27001) and regulations (e.g., GDPR, HIPAA)
• Conduct security assessments and audits, identifying vulnerabilities and recommending remediation measures
• Spearhead incident response efforts, coordinating with clients to minimize the impact of security incidents and improve resilience
• Lead cross-functional teams to ensure compliance with regulatory requirements and industry standards.
• Lead and mentor client security teams, fostering skill development and raising cybersecurity awareness.
DUN & BRADSTREET
Engineering
Vice President, Cybersecurit y Operations & Engineering
5/2023 - 4/2024
• Set a vision and roadmap for the development of Cybersecurity Operations & Engineering technical capabilities
• Oversight and continuous maturity of threat intelligence, detection and response, detection engineering, system & network security, endpoint security, identity and access management, cloud security operations, and vulnerability management capabilities.
• Ensure cohesive connectivity across key stakeholders for cyber incident response and incident management plans and procedure
• Proactively champion new opportunities for automation, innovation, and technical excellence, bringing thought leadership and deep technical expertise to drive execution
• Oversee the development and implementation of a comprehensive security tooling strategy, including tool consolidation and rationalization, and the measurement and management of tooling effectiveness
• Oversee infrastructure vulnerability management capabilities and provide asset owners with risk-based remediation plans to redu
• Oversight and continuous maturity of threat intelligence, detection and response, detection engineering, system & network security, endpoint security, identity and access management, cloud security operations, and vulnerability management capabilities.
• Ensure cohesive connectivity across key stakeholders for cyber incident response and incident management plans and procedure
• Proactively champion new opportunities for automation, innovation, and technical excellence, bringing thought leadership and deep technical expertise to drive execution
• Oversee the development and implementation of a comprehensive security tooling strategy, including tool consolidation and rationalization, and the measurement and management of tooling effectiveness
• Oversee infrastructure vulnerability management capabilities and provide asset owners with risk-based remediation plans to redu
BETTERUP
Start-Up
Director, Information
5/2022 - 8/2022
• Highest ranking member of the Information Security team reporting directly to the CTO. Responsible for Detection & Response, Product Security, Threat & Vulnerability Management, Security Awareness, Security Architecture, Governance Risk and Compliance, Third Party Risk Management (TPRM) and FedRamp.
• Provide strategic guidance, oversight and leadership to the information security program. This includes defining and executing the information security roadmap, hiring, financial planning and reporting.
• Perform yearly SOC2 and ISO27002 audits ensuring BetterUp is in compliance with federal, regulatory and international requirements.
• Responsible for sales escalations assisting BetterUp close multimillion dollar deals. This includes working directly with sales and meeting with customers to clarify any security related concerns
• Rolled out the customer trust portal creating customer transparency, a centralized platform to access policies, reduction in man hours responding to quest
• Provide strategic guidance, oversight and leadership to the information security program. This includes defining and executing the information security roadmap, hiring, financial planning and reporting.
• Perform yearly SOC2 and ISO27002 audits ensuring BetterUp is in compliance with federal, regulatory and international requirements.
• Responsible for sales escalations assisting BetterUp close multimillion dollar deals. This includes working directly with sales and meeting with customers to clarify any security related concerns
• Rolled out the customer trust portal creating customer transparency, a centralized platform to access policies, reduction in man hours responding to quest
Zoom
Engineering
Head of Detection and Response
6/2020 - 8/2022
• Rapidly scaled the Detection and Response team by 30x to align with Zoom's 30x customer growth. This includes building a 24x7 SOC, Security Monitoring and Logging (SML), Threat Intelligence, Threat Hunting, Detection, Forensics and Incident Response teams globally aligned to the follow the sun model.
• Responsible for ingesting and monitoring Zoom's log sources ensuring they are in compliance with legal and regulatory frameworks including but not limited to SOC 2 + HITRUST, GDPR, FTC requirements and FedRamp IL4. This includes participating in audits and chairing a technical compliance committee responsible for overseeing compliance efforts across commercial and FedRamp environments.
• Direct visibility to the CEO reporting high priority incidents in real time. Participant in multi-week executive war room where high priority items are discussed, prioritized and actioned.
• Responsible for deploying a suite of tools in order to proactively detect and monitor Zoom's cloud, on prem a
• Responsible for ingesting and monitoring Zoom's log sources ensuring they are in compliance with legal and regulatory frameworks including but not limited to SOC 2 + HITRUST, GDPR, FTC requirements and FedRamp IL4. This includes participating in audits and chairing a technical compliance committee responsible for overseeing compliance efforts across commercial and FedRamp environments.
• Direct visibility to the CEO reporting high priority incidents in real time. Participant in multi-week executive war room where high priority items are discussed, prioritized and actioned.
• Responsible for deploying a suite of tools in order to proactively detect and monitor Zoom's cloud, on prem a
United Airlines
Engineering
Director – Threat Detection and Monitoring
5/2019 - 6/2020
• Lead the Threat Detection, Monitoring and Response teams responsible for corporate security for over 90,000 employees. This includes United's Cyber Threat Intelligence, Monitoring, Insider Threat, Threat Hunting, CSIRT and Incident Response teams.
• Led the creation of a variety of tactical and strategic products within the threat intelligence team to better identify vulnerabilities and threat actors targeting United. Products better informed leadership of the threat landscape and drove remediation efforts within United's environment.
• Lead threat hunting initiatives to proactively identify threats that evade existing security controls. Created product to inform incident response of malicious activity in order to mitigate the threat.
• Led an initiative for more collaboration across the Threat Detection, Monitoring and Response teams including a daily standup call, a monthly cyber range, quarterly tabletop exercises and shared reporting platforms across teams. This led to more me
• Led the creation of a variety of tactical and strategic products within the threat intelligence team to better identify vulnerabilities and threat actors targeting United. Products better informed leadership of the threat landscape and drove remediation efforts within United's environment.
• Lead threat hunting initiatives to proactively identify threats that evade existing security controls. Created product to inform incident response of malicious activity in order to mitigate the threat.
• Led an initiative for more collaboration across the Threat Detection, Monitoring and Response teams including a daily standup call, a monthly cyber range, quarterly tabletop exercises and shared reporting platforms across teams. This led to more me
Motorola Solutions
Engineering
Head of Threat Intelligence (Prof. Information Protection, Sr
2/2018 - 5/2019
• First hire of the Threat Intelligence team tasked with defining and leading the execution of the program including the creation of the following: Threat Intelligence Vision, procedures for responding to vulnerabilities, Cyber Collection Plan (including PIRs and SIRs), tactical/strategic intelligence reports, tabletop exercises, identification of threat intelligence vendor and RFI service que.
• Created a threat management process to respond in an adequate and timely fashion to vulnerabilities reported from industry that impact MSI's product and services portfolio. This includes distributing patch guidance to product owners and executives with the affected product, impact, risk score, remediation and patching timeline.
• Created a product to track threat actors targeting MSI's products and services. Product lead to better coordination across legal and brand strategy giving MSI a much better understanding of the actors tactics, techniques and procedures (TTPs) as well as the ability
• Created a threat management process to respond in an adequate and timely fashion to vulnerabilities reported from industry that impact MSI's product and services portfolio. This includes distributing patch guidance to product owners and executives with the affected product, impact, risk score, remediation and patching timeline.
• Created a product to track threat actors targeting MSI's products and services. Product lead to better coordination across legal and brand strategy giving MSI a much better understanding of the actors tactics, techniques and procedures (TTPs) as well as the ability
Motorola Solutions
Engineering
Prof. Information Protection
10/2016 - 2/2018
• Built cyber threat intelligence (CTI) platform utilizing Amazon Web Services (AWS) and Malware Information Sharing Platform (MISP). CTI platform provided MSI with the ability to share threat intelligence with partners in real time, push updates to endpoints, continuously monitor Indicators of Compromise (IOCs) and correlate indicators with internal endpoint detection tools.
• Facilitated the gathering of security requirements/specifications for service accounts with privileged access for enrollment into CyberArk utilizing Auto Discovery. Developed a matrix to determine the most at risk accounts and a process for communicating with account owners to integrate their accounts with CyberArk.
• Developed metric based system to determine the value of an indicator prior to being ingested into MISP. Methodology significantly decreased noisy indicators allowing MSI to focus on high value indicators throughout the threat hunting process.
• Focused on insider threats relying on a variety of
• Facilitated the gathering of security requirements/specifications for service accounts with privileged access for enrollment into CyberArk utilizing Auto Discovery. Developed a matrix to determine the most at risk accounts and a process for communicating with account owners to integrate their accounts with CyberArk.
• Developed metric based system to determine the value of an indicator prior to being ingested into MISP. Methodology significantly decreased noisy indicators allowing MSI to focus on high value indicators throughout the threat hunting process.
• Focused on insider threats relying on a variety of
Federal Bureau of Investigation
Operations
Staff Operations Specialist
3/2010 - 10/2016
Cyber security