Functional Skills
AI Risk Management
Audit Readiness
Business Continuity
Digital Transformation
Disaster Recovery
Incident Response
Project Management
Regulatory Compliance
Risk Management
Vendor Management
AI Ethics & Responsible AI
AI Strategy
AI Policy & Compliance
Cybersecurity
M&A Support
Software Skills
Storage Area Network (SAN)
ServiceNow
Jira
AWS
Confluence
Canva
G Suite
Google Docs
MacOS
Microsoft Excel
Microsoft Office
Microsoft PowerPoint
Microsoft Word
Rippling
Salesforce
Certifications
CRISCCertified in Risk and Information Systems Control
CISSPCertified Information Systems Security Professional
Sector Experience
Aerospace & Defense
Healthcare
Technology
Fortune 500
Experience
Brightside Health, Inc.
Start-Up
Vice President, Information Security
4/2022 - Present
• Led enterprise cybersecurity & IT operations for national telehealth provider; secured 300+ endpoints and ensured HIPAA compliance.
• Developed strategy aligned with HITRUST, HIPAA, SOC 2; cut security incidents by 50% YoY.
• Achieved HITRUST certification 50% faster than benchmarks; led first SOC 2 Type II audit.
• Reduced audit prep time by 40%; improved third-party trust and sales cycles.
• Built scalable risk management framework; reduced high-risk findings by 60%.
• Managed 30+ vendor risks; implemented risk scoring and SLAs.
• Delivered >95% HIPAA and cybersecurity training compliance within 30 days of hire.
• Led 20+ team members across security, IT, and engineering; reduced vendor spend by 20%.
• Presented quarterly cybersecurity dashboards to the Board influencing budget decisions.
• Developed strategy aligned with HITRUST, HIPAA, SOC 2; cut security incidents by 50% YoY.
• Achieved HITRUST certification 50% faster than benchmarks; led first SOC 2 Type II audit.
• Reduced audit prep time by 40%; improved third-party trust and sales cycles.
• Built scalable risk management framework; reduced high-risk findings by 60%.
• Managed 30+ vendor risks; implemented risk scoring and SLAs.
• Delivered >95% HIPAA and cybersecurity training compliance within 30 days of hire.
• Led 20+ team members across security, IT, and engineering; reduced vendor spend by 20%.
• Presented quarterly cybersecurity dashboards to the Board influencing budget decisions.
ServiceNow
Information Technology
Manager, Security Risk Management
5/2018 - 4/2022
• Led GRC strategy; aligned programs with SOC 2 & ISO 27001 readiness.
• Championed operational excellence; improved compliance KPIs by 25%.
• Deployed ServiceNow GRC workflows; boosted governance efficiency by 40%.
• Reduced audit workload by 50%; automated risk tracking and escalation.
• Enabled $12M ACV contract by aligning customer GRC documentation.
• Improved SLA compliance by 22% and stakeholder satisfaction by 15%.
• Championed operational excellence; improved compliance KPIs by 25%.
• Deployed ServiceNow GRC workflows; boosted governance efficiency by 40%.
• Reduced audit workload by 50%; automated risk tracking and escalation.
• Enabled $12M ACV contract by aligning customer GRC documentation.
• Improved SLA compliance by 22% and stakeholder satisfaction by 15%.
Agilent Technologies
Information Technology
IT Risk Management Lead
7/2014 - 5/2018
• Established KRIs & KPIs; enhanced audit readiness with ISO 27001, NIST frameworks.
• Reduced unresolved vendor risks by 30% using RSA Archer, BitSight.
• Reduced reporting cycles from 10 to 3 days through automation.
• Improved vendor onboarding by 35% and compliance by 40%.
• Reduced unresolved vendor risks by 30% using RSA Archer, BitSight.
• Reduced reporting cycles from 10 to 3 days through automation.
• Improved vendor onboarding by 35% and compliance by 40%.
City of Colorado Springs
Information Technology
Chief Information Security Officer
11/2013 - 7/2014
• Founded municipal cybersecurity program; cut incidents by 50% in 6 months.
• Implemented NIST-aligned training, DR/BC plans, and city-wide security strategy.
• Led public awareness campaigns and threat intel sharing across agencies.
Earlier Roles Include:
• Implemented NIST-aligned training, DR/BC plans, and city-wide security strategy.
• Led public awareness campaigns and threat intel sharing across agencies.
Earlier Roles Include:
RT Logic, Inc.
Corporate Strategy & Development
Lead InfoSec & Cybersecurity Engineer
1/2011 - 1/2013
See resume
Lockheed Martin
Other
Security Administrator
1/2006 - 1/2010
See resume
U.S. Air Force
Information Technology
Information Assurance Manager
1/2000 - 1/2006
See resume