Experience
CISO and vCISO Experience
ePlus
Herndon, Virgina
HNI Corp
Muscatine, Iowa
Meritor
Troy, Michigan
Oakland County
Pontiac, Michigan
Federal Mogul Motorparts
Southfield, Michigan
Meridian Health Plan
Detroit, Michigan
Experience Summary
I have over 15 years of CISO experience. My enterprise CISO expertise lies within the scope and scale from enterprise organizations of $2B-$4B, 10,000 employees or greater, and protecting more than 10,000 endpoints across multiple data centers and cloud infrastructure. My expertise is building out new programs and maturing existing programs. Establishing cybersecurity teams from ad-hoc processes to a defined program based on the risk profile and risk appetite of the company.
Accomplishments
-
Drive and deliver cybersecurity maturity and capabilities against established multi-year roadmaps. Cybersecurity budgets of $4M - $12M managed within +- 10% on budget.
-
Maintained external security ratings with Securityscorecard and BitSight of a B or above.
-
Established security awareness programs that included cybersecurity awareness month, monthly phishing campaigns for immediate training, new hire welcome emails and quarterly top of mind cybersecurity training. Training completion rates were > 80% and improved phishing failure rates.
-
Proven communication skills as primary cybersecurity incident coordinator and cybersecurity incident communications to executive leadership and the board of directors.
-
Experience with managing NIST and CMMC compliance and assessments for Level 2 certification. Assessment scope included > 10 applications, 2-4 data centers, > 5 locations.
-
Risk management experience in third-party risk management and cybersecurity risk management. Established a top 5 cybersecurity risk focus process to manage and prioritize mitigation against the highest risk.
IT Audit and Security Experience
General Motors
IT Audit Manager responsible for infrastructure, technical, and security operations audits. Responsible for SOX QA for infrastructure. Reduced audit deficiencies by over 50%. I also served as a finance contract manager responsible for managing IT financial processes of IT budget and forecast.
IT Consulting
Local Regional Accounting Firms
My IT career started in IT consulting with local accounting firms by supporting small businesses with IT administration and implementing network capabilities, small business accounting applications, and server, backup and email capabilities.
Honor Awards
Education
Masters of Science in Business IT in Information Assurance
Walsh College
Troy, Michigan
Bachelor of Arts in Political Science
University of Michigan
Ann Arbor, Michigan
Professional Skillset
Cybersecurity Risk Management
Security Controls Implementation
Security Policy Development
Regulatory Compliance (CMMC, HIPAA, HITRUST, PCI DSS, GDPR, CCPA)
Security Operations/SIEM/SOC/FW/IPS
Board Communications, Metrics
Certificates
CISSP, Cert No 27128 (11/2001)
Carnagie Mellon University - CISO Executive Certification (2/2020)
FBI CISO Academy, Quanticao, VA (6/2016)