Experience

Octane®

• United States
• Software Development
• 200 - 300 Employee

• Director Technology Risk Management

  • Oct 2021 - Present

  New York City Metropolitan Area As the Director of Cyber Risk Management it is my responsibility to identify, characterize, evaluate and track all risks, threats and vulnerabilities within the Octane network, for both the customer facing and internal networks. As the Director of Cyber Risk Management it is my responsibility to identify, characterize, evaluate and track all risks, threats and vulnerabilities within the Octane network, for both the customer facing and internal networks. Implemented a Cyber… Show more As the Director of Cyber Risk Management it is my responsibility to identify, characterize, evaluate and track all risks, threats and vulnerabilities within the Octane network, for both the customer facing and internal networks. As the Director of Cyber Risk Management it is my responsibility to identify, characterize, evaluate and track all risks, threats and vulnerabilities within the Octane network, for both the customer facing and internal networks. Implemented a Cyber Security Risk Management program that includes: - Cyber Risk Management - Vendor Risk Management - Identity and Access Management - Vulnerability Management - Policy and Governance - Security Monitoring and Incident Response - Application Security - Instituted a Security and Compliance Governance committee - Lead engagements with outside and internal audit teams: SOX Compliance, SOC2 Type II, Third Party audits - Implemented a Sec SDLC process - Refreshed security policies and published them so that all employees have access - Implemented a GRC for company wide Risk Management - Cloud Security - Work with various teams on specific security risks that need to be addressed - Initiated a Security and Compliance Guild and introduced champions into the Engineering and Operations team - Regulatory compliance Show less



Lenovo

• China
• IT Services and IT Consulting
• 700 & Above Employee

• Software Product Manager - Cybersecurity

  • Aug 2019 - Sep 2020

  Raleigh-Durham, North Carolina Area Responsible for the strategic vision of the firm's Cybersecurity offerings for the Consumer and SMB markets. Understand the overall market and customer demands and go-to-market strategy. Work with the Business Development team to find the right partners to fill in the gaps and enhance our offerings. Work with PR and Marketing teams on branding and messaging. Work with Development and Device teams on implementation of software-based security functionality. Develop new Cybersecurity solutions… Show more Responsible for the strategic vision of the firm's Cybersecurity offerings for the Consumer and SMB markets. Understand the overall market and customer demands and go-to-market strategy. Work with the Business Development team to find the right partners to fill in the gaps and enhance our offerings. Work with PR and Marketing teams on branding and messaging. Work with Development and Device teams on implementation of software-based security functionality. Develop new Cybersecurity solutions that generate revenue. I was also responsible for the Cloud and Software efforts regarding privacy and regulatory compliance. Specifically the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR). I worked with the various product teams, the Privacy Office, General Consul, the Cloud engineering and the device teams. Show less



BNY Mellon

• United States
• Financial Services
• 700 & Above Employee

• VP Product Manager - Distributed Platform Security

  • Mar 2018 - Mar 2019

  Jersey City, NJ Managed the implementation and operations of the Privileged Account Management (PAM) and Kerberos (Authentication) platforms. Directed the migration from the old PAM platform to the new Greenfield strategic platform. Partnered with the engineering, program management, application owners and other business units to ensure client’s needs are met, and the overall strategic plan is implemented.



Huawei

• China
• Telecommunications
• 700 & Above Employee

• Product Security Director

  • Mar 2016 - Dec 2017

  Shenzhen, Guangdong, China Huawei Technologies is the largest technology company in Asia and the largest provider of telecom equipment worldwide. Product line includes traditional Network equipment, NGFW, Cloud, NFV, SDN, Big Data, as well as consumer products such as smartphones, laptops and tablets Director Product Security (Cybersecurity Expert) Ensured that all Huawei’s strategic products (Big Data, Private Cloud, 5G, IoT, SDN, NFV, and Telco OS) had security built into the product and were secure when… Show more Huawei Technologies is the largest technology company in Asia and the largest provider of telecom equipment worldwide. Product line includes traditional Network equipment, NGFW, Cloud, NFV, SDN, Big Data, as well as consumer products such as smartphones, laptops and tablets Director Product Security (Cybersecurity Expert) Ensured that all Huawei’s strategic products (Big Data, Private Cloud, 5G, IoT, SDN, NFV, and Telco OS) had security built into the product and were secure when delivered. Instituted a process to conduct a security focused Competitive Benchmark Analysis. Partnered with management on Strategic Planning. Key Accomplishments / Contributions ● Partnered with Product Teams on security requirements applied to Huawei products and services. ● Cooperated with various development teams to ensure security processes where built into the SDLC process (IPD). ● Advised customers on security issues and how to best secure their networks using Huawei products. ● Represented Huawei in industry forums, such as the GSMA – Fraud and Security Working Group and the Cloud Security Alliance. ● Aligned Huawei’s security program with Industry Best Practices. Show less



Verizon

• United States
• IT Services and IT Consulting
• 700 & Above Employee

• Director Network Security

  • Aug 2005 - Feb 2016

  Basking Ridge, NJ Partnered with other executives on the corporate and engineering levels to ensure the security of the commercial network. As a consultant and advisor to the business units, implemented programs and functions that protected customers’ data and employees’ information. Led a team of 30 dedicated security professionals responsible for managing the day-to-day security operations and long-term security strategy for the network infrastructure. Managed the security of all the devices, the air-link, and… Show more Partnered with other executives on the corporate and engineering levels to ensure the security of the commercial network. As a consultant and advisor to the business units, implemented programs and functions that protected customers’ data and employees’ information. Led a team of 30 dedicated security professionals responsible for managing the day-to-day security operations and long-term security strategy for the network infrastructure. Managed the security of all the devices, the air-link, and the entire infrastructure that makes a voice call or a data packet move through the network. Partnered with leadership across Verizon to continuously enhance and improve on a comprehensive security road map. Key Accomplishments / Contributions •Formed Security Risk Management, Vulnerability Management, Policy and Governance, Security Monitoring and Response, Identity and Access management, and the Advanced Security Analytics teams. •Reduced the number of vulnerabilities on the network from 3 million to 180,000 in under three years. •Chaired the committee that provided a Security Roadmap and overall security strategy for Verizon Wireless Network. •Testified before the CIFIUS committee for the Lucent - Alcatel merger. •Supported Audit, Fraud, Legal, Human Resources, and Regulatory Compliance departments in security related issues. •Designed and recommended secure network architectures for Verizon Wireless Network Department. Security Risk Management •Partnered with and advised business units on risks associated with new devices and Verizon Wireless branded applications prior to launch. •Instituted a Vendor Assurance program to gauge and ensure that all our vendors meet security baseline standards. Show less



TD

• Canada
• Banking
• 700 & Above Employee

• VP Information Security

  • 1999 - 2005

  Jersey City, NJ Directed global security initiatives of multi-billion dollars in assets and confidential information of 2.5 million customers. Developed and drove the strategic direction of the security infrastructure, including corporate policies, and compliance with regulatory and administrative laws. Accountable for Security Risk Assessment, Security Awareness, Systems Access, Data Forensics, Intrusion Detection, Policy and Governance. Key Accomplishments / Contributions •In collaboration with the… Show more Directed global security initiatives of multi-billion dollars in assets and confidential information of 2.5 million customers. Developed and drove the strategic direction of the security infrastructure, including corporate policies, and compliance with regulatory and administrative laws. Accountable for Security Risk Assessment, Security Awareness, Systems Access, Data Forensics, Intrusion Detection, Policy and Governance. Key Accomplishments / Contributions •In collaboration with the Architecture department, designed and implemented a secure architecture to protect all on-line and internal applications. •Consolidated user access administration of over 30 key systems into one function that complied with all corporate policies, audit and regulatory requirements. • Consolidated all corporate policies for TD Bank Financial Group, our parent company Instituted Data Classification program for TDBF. • Coordinated security for all international affiliates including Hong Kong, Japan, India, Singapore, Luxembourg, Scotland, and the United Kingdom. •Technical consultant for the openings of the Hong Kong and Luxembourg offices, primarily in the areas of security, networking, wireless solutions, and physical security •Served on the Fraud, Privacy, Patriot Act, Group Leadership - Security and Technology Risk sub-committees, and the Technology Standards, SOX Compliance committees. Show less



PwC

• Professional Services
• 700 & Above Employee

• Senior Consultant

  • 1997 - 1999

  Piscataway, NJ • Performed penetration test and security reviews for clients. Security reviews included network controls, firewall tests, server scans, phone sweeps, vulnerability assessments, remediation strategies and recommendations • Reviewed clients policies and procedures and recommended improvements • Supported clients during security incidents • Documented clients security posture



Dendrite

• Help Desk Manager Pfizer team

  • 1992 - 1997

  To be updated shortly



United States Marine Corps

• United States
• Armed Forces
• 700 & Above Employee

• Corporal

  • Aug 1984 - Jul 1988

  Jacksonville, North Carolina, United States