Experience

GRIMM Cyber

• United States
• Computer and Network Security
• 1 - 100 Employee

• Strategic and Operational Executive - Commercial Information Security Services

  • Feb 2022 - Sep 2022

  As a Senior VP, I directed all aspects of the business lifecycle including business development, project execution, staff career growth, and strategic planning specializing in Network and Application Security, including Distributed Ledger technologies, Cloud Penetration Testing, and Web Application Testing. Led the unification of two distinct business units, exceeded revenue goals every month. Managed resourcing to maintain an exceptional utilization rate for staff and an over 80%… Show more As a Senior VP, I directed all aspects of the business lifecycle including business development, project execution, staff career growth, and strategic planning specializing in Network and Application Security, including Distributed Ledger technologies, Cloud Penetration Testing, and Web Application Testing. Led the unification of two distinct business units, exceeded revenue goals every month. Managed resourcing to maintain an exceptional utilization rate for staff and an over 80% repeat client engagement rate. Part of the Senior Executive function, developed blended strategic planning and execution across GRIMM.

• Tactical Operations Leader - Information Security Consulting

  • Jul 2021 - Feb 2022

  As Director of Operations, I directly managed all areas of commercial operations across multiple lines of business including Client Relationship management, Resource Assignment, Supervision of all commercial Engagement Management, Project Status and Budgeting and tracking, Strategic Planning at an enterprise level. Spearheaded the creation and staffing of a centralized Project Management function and standardization of leads tracking tools, deliverable templating, and resource… Show more As Director of Operations, I directly managed all areas of commercial operations across multiple lines of business including Client Relationship management, Resource Assignment, Supervision of all commercial Engagement Management, Project Status and Budgeting and tracking, Strategic Planning at an enterprise level. Spearheaded the creation and staffing of a centralized Project Management function and standardization of leads tracking tools, deliverable templating, and resource utilization tools, process, and metrics. Oversaw staffing and resourcing decisions for projects across the security spectrum.

• Information Security Consulting Services Leader

  • Jan 2021 - Jun 2021

  As Director of Consulting, I built a new line of business focused on providing security consulting services such as Architecture Reviews, Standards Assessments, Threat Modeling, and Vendor Risk Assessments to commercial clients. Negotiated deals, staffed assessments, and occasionally performed client work. Developed a new Security Architecture Review framework based on NIST standards for use in all such projects. Designed and Developed a scheduling and tracking tool for resourcing that… Show more As Director of Consulting, I built a new line of business focused on providing security consulting services such as Architecture Reviews, Standards Assessments, Threat Modeling, and Vendor Risk Assessments to commercial clients. Negotiated deals, staffed assessments, and occasionally performed client work. Developed a new Security Architecture Review framework based on NIST standards for use in all such projects. Designed and Developed a scheduling and tracking tool for resourcing that was adopted company-wide.



InGuardians, Inc.

• United States
• Computer and Network Security
• 1 - 100 Employee

• Strategic and Tactical Information Security Operations Leader

  • Mar 2018 - Dec 2020

  As Director of Operations, I led all aspects of Project Management and the Project Management Team. Concurrently manage up to 20 different projects in various stages of completion. Owned all technical client deliverables, including reports, attestations and Executive briefings. Personally performed Technical Validation and Content Review of all client deliverables. Spearheaded post-sales Client Relationship Management in conjunction with Sales team resulting in an over 80% client… Show more As Director of Operations, I led all aspects of Project Management and the Project Management Team. Concurrently manage up to 20 different projects in various stages of completion. Owned all technical client deliverables, including reports, attestations and Executive briefings. Personally performed Technical Validation and Content Review of all client deliverables. Spearheaded post-sales Client Relationship Management in conjunction with Sales team resulting in an over 80% client re-engagement rate. KEY ACCOMPLISHMENTS -Develop and manage Project Management department, including process, policy and training. -Introduced Operations into the ongoing Client Relations process, resulting in an increase in recurring business. -Revised and improved the clarity, quality and client-reported value of assessment deliverables through rigorous standardization, training of operators and streamlining of reports. -Developed the InGuardians methodology for performing Security Architecture Reviews, personally performed most of the reviews. -Redesigned the Operations process, resulting in an increase in Operator efficiency and utilization. KEY PROJECTS & RESULTS: -Regional Energy Producer: Designed and performed ICS-focused Security Architecture Review for a proprietary storage solution set for deployment. This process was then adopted as the standard for all subsequent ICS architecture reviews. -Global Charity: As part of a team, designed and delivered custom security awareness training to a broad audience ranging from senior executives to executive assistants. -Cloud-Based Storage Company: Performed a review and pre-audit on a Cloud-based environment to with a focus on HIPPA-compliant best practices. -Various: Managed assessments across a broad range of technologies, including Kubernetes, ICS, Cloud-Architecture, Proprietary Hardware Assessments, Proprietary Protocol Assessments, Web Applications, Mobile Applications, Internal and External Assessments and Red Teams. Show less



Digital Security Partners

• Consulting and Cybersecurity Executive

  • Feb 2010 - Mar 2018

  Delray Beach, FL As CIO, I developed and ran security-focused solutions for mobile and web applications, which included: vulnerability assessments, audits, architecture/procedure reviews, penetration tests, and incident response/digital forensics. -Designed and developed robust and expandable tool for User Access Review / Segregation of Duties aspect of annual SOX audit. Requirements included backwards compatibility to Windows XP, Excel 2003. Back end is custom SQL Server 2012 database and stored… Show more As CIO, I developed and ran security-focused solutions for mobile and web applications, which included: vulnerability assessments, audits, architecture/procedure reviews, penetration tests, and incident response/digital forensics. -Designed and developed robust and expandable tool for User Access Review / Segregation of Duties aspect of annual SOX audit. Requirements included backwards compatibility to Windows XP, Excel 2003. Back end is custom SQL Server 2012 database and stored procedures. -Conducted vulnerability assessments using a variety of tools including Metasploit, Nessus, Burp Suite, Maltego, Backtrack, Samurai WTF. -Developed custom reporting tools with T-SQL, SQL Server, Excel and Tableau. KEY PROJECTS & RESULTS: -Global Security Hardware and Services Company: Designed, coded, deployed, executed and reported on a User Access Review/Segregation of Duties process and tool in support of a large security hardware and services multi-national. Solution was designed to support 6 business units with ERP systems including SAP, Oracle, JDEdwards and BAAN IV. Process and tool covered sensitive system access for over 2,500 global users as part of the annual SOX audit. -K-12 Private Educational Institution: Provided security-focused solutions including vulnerability assessments, architecture/procedure reviews, penetration tests and incident response/digital forensics. Primarily focus on web and mobile application security and incident response planning. -Post-Secondary Educational Institution: Provided analytics and dash-boarding design and development services to education sector. Focused primarily on real-time data retrieval and visual analytics. Show less



CPR Delivered Texas

• Professional Training and Coaching
• 1 - 100 Employee

• Senior Information Technology and Services Executive

  • May 2003 - Feb 2010

  West Palm Beach, Florida Area As CIO, advised strategic planning and acted as a core member of due diligence team. Designed, coded, and implemented new dashboards to assist executives and branch managers in quickly acting on performance risks to plan. Directly supervised Information Services and Support for 11 locations, including building a Network and Security Operations Center, 24/7 support for staff and students, over 3,000 users. Hired, Managed, and Mentored a diverse team to support technical and informational… Show more As CIO, advised strategic planning and acted as a core member of due diligence team. Designed, coded, and implemented new dashboards to assist executives and branch managers in quickly acting on performance risks to plan. Directly supervised Information Services and Support for 11 locations, including building a Network and Security Operations Center, 24/7 support for staff and students, over 3,000 users. Hired, Managed, and Mentored a diverse team to support technical and informational needs of the organization. KEY ACCOMPLISHMENTS: -Introduced virtualization of student networks and key corporate assets, including SQL Server, Exchange Server, Blackberry Enterprise Server, Active Directory infrastructure and multiple Windows Server installations. -Saved over $100K in annual employee expenses while improving information technology response times from 240 hrs to 24 hrs through new partnerships with outsourced vendors. -Reduced network expenses by nearly 20% annually as a result of sustainable upgrades, consolidations, and new operating protocols. -Increased critical application availability from 94% to 98.9% through network redesign. -Improved on-site and help desk support availability to 24-7. Show less



Breakaway Solutions

• IT Services and IT Consulting

• Senior Consultant (Software Design and Development)

  • 1999 - 2001

  Ft Lauderale, Florida Directly supervised up to 22 consultants. Partnered with sales department to design training for unassigned staff to improve skill sets in areas identified as "in demand" by potential and existing clients. Served as development team member for 1st Cruise Industry booking and travel portal using HTML, JavaScript, and SQL.



Greenbrier & Russel

• IT Services and IT Consulting
• 1 - 100 Employee

• Senior Consultant (Software Design and Development)

  • 1997 - 1999

  Atlanta, GA Advanced software and data design for broad range of industries, including travel, finance and retail clients. Provided mentoring and training in principles of software design and development to junior level client staff. Performed Y2K compliance and code reviews and remediation.