Timothy Mitchell

Senior Security Architect at DeSeMa
  • Claim this Profile
Contact Information
us****@****om
(386) 825-5501
Location
Redmond, Washington, United States, US
Skills

Topline Score

Topline score feature will be out soon.

Bio

Generated by
Topline AI

You need to have a working account to view this content.
Join now
You need to have a working account to view this content.
Join now

Credentials

  • (ISC)2 Security CISSP (ISC2-CISSP)
    (ISC)²
  • Certified Chief Information Security Officer (CCISO)
    EC-Council
  • Certified Leadership Consultant (MCP)
    Dale Carnegie Training
  • Cisco Certified Internetwork Expert Security (CCIE-S)
    Cisco
  • Microsoft Certified Systems Engineer: Security (MCSE)
    Microsoft
  • Microsoft Certified Trainer (MCT)
    Microsoft

Experience

  • DeSeMa
    • United States
    • IT Services and IT Consulting
    • 1 - 100 Employee
    • Senior Security Architect
      • Jan 2010 - Present

      As an independent security consultant, Timothy has been entrusted with guiding organizations through some of the most difficult phases of transforming their security posture. He counts among his clients many prominent organizations such as The United States Department of Defense, VISA, Bank of America, and Microsoft. He also has numerous clients such as Premera, Credit Karma, Sonos, T-Mobile, Verizon, Expedia, Starbucks, and others that continue to return to him for guidance and advice about evolving threats to their organizations. As a gifted communicator and experienced manager, Timothy enjoys hiring, training and supporting his teams to develop innovative solutions that can be effortlessly integrated into ongoing practices, which ultimately perform so smoothly as to allow him to move on to the next organization that needs his expertise. Show less

  • Premiere Digital Services
    • United States
    • Entertainment Providers
    • 200 - 300 Employee
    • Senior Information Technology Architect
      • Nov 2019 - Aug 2021

      Timothy was engaged by Premiere Digital to redesign their media ingestion systems and solve a number of capacity issues systemic to their media processing solution. After evaluating their existing solution it was determined that their existing datacenter location did not have sufficient floor capacity or connectivity to support the growth expectations of the organization. Timothy brokered with Disney and Apple, two of the companies largest clients, to transfer cage space in the fully populated One Wilshire datacenter. This allowed for the transfer of critical systems to be located with direct connectivity into these client's cages for exceptionally faster delivery times. Show less

  • Premera Blue Cross
    • United States
    • Insurance
    • 700 & Above Employee
    • Senior Compliance Consultant
      • Nov 2018 - Oct 2019

      Timothy was engaged by Premera to audit and create Azure security policy. He also reviewed policy implementation and technical controls, resulting in their first HITRUST certification for their Azure teams. Timothy was engaged by Premera to audit and create Azure security policy. He also reviewed policy implementation and technical controls, resulting in their first HITRUST certification for their Azure teams.

  • Credit Karma
    • United States
    • Consumer Services
    • 700 & Above Employee
    • Senior Security Architect
      • Sep 2018 - Jul 2019

      Timothy was engaged by Credit Karma to audit and create AWS and GCP security policy. Scanning and report automation for their Nexpose platform was also implemented, which gave them greater agility and flexibility in their production environments. He was responsible for reviewing the technical requirements of a number of M&A acqusitions, which then consolidated disparate systems into a unified platform. Timothy was engaged by Credit Karma to audit and create AWS and GCP security policy. Scanning and report automation for their Nexpose platform was also implemented, which gave them greater agility and flexibility in their production environments. He was responsible for reviewing the technical requirements of a number of M&A acqusitions, which then consolidated disparate systems into a unified platform.

  • Sonos, Inc.
    • United States
    • Computers and Electronics Manufacturing
    • 700 & Above Employee
    • Senior Information Security Consultant
      • Feb 2017 - Sep 2018

      Timothy was engaged by Sonos to create AWS security scanning automation for their Nexpose platform. Key to their objectives was the ability to dynamically spawn an instance of the scanner and, for cost control, tear it down upon scan completion. Scanners were deployed ephemerally, contrary to capabilities espoused by the Nexpose internal engineers. Upon successful completion of this project, he was then retained to assist in hardening their production systems and deploy a new enterprise PKI with self-service front end. Show less

  • T-Mobile
    • United States
    • Telecommunications
    • 700 & Above Employee
    • Senior Security Architect
      • Aug 2017 - Dec 2017

      Timothy was engaged by T-Mobile to create an application design risk review process, and to train a team of security specialists to evaluate their existing applications against the new set of standards. He also provided technical guidance for solving built-in security vulnerabilities without major code changes, which allowed the operation of otherwise noncompliant applications in a secure fashion. Timothy was engaged by T-Mobile to create an application design risk review process, and to train a team of security specialists to evaluate their existing applications against the new set of standards. He also provided technical guidance for solving built-in security vulnerabilities without major code changes, which allowed the operation of otherwise noncompliant applications in a secure fashion.

  • Verizon
    • United States
    • IT Services and IT Consulting
    • 700 & Above Employee
    • Senior Security Consultant
      • Aug 2016 - Feb 2017

      Timothy was engaged to help Verizon redesign their corporate firewall system. Operating as an SME lead he successfully audited all existing firewalls. He reduced the rule complexity throughout all of Verizon corporate from 160 thousand rules across over 200 firewalls to 30 thousand rules across 70 firewalls. The project was successfully completed ahead of schedule and with fewer resources than anticipated. This was due to changes he recommended and made to the TuFin product, as well as other tools that he created to assist in the audit efforts. Additionally, he implemented a team for ongoing governance of the firewall system to prevent rule bloating. Furthermore, he hired, trained, and implemented a team for ongoing governance of the firewall system to prevent rule bloating. Show less

  • Visa
    • United States
    • IT Services and IT Consulting
    • 700 & Above Employee
    • Senior Security Architect
      • Oct 2015 - Mar 2016

      Consultant on security functionality and recommendations for improved security posture. Currently under extended NDA; details of this position are only discussed confidentially. Consultant on security functionality and recommendations for improved security posture. Currently under extended NDA; details of this position are only discussed confidentially.

  • T-Mobile
    • United States
    • Telecommunications
    • 700 & Above Employee
    • Principal Solutions Architect
      • Jul 2015 - Mar 2016

      Timothy was engaged by T-Mobile to lead the creation of best practices for their AWS migration. After some discovery work, he decided to leverage a few existing security products and expand their capabilities to cover AWS components. He created various Lambda functions that consumed security scan reports and enforced business rules on the AWS resources. When finished, AWS resources would be automatically corrected if changes were made that allowed overly permissive access based on the data classification of the resource. He also implemented load distribution policies and procedure guides that enabled T-Mobile operations teams to react to denial of service attacks. Show less

  • Microsoft
    • United States
    • Software Development
    • 700 & Above Employee
    • Lead Solutions Architect
      • Oct 2015 - Feb 2016

      Timothy was engaged by the Microsoft CRM Online team to analyze the feasibility of migrating their service onto Azure infrastructure. He met with all the different service owners and component product groups to gather their requirements and document their existing systems. He then identified gaps in the Azure platform that would impact the proposed migration of each service. After reviewing his findings, the CRM Online team extended his engagement to create guidelines and technical specifications. He was then engaged with the Azure team to champion necessary changes that were blocking the migration of CRM online to Azure. He negotiated with the Azure leadership to show how the proposed changes would not only allow the CRM Online team to migrate, but to also show the overall market impact the new services would have. All his changes were then adopted and budgeted for implementation into the Azure product. Show less

  • Expedia Group
    • United States
    • Software Development
    • 700 & Above Employee
    • Senior Compliance Consultant
      • Mar 2014 - Oct 2015

      Timothy was engaged by the compliance team at Expedia to lead an audit of their firewall systems. After a brief review of their systems, he helped repair an installation of Sky Box and wrote many SQL based tools for analyzing rule usage data from Splunk. Having completed the review, he created a system to audit all the rules based on a set of criteria provided by the compliance teams. His team then implemented a front/back firewall system per application. Using a custom rule analyzer, he reduced the rule count from 170 thousand rules to less than 10 thousand rules across all production application services and all sister companies. Show less

  • Alaska Airlines
    • United States
    • Airlines and Aviation
    • 700 & Above Employee
    • Senior Compliance Consultant
      • Oct 2014 - Sep 2015

      Timothy was initially engaged to review the compliance stance of Alaska airlines after a failed PCI audit. He led the new security team through a brief investigation and discovered that the compliance shortcomings were far broader and more systemic than initially suspected. Through working with the new Security Director and the new CTO, he championed a complete architectural redesign of all line of business systems. He proposed an IPsec solution for creating compliant segmentation, as well as tools for most major PCI requirements. He then led the security team and assisted the CTO with the necessary changes throughout all business units of Alaska Airlines. This included regularly meeting with corporate and labor leaders to review concerns about privacy and monitoring requirements of the new security systems. He successfully championed the technical and cultural changes needed for compliance while easing the concerns of business and labor leaders. Once the implementation was completed, he then continued to act as SME to the PCI auditors, and defended a nonstandard design through a successful PCI audit. Show less

  • Premera Blue Cross
    • United States
    • Insurance
    • 700 & Above Employee
    • Senior Compliance Specialist
      • Sep 2013 - Aug 2014

      Premera reached out to Timothy following their publicized data breach. During the compromise, the system he had previously designed withstood repeated internal attacks, leaked no data, and was the source of alerts that announced the other systems had been compromised. He was brought in to redesign a highly secured core network for the processing of patient and payment information amongst Premera and its partners (“blue’s net”). He worked with application owners and business units to plan and migrate their applications into the cloud based secure environment that he had previously created. He then designed and championed extensive organizational systems and policies, thereby creating Premera’s first dedicated security operations team. He was also responsible for selecting personnel to lead Premera’s security steering committee. This improved security posture throughout the entire enterprise and their partners. Show less

  • United States Department of Defense
    • United States
    • Armed Forces
    • 700 & Above Employee
    • Senior Information Security Specialist
      • Dec 2010 - Jun 2013

      IT security for the National Nuclear and Biological Logistic Control System. Currently under extended clearance requirements; details of this position are only discussed confidentially. IT security for the National Nuclear and Biological Logistic Control System. Currently under extended clearance requirements; details of this position are only discussed confidentially.

  • Starbucks
    • United States
    • Retail
    • 700 & Above Employee
    • Senior Security Architect
      • Jun 2012 - May 2013

      Timothy was brought into Starbucks to help them design and expand their current datacenter. He worked with the security team to audit their existing systems and provided architectural solutions to further improve their datacenter. He then developed numerous solutions that allowed Starbucks to decentralize security controls and significantly expand capacity. Additionally, he built and led a team that implemented new attack detection and loss prevention methods. Finally, his team selected and successfully implemented a negative attestation system to meet new PCI requirements. Show less

  • VML
    • United States
    • Advertising Services
    • 300 - 400 Employee
    • Senior Solutions Specialist
      • Apr 2011 - Oct 2012

      A prior coworker reached out to Timothy to assist with a project; he was familiar with the work Timothy had done on DRM for Microsoft Zune and Xbox and needed his expertise. VML was creating an EReader and needed strong DRM controls. Timothy was engaged as a consultant to help their security team create proper guidelines and coding practices to ensure the protection of content on their device. Working with management, technical leaders, and content providers, Timothy’s team successfully created a system to provide proper DRM controls, which then ensured the safety of the devices and all the web based supporting services. Show less

  • Premera Blue Cross
    • United States
    • Insurance
    • 700 & Above Employee
    • Senior Compliance Specialist
      • Feb 2011 - Jul 2012

      Timothy assisted in the design and implementation of Azure and AWS resources to help ease the load requirements of their on site datacenters. The designed system synchronized resources between both cloud providers and the existing Rack Space installation, which reduced the bandwidth demands on their local site. He designed and championed a solution that would allow applications to seamlessly exist in all three locations and be visible through a single dashboard. He trained the existing personnel in the design and operation of the solution, and oversaw the final implementation. Show less

  • Hospira
    • United States
    • Pharmaceutical Manufacturing
    • 700 & Above Employee
    • Senior Solutions Consultant
      • Jul 2011 - Jun 2012

      After some findings discovered during an audit, one of Timothy’s colleagues reached out for assistance with a quarantine project. Hospira had previously engaged Microsoft and Cisco to help them design a quarantine system, however given the existing limitations, both companies could only recommend replacement of all edge switching systems. Upon investigation of the findings from both prior companies, Timothy made recommendations on how to achieve the needed quarantine solutions. After discussing the pros and limitations of the proposed solutions, the management team accepted it, and he was then retained to write a set of domain GPOs that would engage the operating system’s local inbound/outbound firewall, and limit communications to remediation systems only. He then operated as technical consultant and procedure guide author during the testing and rollout of the new solution, resulting in an unprecedented simplicity and effectiveness. Their auditor was impressed, and Hospira was impressed that its cost was negligible and the solution documentation was simple to understand and implement. Show less

  • Microsoft
    • United States
    • Software Development
    • 700 & Above Employee
    • Senior Compliance Consultant
      • Aug 2011 - May 2012

      Timothy was brought into the Microsoft Retail Store team by a director with whom he had previously worked. This director personally reached out to him to pull the retail stores into compliance before the business unit caused Microsoft to fail a PCI audit. Timothy was given a three month window and complete authority over the project. The initial network had been designed by an outside organization because of their experience in Target’s retail environment, which later proved to be lacking in compliance as evidenced by a very serious breach at Target. Recognizing design deficiencies prior to the breach at Target, he assembled and led a small team of select specialists throughout Microsoft. This team redesigned the entire network space for the retail stores, including all demo and display systems, and deployed in 47 days. Afterwards, he and his team engaged Microsoft’s PCI auditor, resulting in a successful compliance assessment in only 23 days. Following the completion, Timothy provided training and experience to information security teams through mock intrusions of the retail environment. Show less

  • Bank of America
    • United States
    • Banking
    • 700 & Above Employee
    • Senior Security Architect
      • Feb 2011 - Oct 2011

      Timothy was engaged to ensure that proper security was maintained during the complex migration of the acquired Merrill Lynch systems and the consolidation of Bank of America datacenters. Leading multiple teams of security professionals across all divisions of both companies, he successfully orchestrated the consolidation of all banking software assets. During the project, he was responsible for communicating technical concerns to business management, and ensured project timelines were maintained. He championed numerous concerns brought up by technical or business leaders, and reset appropriate timeline expectations, which successfully delivered the project within agreed upon adjusted timelines. Overall, Timothy managed the myriad of complexity levels of this project without any negative impact on the business processes. Additionally, business objectives were met, allowing all of their call centers to operate unilaterally instead of having to redirect callers, thus decreasing customer service concerns, and improving customer experience. Show less

  • Microsoft
    • United States
    • Software Development
    • 700 & Above Employee
    • Principal Director Information Security
      • Jan 2003 - Mar 2010

      As a security subject matter expert, Timothy created policy and technical designs for numerous projects across Microsoft. He was entrusted with creating the foundational designs for products such as XBOX Live, Azure, Office 365, and other prominent products. He was also a budgetary steering member for a $24M corporate security budget, where he helped set business objectives and operationalizing goals, thus founding Microsoft’s first dedicated security division. As a security subject matter expert, Timothy created policy and technical designs for numerous projects across Microsoft. He was entrusted with creating the foundational designs for products such as XBOX Live, Azure, Office 365, and other prominent products. He was also a budgetary steering member for a $24M corporate security budget, where he helped set business objectives and operationalizing goals, thus founding Microsoft’s first dedicated security division.

Education

  • Home Schooled
    Apprenticeship, Computational Electrical Engineering
    1985 - 2001

Community

You need to have a working account to view this content. Click here to join now