Experience

ODH, Inc.

• United States
• IT Services and IT Consulting
• 1 - 100 Employee

• Head of Security, Privacy, and GRC

  • Nov 2019 - Present

  • Develop rolling one-year Roadmaps for Security, Privacy, Governance, Risk, and Compliance, that align the overall Organizational Strategy. • Develop Strategic multi-year plans as necessary to ensure the Confidentiality, Integrity, and Availability of the organizations Information Security, and the applicable areas therein. • Oversee Security Initiatives within the Organization. • Oversee Privacy Initiatives within the Organization. • Oversee Compliance (GRC) Initiatives within the… Show more • Develop rolling one-year Roadmaps for Security, Privacy, Governance, Risk, and Compliance, that align the overall Organizational Strategy. • Develop Strategic multi-year plans as necessary to ensure the Confidentiality, Integrity, and Availability of the organizations Information Security, and the applicable areas therein. • Oversee Security Initiatives within the Organization. • Oversee Privacy Initiatives within the Organization. • Oversee Compliance (GRC) Initiatives within the Organization. • Align the Organization to compliance frameworks including but not limited to HIPAA and NIST CSF. • Act as a Liaison for the Organization with our parent and affiliate organizations for Security, Privacy and GRC. • Create Policies, Plans and Procedures that align to Organizational Strategy, and meet requirements from our Parent Organization. • Oversee day to day Security Operations • Oversee day to day Compliance • Liaison between teams to help align to Compliance Frameworks. • Oversee the adherence of organizational policies and evidence collection to satisfy appropriate compliance frameworks. • Oversee a team of Security and Compliance engineers to protect the organizations assets. • Oversee the Organizations Governance and Data Governance efforts for protected data. • Coach and Mentor the organization around Security, Privacy and GRC. Show less



U.S. Bank

• United States
• Banking
• 700 & Above Employee

• Principle Security Engineer

  • Mar 2019 - Nov 2019



TEKsystems

• United States
• IT Services and IT Consulting
• 700 & Above Employee

• Security Operations Engineer/Lead

  • Apr 2017 - Feb 2019

  ODH, Inc. As a Security Engineer, I worked with the Information Security Officer (ISO) to define business risks, identify and vet tools that satisfy technical requirements, reduce business risk, build process policies and plans, and manage day to day security operations. I worked with the software development team to remediate code-based vulnerabilities and the operations team to ensure critical systems were patched on a routine basis. I implemented, led, and managed the vulnerability management, threat… Show more As a Security Engineer, I worked with the Information Security Officer (ISO) to define business risks, identify and vet tools that satisfy technical requirements, reduce business risk, build process policies and plans, and manage day to day security operations. I worked with the software development team to remediate code-based vulnerabilities and the operations team to ensure critical systems were patched on a routine basis. I implemented, led, and managed the vulnerability management, threat intelligence and security awareness programs. I have also worked side by side with the ISO to conduct internal gap assessments, perform a third-party risk assessment, and execute remediation actions. • Managed Vulnerability Management • Managed security awareness program • Conducted independent security assessments and testing of company applications. • Supported, created and managed a security operation cadence with weekly to monthly cross-functional meetings with IT, Information Security, Software Development, Operations and Executive Leadership. • Assigned tasks in JIRA and assisted junior Security Analysts with ongoing projects Show less



Otsuka Pharmaceutical Companies (U.S.)

• Pharmaceutical Manufacturing
• 700 & Above Employee

• Service Now Administrator/Developer

  • Jul 2014 - Apr 2017

  Miami/Fort Lauderdale Area I have architected and managed four ServiceNow deployments - one was for the first ‘smart pill’ submission to the Food and Drug Administration (FDA), another for a study to create habits for those with schizophrenia, and two more were for ODH to support its employees and overall management of assets, incident, change, and other services. These implementations were heavily documented, tested, and repeatedly checked for security vulnerabilities to ensure no sensitive data was… Show more I have architected and managed four ServiceNow deployments - one was for the first ‘smart pill’ submission to the Food and Drug Administration (FDA), another for a study to create habits for those with schizophrenia, and two more were for ODH to support its employees and overall management of assets, incident, change, and other services. These implementations were heavily documented, tested, and repeatedly checked for security vulnerabilities to ensure no sensitive data was leaked. • Planned, designed, deployed, implemented, and maintained the ServiceNow platform • Developed secure User Interface (UI) policies, data policies, business rules and client scripts • Controlled system access and data security via access control lists and system properties • Performed System Security Audits and remediated findings • Created design documents and workflows • Presented ServiceNow version upgrade risk assessment • Performed System Hardening steps Show less



United HomeCare, Miami, Florida

• United States
• Hospitals and Health Care
• 1 - 100 Employee

• Data Processor

  • Dec 2010 - Jun 2014

• Desktop Support Level I/2

  • Jan 2013 - Sep 2013