Chief Information Security Officer

• Oct 2022 - Present

Co-Founder and Chief Information Officer

• Sep 2007 - Apr 2022

Co-founder and Chief Information Officer for Managed IT/Security Services Provider ► Responsibilities: • Provide internal and client-facing information technology and security leadership • Develop comprehensive information security policies and procedures for both internal and client organizations • Lead client regulatory compliance initiatives and provide audit and compliance support • Provide information security consulting and strategic guidance, with a particular focus on risk management and helping clients to identify, quantify, categorize and mitigate technical and non-technical security risks • Design, implement and continuously refine comprehensive professional and managed services technology stacks • Design, implement and manage all aspects of professional and managed service delivery • Perform ongoing vendor product research, evaluation, selection and management • Execute and/or manage end-to-end projects of varying size, scope and complexity encompassing cloud (IaaS/PaaS/SaaS), on-premises infrastructure, networking, virtualization, storage and information security • Hire, manage, mentor, coach and develop team members ★ Key Achievements: • Co-founded, grew, and scaled company from startup to successful exit • Achieved consistent net profit margins of 35%-45% year-over-year • Developed policies, procedures, processes and automation across all operational areas to support quality, consistency, reliability and scale to support average 50% growth year-over-year over period of several years • Built and managed a cohesive team of both internal and contract professionals across professional services, managed services and network operations • Developed numerous service standards and best practices adopted by industry peers • Consistently passed client audit and/or penetration tests with no critical/high risk findings and/or successful exploit or compromise Show less

Senior Systems Engineer

• Sep 2008 - Sep 2011

Senior Systems Engineer and Information Services team lead for 1500+ user multi-location, multi-specialty clinic, reporting to the Information Systems Manager and Chief Information Officer ► Responsibilities: • Provide strategic technical leadership to executives and key stakeholders to align IT service portfolio and initiatives with both stated and inferred business needs and objectives • Design, engineer, implement and maintain clinical and operational IT systems, applications and infrastructure in a complex, heterogenous environment • Research, propose, justify, and champion technology initiatives to support and facilitate the Clinic’s aggressive expansion and growth • Create internal processes, procedures and workflows for enhancing the effectiveness and operational efficiency of the internal IT service organization • Ensure the availability, stability and performance of all infrastructure, clinical and operational systems to achieve or exceed internal service metrics and SLAs • Act as primary technical liaison with all external business partners, other local healthcare organizations, and vendors ★ Key Achievements: • Established virtualization as organizational standard for the deployment of all new server workloads • Reduced data center hardware footprint by over 60% and increased hardware utilization through implementation of server workload virtualization • Led HIPAA/HITRUST and PCI compliance initiatives and supporting projects • Executed successful large scale in-house migration from Microsoft Exchange 2003 to Exchange 2010 • Redesigned legacy Citrix XenApp farm using Provisioning Services, Flex Profiles and virtualization and achieved a dramatic increase in hardware utilization, performance and stability, and reduced administrative overhead • Redesigned existing network topology to support continued expansion and growth • Led highly successful Epic EMR implementation and migration, later featured at a vendor conference and in a case study Show less

Senior Systems Engineer/Software Developer

• May 2002 - Sep 2008

Senior Systems Engineer and Software Developer for software development and consulting firm serving public and private sector clients ► Responsibilities: • Design, architect, develop, and maintain multi-tier distributed applications clients using Microsoft products and technologies • Design, engineer, implement and administer on-premises, data center and public cloud infrastructure, systems, and applications • Analyze and define business and technical requirements in collaboration with internal and external software project stakeholders • Manage all aspects of the software development process leveraging best practices such as Agile project management, automated unit and integration testing, and continuous build processes • Design, implement and maintain and test internal security policies, procedures and controls required for federal contracts • Work with external IT auditors to validate control implementation and effectiveness in order to acquire or maintain federal contracts ★ Key Achievements: • Developed, hosted and maintained regional epidemiological surveillance system used to collect, transform, aggregate and analyze de-identified patient data gathered from public health, hospital and clinic patient information systems. The BioDefend® system was used by local public health as part of the surveillance initiative at the 2005 Super Bowl in Jacksonville, FL to monitor potential naturally occurring or intentional disease outbreaks • Developed internal code generation and other tools to reduce repetitive coding and greatly accelerate the SDLC and reduce development timelines • Implemented automated development, testing, build and delivery processes to simultaneously shorten project and sprint timelines and improve quality. • Designed, engineered, implemented and managed all internal IT infrastructure, spanning on-premises, data center and cloud and consistently met or exceeded SLO's for both internal and hosted applications and services Show less

Systems Administrator/Tech Support III

• May 1999 - May 2001

Tier 3 Technical Support and Systems Administrator for Web Hosting/Application Service Provider ► Responsibilities: • Provide remote Linux system administration and escalation engineering and support for 1000+ server remote data center environment • Provide advanced internal and end-user application support, troubleshooting and diagnostics for internally developed, proprietary turnkey web hosting automation application platform • Participate in software QA testing for feature releases, updates and bug fixes • Provide implementation support, consulting and training for clients on all aspects of the application platform Show less