Jun 2021 – Present · 4 yrs 9 mos

• This is a Pro Bono / Volunteering Position

Apr 2020 – Present · 5 yrs 11 mos

• This is a Pro Bono / Volunteering position
• CyberSecurity Non-Profit (CSNP) is an organization dedicated to promoting cybersecurity awareness and education.
• Our goal is to make security knowledge and training accessible, so everyone can learn how to protect themselves and their organization from cyber threats.
• We address the growing demand for security professionals by facilitating career development and building a supportive and inclusive cybersecurity community, particularly for underrepresented groups.
• We accomplish this by hosting free monthly events featuring presentations, networking, hackathons, discussion panels, and technical workshops and attendees earn CPE credits towards their certifications.
• Visit us at https://csnp.org/home | Join us on our Slack community http://bit.ly/csnpslack

Jan 2020 – Present · 6 yrs 2 mos · Sterling, Virginia, United States

• Directly reported to the CISO, serving as a thought leader and advisor on Security Program Initiatives and Mergers & Acquisitions activities.
• Responsible for driving enterprise architecture best practices (Zero Trust, Defense-in-Depth) and processes across the organization.
• Led the implementation of governance, risk, and compliance (GRC) strategic initiatives, including NIST CSF, ISO 27001, and CIS CSC.
• Drove enterprise digital transformations, balancing business priorities, security risks, and emerging threats to ensure organizational security.
• Significant Highlights:
• Led the development of a Transformation Roadmap, offering both short- and long-term strategic recommendations to improve visibility, protection, detection, and remediation, while enhancing efficiency and performance for reducing efforts toward the target security posture.
• Played a key role in creating an auditable and repeatable Cybersecurity Strategy to meet industry regulations and standards such as ISO 27001, CIS Benchmarking, NIST, Statutory and Regulatory Compliance, and Audits.
• Spearheaded Operational Program Processes, collaborating with Security and Cross-Functional Teams to identify gaps, develop recommendations, implement controls, and close compliance gaps, while ensuring continuous monitoring and improvement.
• Led Security Engineering initiatives, assisting SecOps Teams with architecture reviews and changes in CASB, Data Loss Prevention, Deep Security, Email Security, Firewalls, IDS/IPS, SSL Certificate Management, and VPNs to enhance the overall SecOps program.
• Directed Cyber Defense efforts, closely coordinating with Incident Response Teams to analyze user behavior, detection, response, and recovery operations, providing feedback to optimize operational efficiency.
• Ensured Data Privacy, collaborating with Data Governance Teams to address Data Security & Access Controls, Data Privacy & Compliance, Data Profiling, and Meta-Data Management practices.

Jan 2019 – Jan 2020 · 1 yr

• Responsible for global, enterprise-wide Information and Cloud Security Program, securing 10K+ customers data, and enterprise of $3.8B with presence in 28 countries. Led a team of 15 associates globally, and architected, deployed and managed cloud and infrastructure security solutions comprising of end-point security, firewalls, IDS/IPS, load balancers, micro segmentation, policy compliance, threat and vulnerability assessment and overall technology risk management. See security as an enabler.
• Led the global, enterprise-wide Information and Cloud Security Program, securing data for 10,000+ customers and protecting a $3.8B enterprise with a presence in 28 countries.
• Managed a global team of 15 associates, ensuring effective collaboration and alignment across regions.
• Architected, deployed, and managed comprehensive cloud and infrastructure security solutions, including:
• Endpoint security
• Firewalls, IDS/IPS, Load balancers, Micro-segmentation, Policy compliance, Threat and vulnerability assessments, Technology risk management
• Focused on security as an enabler to business growth, innovation, and operational efficiency.

Oct 2016 – Dec 2018 · 2 yrs 2 mos

• Built and led global, 24X7 team of 12 FTEs across two time zones, responsible for all network security, security operations, vulnerability assessments, compliance, internal and external audits.

Dec 2013 – Oct 2016 · 2 yrs 10 mos

• Led the implementation of Mobile Services Platform and Mobile Virtual Network Operator/Enabler platform for customers across APAC, EMEA, LATAM, and the USA.
• Managed the data center migration from Boston to Chicago, deploying and installing a parallel network to ensure seamless transition.
• Planned, designed, engineered, and maintained Network & Security Infrastructure, handling troubleshooting and performance tuning for both in-house and customer networks.
• Enhanced core infrastructure resilience by planning and implementing new solutions, technologies, and capacity upgrades.
• Enforced security policies across Firewalls (Juniper, Checkpoint), URL/Web Application Firewalls (Barracuda), and managed Switches/Routers (Cisco, Juniper), Wireless Access Points (Cisco, Meraki, Linksys), VoIP (Avaya, Cisco), and Load Balancers (F5: Nodes, Virtual Servers, Pools, iRules, health monitors, SSL certs, and rapid security policies).
• Designed and implemented site-to-site VPN connectivity to global data centers, eliminating MPLS to achieve cost reduction.
• Achieved a 40% cost reduction in Security services by streamlining processes and implementing effective cost management strategies.
• Provided insights and recommendations to enhance enterprise efficiency and effectiveness as part of comprehensive assessments.
• Created architecture reference network diagrams for Corporate, R&D, LAN, WAN, VPNs, and global client networks using Visio.