Jan 2018 – Jan 2019 · 1 yr · Dallas, Texas, United States · Remote

• Serving as Vice President over the Cybersecurity Go-to-Market organization with a cross-matrix responsibility (76 employees, $203M P&L) for sales, product development, and delivery.
• Ensured industry alignment by launching 3 year roadmaps across Cyber Security, Governance Risk and Compliance, Identity Access Management, and Next Generation Services
• Actively innovated and made substantial contributions to intellectual property portfolios that helped establish new security services by generating new sources of revenue
• Worked directly with senior management across various marketing and product development organizations where we were responsible for analyzing client business processes to understand goals and strategies, and to utilize proven methodologies and tools to recommend changes that will improve the overall experience
• Used consulting services as a penetration point to shorten sales cycle and grow new deals. Smaller engagements established immediate revenue and opened us to developing long-term client partnerships that supported larger complex deals (Land and Expand) – established $14.4M in new advisory and professional services revenue
• Established centralized IT and OT policy, standards, and procedures, deep dive assessments, incident response and transformation programs.

Jan 2016 – Jan 2018 · 2 yrs · Dallas, Texas, United States

• Serving as Vice President over Cognizant Cybersecurity and Risk Management where I have 2320 employees and $135M budget – global responsibilities across the United States, Canada, the United Kingdom, France, Germany, Belgium, Luxenberg, the Netherlands, Norway, India, Australia, Japan, South Africa, Brazil, and Singapore.
• Responsible for providing advisory, engineering, professional, and operations security services across Cyber Security (Network & Applications), IAM, GRC, and Next Gen (Cloud, Mobile, Analytics)
• Defined and owned all policy, standards, and procedures, security assessments, incident response and transformation programs across Cognizant inside the United States and Europe (Germany, France, UK, Netherlands, Luxenberg, Belgium, Norway)
• Effectively structured Strategy, Technology, and Alliances (STA) into a cohesive organization focused on using innovation, architecture, and partnerships to deliver leading edge technical solution
• Defined a global training program utilizing virtual university and small, trainer-led groups with a mix of presentations, exercises, role-playing, and experience sharing. The objective is to define a next-generation workforce emphasizing education, emerging technology, and experiential learning

Jan 2013 – Jan 2016 · 3 yrs · Dallas-Fort Worth Metroplex · Remote

• Leader with responsibility for $13M of IBM's Professional Security Services business with 22 employees – provided advisory and professional services across 1) Security Strategy, Design, and Architecture; 2) IT Security Assessment; 3) Risk Management; 4) CISO services 5) Program Management
• Maintain P&L responsibility for the organization and lead all aspects of its strategic vision, business development, partnerships, and relationships with senior executives, customers, and standards organizations in order to deliver above target profit and revenue
• Built pipeline and drove revenue using partnerships, social selling, published articles, a multipronged lead generation campaign that included events/seminars/conferences, and a substantial digital marketing investment across email/e-nurture, blogs, and webcast – CQGR growth rate of 22.7% quarterly
• Responsible for producing products and services that protect the enterprise and consumer mobile, cloud, and analytics experience while serving as the subject matter expert across key security technology areas
• Defined IoT for Cloud Service Provider (CSP) - IoT deployments through as a service model • OEMs - Device manufacturers operate & manage the infrastructure

Jan 2012 – Jan 2013 · 1 yr · Dallas, Texas, United States · Hybrid

• Associate Director inside Ernst & Young's Digital Security business (i.e. mobile enterprise, IoT, cloud computing, and data analytics) – assisted in driving P&L by delivering above target profit and revenue.
• Drove practice revenue and profit targets by building credibility, and developing and leveraging a position as a “Trusted Advisor” to key Fortune 500 clients
• Defined current state and future state architectures across endpoint, transport, and networks by providing expert-level business and technical experience, and possessing a deep understanding of developing long-term strategies, plans, and architectures
• Informed and communicated key technology trends to senior leaders for possible new services, including the generation of solution options and alternatives, and documentation of associated decision criteria
• Contributed to E&Y’s revenue and market share by establishing a new pipeline that achieved key practice signings targets, while delivering transformational engagements above target profit and revenue yield

Jan 2006 – Jan 2012 · 6 yrs · Dallas, Texas, United States · Remote

• Served as Senior Security Architect and Lead Member of Technical Staff (LMTS) responsible for AT&T’s Mobility governance and technology oversight- including network, systems, and handsets.
• Patented the Smart Mobile Computing for IoT architecture and capabilities framework as a multi-layered approach to significantly reduce costs, and improve growth and productivity, by allowing any trusted device, anytime, anywhere in the world, over any connectivity, while continuing to ensure the protection of intellectual property and data privacy, without sacrificing compliance with security policies and government regulations
• Defined current state and future state architectures across endpoint, transport, and networks by providing expert-level business and technical experience, and possessing a deep understanding of developing long-term strategies, plans, and architectures.
• Led wireless applied research in the area of handset security research activities with key industry partners (e.g. Apple, Microsoft, Samsung, Motorola, RIM, etc.) and network security research activities with key industry partners (e.g. Juniper, Cisco, HP, etc.)
• Integrated and leveraged extensive knowledge of the mobile security industry practices, methods, and procedures to generate innovative security solutions that created market opportunities through the invention of leading-edge technologies with significant value. New technical advancements for large-scale mobile security projects
• Drove collaboration between Intel, AT&T and McAfee (led to Intel's eventual acquisition of McAfee in 2011) to further expanded the Smart Mobile Computing for IoT architecture by embedding security into Intel server, desktop, and mobile chipsets - designed to protect the AT&T core network from DDoS without having to rely on the user to provide endpoint protection

Jan 1999 – Jan 2006 · 7 yrs · Overland Park, Kansas, United States · On-site

• Responsibilities include privacy, infrastructure, and security related activities - Vulnerability Management, Risk Management, Engineering, Network and Security Operations, Compliance, Security Awareness, SDLC, Monitoring, and Incident Response.
• Led network, hardware, and software vulnerability testing, including ethical hacking, penetration testing, and reverse engineering across internal clients technical security evaluations
• Developed and implemented risk based remediation program to address security gaps – worked with Lines of Business (LOBs) to determine risk acceptable solutions to meet security policies and solutions
• Embed security in key business processes; SDLC, contract negotiations; vendor contracts; new third-party relationships; new technology infrastructure; BCP/DR; strategic planning.
• Deployed Disaster Recovery/Business Continuity program (BCP/DR) and Data Leakage Protection
• Principally involved in the designing and implementing of business continuity plans.
• Experienced in e-discovery and conducting forensic computer investigations to identify, preserve, recover, analyze, and present facts in common language for evidence.
• Oversaw the creation of a daily service review for operations that incorporated all business units and stakeholders. Created the Root Cause Analysis team and the underlying processes.
• Responsible for building the ISS security center infrastructure - Vulnerability management consisted of the security center server and 37 remote scanners.
• Implemented privacy scans to locate PII throughout the enterprise.
• Established a best practice vulnerability management and hardening program.
• Took the initiative to re-evaluate and improve the security infrastructure at General Dynamics; paying special attention to internal controls, auditing, IDS, firewalls, VPNs, incident response, patch management, and documentation.