Mar 2020 – Dec 2020 · 9 mos

• Manage and develop Security, Trust & Safety, Privacy, and Compliance departments. Work very closely with the Legal department regarding processing all legal paperwork that is served on the affiliated companies.
• Key Achievements:
• Security:
• ▪ Created Security team from ground up to include deploying next-generation anti-malware, incident-response and threat hunting, and firewalls. Continue to fine-tune our vulnerability management program that includes regular vulnerability scanning, penetration testing, and a responsible disclosure program (bugcrowd.com/stackpath)
• ▪ Assisted IT in deployment of mobile device management software and policies and email security (to include security awareness training)
• Trust & Safety:
• ▪ Pushed and supported the team in automating much of this process
• ▪ Able to manage a very large amount of inbound notices with a very lean team
• Privacy:
• ▪ Certify company with Privacy Shield annually
• ▪ One of the leads in GDPR, CCPA, etc., efforts
• Compliance
• ▪ Leading the companies initiatives around PCI, SOC 2, and aligning with ISO 27001

Sep 2015 – Mar 2020 · 4 yrs 6 mos

• Manage and develop Security, Trust & Safety, Privacy, and Compliance departments. Work very closely with the Legal department regarding processing all legal paperwork that is served on the affiliated companies.
• Key Achievements:
• Security:
• ▪ Created Security team from ground up to include deploying next-generation anti-malware, incident-response and threat hunting, and firewalls. Continue to fine-tune our vulnerability management program that includes regular vulnerability scanning, penetration testing, and a responsible disclosure program (bugcrowd.com/stackpath)
• ▪ Assisted IT in deployment of mobile device management software and policies and email security (to include security awareness training)
• Trust & Safety:
• ▪ Pushed and supported the team in automating much of this process
• ▪ Able to manage a very large amount of inbound notices with a very lean team
• Privacy:
• ▪ Certify company with Privacy Shield
• ▪ One of the leads in GDPR, CCPA, etc., compliance efforts

May 2014 – Sep 2015 · 1 yr 4 mos · Dallas-Fort Worth Metroplex · On-site

• Manage all projects in the Trust & Safety department. Work very closely with Legal teams both at SoftLayer and IBM regarding legal paperwork that is served on the companies.
• Key Achievements:
• ▪ One of three people who process certain Federal Law Enforcement Orders for SoftLayer/IBM
• ▪ Managing and continuing to roll out many useful products for Trust & Safety and Legal departments

Nov 2013 – Apr 2014 · 5 mos · Dallas-Fort Worth Metroplex · On-site

• Provided continuous monitoring of the corporate and federal assets ensuring the integrity of the environment. The work of this group includes managing the various scanning tools, assessing and analyzing the data collected from those tools, as well as tracking and reporting on suspicious activity.
• Key Achievements:
• ▪ Sole person responsible for receiving certain Federal Law Enforcement Orders
• ▪ Rolled out two Security Operations Centers

Nov 2010 – Nov 2013 · 3 yrs · Dallas-Fort Worth Metroplex · On-site

• Managed the Dallas Abuse Department. The Trust & Safety department is responsible for: addressing all inbound complaints, maintaining the reputation of the company, complying with all Legal notices received and providing technical assistance to our Legal Department.
• Key Achievements:
• ▪ Successfully rolled out new tracking system for legal paperwork
• ▪ Continue to provide valuable merger assistance to grow the Trust & Safety and Legal Department

Sep 2008 – Nov 2010 · 2 yrs 2 mos · Dallas-Fort Worth Metroplex · On-site

• In this newly created role within the Legal Department, the CSIRC is tasked with providing technical support for the Legal Department in response of all paperwork such as subpoenas, search warrants, etc. The group is also responsible for all internal corporate incidents.
• Key Achievements:
• ▪ Facilitated many solid relationships with Law Enforcement and third party groups
• ▪ Key participant in many documentation projects, creating and formalizing procedures and operational policies as a critical aspect of obtaining and staying current on company certifications and audits

Sep 2007 – Sep 2008 · 1 yr · Dallas-Fort Worth Metroplex · On-site

• In this newly created role within the Technology Group, charged with evaluating new products and improving existing products and services to expand capabilities in an increasingly competitive landscape. As a member of the management team, participate in strategic and tactical planning with multiple internal departments, working on projects with team members from multiple states and countries. Work with vendors from leading companies such as McAfee, Check Point, Force10, Tipping Point, ISS, Red Hat, Juniper, and F-Secure to evaluate products.
• Key Achievements:
• ▪ Trained staff members in various security operations to prepare them to take over previous duties and responsibilities
• ▪ Key participant in many documentation projects, creating and formalizing procedures and operational policies as a critical aspect of venture capital funding presentations

Jul 2006 – Feb 2007 · 7 mos · On-site

• In this newly created role within the Technology Group, charged with evaluating new products and improving existing products and services to expand capabilities in an increasingly competitive landscape. As a member of the management team, participate in strategic and tactical planning with multiple internal departments, working on projects with team members from multiple states and countries. Work with vendors from leading companies such as McAfee, Check Point, Force10, Tipping Point, ISS, Red Hat, Juniper, and F-Secure to evaluate products.
• Key Achievements:
• ▪ Trained staff members in various security operations to prepare them to take over previous duties and responsibilities
• ▪ Key participant in many documentation projects, creating and formalizing procedures and operational policies as a critical aspect of venture capital funding presentations

Jun 2006 – Jul 2006 · 1 mo · On-site

• Promoted to this leadership role to address the growing need to protect internal and customer networks from security-related threats and in turn protect the reputation of the company. Oversaw installation, configuration and management of firewalls and responded to security reports and escalation calls. Managed the network and host intrusion prevention systems and established ongoing preventive analysis of server systems to preempt incipient attacks. Maintained records and reports of all incidents, including denial of service attacks and intrusion attempts. Managed a team of as many as 20 security engineers and technicians.
• Key Achievements:
• ▪ Influential contributor to the creation of many security related policies and procedures
• ▪ Built and managed a large Security Operations Center to handle the needs of a growing operation

Sep 2004 – Jun 2006 · 1 yr 9 mos · On-site

• Promoted to this leadership role to address the growing need to protect internal and customer networks from security-related threats and in turn protect the reputation of the company. Oversaw installation, configuration and management of firewalls and responded to security reports and escalation calls. Managed the network and host intrusion prevention systems and established ongoing preventive analysis of server systems to preempt incipient attacks. Maintained records and reports of all incidents, including denial of service attacks and intrusion attempts. Managed a team of as many as 20 security engineers and technicians.
• Key Achievements:
• ▪ Influential contributor to the creation of many security related policies and procedures
• ▪ Built and managed a large Security Operations Center to handle the needs of a growing operation

Jan 2000 – Sep 2004 · 4 yrs 8 mos · On-site

• Provided high-level service through daily interaction with customers. Maintained internal systems, including Cisco related networking gear and internal Linux, UNIX and Windows-based services, to ensure 24/7 operation with maximum uptime. Answered telephone and email requests for service, identifying issues and providing prompt resolution. Processed trouble tickets and queries through a proprietary system and recorded results into the knowledge base to aid in future diagnostics. Mentor and supervisor to both new and established NOC employees, advancing their technical, problem-solving and customer service skills. Tested new client software.
• Key Achievements:
• ▪ Contributed to building both the department and the company
• ▪ Developed many new processes and procedures for support, NOC and legal department
• ▪ Assisted in building the fundamental architecture that is still in use today

Feb 2007 – Aug 2007 · 6 mos · Dallas-Fort Worth Metroplex · On-site

• Assisted sales associates with closing new and existing sales deals. Also answered inbound customer service requests from existing customers. Performed updates and upgrades on existing customer installations and wrote signatures to block new threats. Trained many new and potential customers on how to fully utilize the product.
• Key Achievements:
• ▪ Developed a new system to better track new and existing threat signatures
• ▪ Managed to hold a very consistent track record of renewing existing customer contracts