Chief Information Security Officer Resume Examples

Governed all county security policies, procedures, designs, networks, application deployments, and implementation of all facilities for [company name]. Established and implemented security program policies and standards for 40+ departments/agencies and over 900 locations. Collaborated with engineering and developers on security concerns for network and application projects. Presented Information Security topics for business-specific issues to senior leadership, department heads and the board of supervisors. Served as the County HIPAA Security Officer, establishing programs and evaluating compliance.

Overall responsibility for the IT strategy and performance improvement initiatives for an 8 branch / site locations for a Homecare and Hospice agency. Reduced IT costs by $1M while stabilizing application / network issues, securing mobile devices and implementing data back-up / recovery and disaster recovery plan.

Led the building of new private cloud for a SaaS platform using the latest UCS and virtualization technology.

Provided day to day operations of enterprise security consulting, in the area of information asset management, risk and vulnerability management, audit and compliance, security awareness and training.

Overall responsibility for technology risk management, information protection, and security assurance of fourth largest Credit Union in US with assets over $6B

Leverage proven expertise in IT Security, Networking and Networked Storage Technologies in delivery of comprehensive IT consulting services and solutions to diverse financial, healthcare, biotechnology, general business and government organizations. Provide additional leadership to client base in contract CIO, CTO and CISO roles. Serve as advisory member of Gerson Lehrman Group technology council and as an Executive Forum Member with Coleman Research Group.

Directed risk, compliance and security operations for an enterprise in U.S.A, Chile, New Zealand, and Antarctica that ensured appropriate security controls were in place to achieve the business goals and objectives.

Security leader positioned to define company’s security-focused transformation as an IT service provider aligning with business goals and compliance drivers while balancing demanding workload with shared resources. Subject matter expert outside of the security organization providing guidance in data center security and facilities, contract development and negotiations, compliance consulting and product innovation. Viewed as a visionary for company security strategy and practices to meet SOC2, HIPAA, and expand security services.

Managed information technology operations and management services including delivery of communications, programming and computing services. Implemented security program for agency including awareness training program. CISO role included documenting information security functions to include alignment of functional needs with security policies and practices across operational divisions. Experienced in IPS/[company name]. Responsible for overall data security and compliance for 39,000 employee environment. Implemented security awareness seminar program, made presentations to Agency Divisions and external partners.

Hired to deliver be the first CISO for city and enhance the IT Support team with threat management

Provided management for all team leads for all IT related program and projects

Restructured the data security function. Developed an information security framework strategy, policies and standards to centralize security functions for all major platforms across the enterprise. In addition, implemented an information security awareness program. Implemented host and network IDS, secure remote access solution and an internet monitoring solution. Staff size = 14 Security Professionals.

Led the information security function with the primary goal of continually enhancing the organization’s security posture. Manage network security and standards, install new hardware and applications, enforce licensing agreements, and develop a storage management program for data protection, recovery management, and monitoring ease.

Responsible for City-wide Information Security compliance. Tasked with the creation of an Information Security program and policies to insure security of City information assets, as well as constituent data housed on City systems. Responsible for all facets of Information Security. Act as primary interface with City agencies for Information Security awareness, education, and incident response. Provide primary support to Inspector General and outside law enforcement agencies in support of investigation and electronic discovery efforts.

Led the definition, implementation and institutionalization of Walz information security program, which enabled and supported Walz 500+% revenue growth over 6 years by ensuring reliable, audit able and secure B2B operational transactions with the most regulated clients in the country, including Top 5 banks, Top 20 mortgage servicers, healthcare, and several premier auto finance companies, law firms and government agencies and financial institutions that are themselves audited by the OCC, DOJ, FDIC, OTS, GSEs and several other regulatory bodies.

A Fortune 1000 technology services/solutions company with 8K employees that offers a broad array of technical service solutions to federal, law enforcement, and military customers worldwide

Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the university.

Managed four senior technical managers and nine systems and network engineers. Responsibilities included interviewing, hiring & terminations and guiding the career development of direct reports and their reports. Also conducting performance evaluations of direct reports and providing executive input on salary levels training and compensation of technology staff

Led the creation of an in-house developed, anti-fraud capability responsible for eliminating online business fraud from September 2010 until my departure

Provide global information security leadership for a Fortune 100 company with locations in more than 150 countries, $12 billion in annual revenues and 20 million global clients. Collaborate with senior leaders in both IT and the Business throughout the organization to develop information security program including strategy, policy and priorities. Implemented and run program to identify, track and mitigate risk based on enterprise business plans and risk tolerance. Established multifunctional risk working group to support Aon’s Cloud strategy and migrations. Ensure compliance with global, national, and local regulations. Manage vendor/supplier relationships for outsourced enterprise-level security services. Support Aon’s business by working directly with clients during the pre/post-sale and audit stages.

Directly and indirectly managed information security professionals in various teams within a Corporate Information Security (CIS) organization. Line management responsibilities for the Cyber Analysis and Response Team (CART) and the Strategy, Policy, and Planning (SPP) Team. Provided mission, administrative guidance, and tasking. Supported plans for education, career development, mentoring, and team building.

Responsible for leading statewide Information Security efforts, setting IT Security strategy,
leading IT security governance program, and developing policies, standards, and procedures that
provide IT security controls.

Provide vision and executive leadership for developing and implementing clinical and financial information technology initiatives. Lead IT strategic and operational planning to achieve goals by fostering innovation, prioritizing IT initiatives, and coordinating the evaluation, deployment, and management of current and future IT systems across the organization.

Senior technology executive for emergency medicine practice management company whose 500 physicians treat 800,000 patients annually. Spearheaded technology initiatives which increased business value and propelled the company from startup, through high-growth, to eventual acquisition in 2014. Recruited and guided a team of talented IT professionals with expertise in IT Infrastructure, Application Development, Data Integration, and Customer Support.

Assisted with the management of the IS Security Department

Responsible for the ongoing management of information security policies, procedures, and technical systems in order to maintain the confidentiality, integrity, and availability of all organizational healthcare information systems.

Responsible for the management and direction of the Global Information Risk and Security activities for [company name]. Hired to build a global Information Security presence for a company where a fragmented, decentralized approach existed before.

Validated network security requirements, local area network administrator.

Managed and controlled a $40 million annual IT operating budget

Supervised all administrative functions for a large Enterprise Cybersecurity Office including hiring, budget, annual appraisals/raises/bonuses, and employee disciplinary functions

Establish an information security program by collaborating with executive management to developed security control system that met regulatory requirements for our banking partners. Responsible for significantly reducing information audit costs, through intelligent design, and adherence to leading frameworks and regulatory guidance. Developed and managed the incident response process for information security issues and breaches. Key security architecture developed through carefully crafted compliant policies and controls. Develop specialized training programs for educating employees in the importance of sound security & risk practices.

Responsibilities include IT security, risk and compliance strategies, especially in the context of Bank Holding Company transformation efforts, Disaster Recovery and Enterprise Project Management.

Accountability for information security and technology risk management for the entire corporation.

Orchestrated development of IT security policy, strategy, and roadmap following joint venture. Launched multi-year security roadmap and controls.

Participation in a network security auditing project

Head of technology reporting to the CEO of this privately held information company. [company name]’s primary business is measuring and consulting on Customer Satisfaction.

Managed all Air Force Office of Special Investigations Security Programs and served as Air Force
Office of Special Investigations Command Information Systems Security Manager (ISSM).

Functioned as a strong technology leader and trusted advisor at the Navy Engineering Logistics Office, and advised senior leadership on enterprise (global presence) wide information security issues.

A non-profit commercial health plan selling on and off the KY State-based Exchange

Responsible for establishing, implementing, monitoring, and enforcing information security standards and policies for company.

Construction and migration to new primary corporate data center

Directing all information assurance activities for the Agency.

Perform social engineering testing

Providing guidance, direction and technical oversight to management on Information Security Events.

Senior agency information security officer in charge of the [company name]’s (SSA) Information Security Program reporting to the Office of the CIO. SSA is one of the largest federal government programs in existence with an annual IT budget in excess of 1 billion dollars, over 1,300 field offices, and over 103,000 workstations. Nearly every American possesses a social security number and pays into the social security system with the social security number of an individual being one of the most important identity and privacy pieces of information to be protected. SSA also conducts Medicare/Medicaid functions and has IT systems processing medical data. The IT Security budget for the agency is approximately 70+ million annually.