| Experience |
AT&T Consulting (Previously VeriSign Consulting) October 2006 – Present
Senior Consulting Manager
PCI Program Management Practice Lead
Collaborate with C-Level individuals as well as technical architects of global and mid-sized companies in multiple industries providing guidance surrounding strategic direction of security and compliance initiatives. Responsible for creation, strategy, sales and marketing for the VeriSign PCI Program Management practice. Solely responsible for Fortune 10 global account managing up to 20 consulting resources providing services in 14 countries.
- Responsible for establishing VeriSign office in Bentonville, Arkansas
- Responsible for designing and deploying PCI program management offering
- Created modular compliance framework adapted for any compliance requirements
- Responsible for architecting and creating a global secure networks spanning 6 different countries and 9 different operating entities
- Consulted on large scale enterprise technologies on a daily basis providing security guidance on new and retro-fit deployments
- Created global PCI management implementation plan for a fortune 10 global retailer
- Managed 6 direct reports with as many as 10 fortune 100 projects
- Responsible for generating in excess of $5 million dollars in sales and delivery over a 2.5 year period
Stone Holdings, LLC November 2005 – August 2006
Senior Technical Strategist
Served as subject matter expert in the areas of security, compliance, and IT Operations planning and implementation for investment portfolio companies. Managed multiple projects in various stages for multiple portfolio companies at any given point, many of which were business critical in nature.
- Responsible for creating a secure, scalable IT operations roll-out plan for a distributed digital sign business model with over 1,500 geographically disperse sign nodes
- Architected, created and implemented a custom secure software license and authentication management gateway to manage client software licensing
- Served as PCI compliance project SME, spearheading security policy, process and technology enhancements
- Managed vendor evaluation/selection process for portfolio and parent companies
- Introduced infrastructure virtualization for all development and staging resources
- Re-designed datacenter core switching infrastructure introducing redundant switching to the resource level
DataReturn, LLC June 2004 – November 2005
Sr. Security Manager
Responsible for all areas of security including operations, implementation, budgeting, certification and audit for a global managed services company. With more than 2,000 servers and data centers located in Dallas, San Francisco and London, the core infrastructure passed in excess of $100 million in financial transactions per day.
- Responsible for creating security standards and management system for more than 270 firewalls
- Heavily involved with creating complex secure network architectures for managed services customers as well as IT outsourcing customers
- Led the VISA CISP and PCI program initiatives and managed all remediation efforts achieving CISP Service Provider compliance for Data Return
- Led the Information Security Risk Management Board comprised of senior management and VP level positions to evaluate threats and mitigate exposure
- Responsible for design and implementation of an enterprise wide PKI infrastructure
- Responsible for all security related vendor relationships
- Architected and implemented a distributed Snort deployment for network IDS
- Reported directly to the VP of Global Operations
- In-depth exposure to many enterprise level and high availability technologies including many types of clustering technologies, global load balancing technologies, HA network architecture, fully meshed VPN architectures and disaster recovery architectures
- In-depth exposure to operational management of a large high availability, geographically disperse, multi-platform enterprise network
Stone Investments, Inc. August 1998 — August 2003
Senior Technical Strategist
Provided guidance in virtually all areas of technology acquisition, planning, infrastructure, software, security, networking and application development for more than 10 portfolio companies.
- Evaluated technical companies’ potential equity involvement and joint ventures
- Ensured that all technology selection, planning, development and deployment were strategic to each investment
- Responsible for consolidation of critical infrastructure data centers
- Advised portfolio companies on information security compliance efforts (including GLBA compliance for a $4 billion financial institution)
- Reported to the CEO of Stone Investments
- Deployed and managed networks that included interoperable Microsoft and Linux platforms housing applications written in PHP, Perl, ASP and .NET using Microsoft SQL 7, mySQL and PostgreSQL relational databases and relying on Apache and IIS server technologies
Major Stone Investments Projects Included:
Elliptix, LLC (a Stone Investments company)
President/Founder August 2001 — August 2003
Provided the vision, plan and execution path for commercializing a product line around technologies built to assist various Stone companies with their risk management process.
- Responsible for market research (information security/perimeter vulnerability analysis specific), product plans and detailed revenue models
- Developed centrally managed scanning management platform designed to deliver perimeter vulnerability management for large, geographically diverse systems
- Designed reporting system for providing detailed structured executive and engineer level reporting from large amounts of perimeter vulnerability scanning results
- Architected and managed development of remediation workflow management tool designed to assist companies in creating an audit and accountability record during network remediation for regulatory and best practice compliance
- Designed vertical reporting system to assess multiple regulated verticals such as Gramm-Leach-Bliley Act (GLBA), Healthcare Information Portability and Accountability Act (HIPAA), Sarbanes/Oxley and California HB 1386
- Application technologies were PHP and C utilizing PostgreSQL databases
WebCE.com (a Stone Investments company)
Chief Technical Officer August 1999 — January 2001
Led the technology team in growing a 100% paper-based local continuing education company with $200,000 in revenue to a nationwide online e-business with integrated call center management, fulfillment, content delivery and nationwide state approved online testing with $4 million in revenue.
- Responsible for all phases of technology including security, application architecture, server architecture, data structure, data center, product management, documentation, quality assurance and configuration management
- Designed all application and workflows surrounding the intranet and extranet applications
- Oversaw hiring of all IT staff and negotiated all salaries
- Designed and managed development of comprehensive Test Smart® system to deliver online state approved exams in a secure, user-friendly environment which currently delivers over 10,000 online exams per month
- Conceptualized and managed development of a business-to-business Private Labeling/Co-brand syndication system to create B2B market
- Implemented and managed multi-platform technical environment which included Microsoft and Linux platforms delivering applications written in ASP, and PHP with Microsoft SQL and PostreSQL relational databases
NetVitality, Inc. (a Stone Investments company)
Vice President, Operations August 1998 — January 2001
Worked with various clients to successfully create, implement and manage internet commerce strategies and applications in the NetVitality secure networking environment. Responsible for creating all IT budgets, all IT department personnel decisions, management of data center activities and daily operations.
- Led project for the National Fraud Center to provide a highly secure searchable database housing sensitive data (ss numbers, personal financial data, legal data, etc) for over 20 million individuals to law enforcement industry
- Led application development project for Sportsware Technologies – a high volume online nationally syndicated golf course database application serving Golf Digest, Golf.com, CNNSI.com and Lycos.com
- Architected browser-based, multiplatform user management system that controlled workflow management system, ticketing system, DNS, e-mail, radius and multiplatform hosting
- Managed web application platforms for over 80 companies
- Implemented and managed technologies which included Microsoft and Linux platforms delivering applications written in ASP and Perl with Microsoft SQL relational databases
I-Net Solutions, Inc. October 1996 — August 1998
President, Founder
Seeded and founded I-Net Solutions, Inc., a network consulting firm focused on providing network services for local ISP’s and applications hosting. Responsible for all business strategies, marketing strategies and business development. Acquired by Stone Investments, Inc. August 1998.
- Responsible for all acquisition negotiations
- Established strategic partnerships with companies such as Nullsoft, Inc. (creators of Winamp), Susquehanna Radio Corp Dallas (KTCK, KPLX, KLIF) and Hays Internet Marketing (creators of e-kiss.com)
- Responsible for maintaining core infrastructure technologies supporting a combined 25,000 ISP B2B and B2C clients
- Managed numerous ISP core infrastructure technologies including high redundant network routing using BGP, security consulting and system administration for FreeBSD, BSDI, Linux, Solaris/Sun OS, Digital Unix, and Windows NT operating systems
Internet America, Inc. February 1996 — October 1996
Director, Technical Support
Responsible for management of the technical support division of the fastest growing internet service provider in the southwest with over 40,000 customers.
- Managed call center of 40 technicians for an internet service provider with a customer base of 40,000
- Supported a 50% increase in customer base (from 20,000 to 40,000 users) without increasing support division size
- Increased call center efficiency 40% by designing and converting call center operations to a tier-based support platform
- Responsible for implementing business support division
- Apprised Chief Technical Officer and Vice President on a daily basis of the status of support center
Knowledge Brokers, Inc. November 1995 — February 1996
Knowledge Brokers, Inc., a Dallas-based technical support agency that directly competed with companies such as Stream International.
- Managed team of 15 technicians
- Provided various technical support including hardware, software, O/S and network on a per-minute basis for companies such as CompUSA and International Can
|
