Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app
Work Background
AmtrakBusiness Information Security Officer ( BISO )
Apr. 2024United StatesAs a Business Information Security Officer (BISO), oversees the implementation and maintenance of security measures within the companies business operations. Responsibilities include developing security policies and procedures, conducting risk assessments, managing security incidents, ensuring compliance with regulatory requirements, and providing security awareness training to employees.collaborate with IT teams, management, and many other stakeholders to protect the organization's sensitive information and systems from cyber threats.
AmtrakDirector Cyber Assessment
Jul. 2020 - Apr. 2024Built the Cyber Assessments team from scratch, focusing on securing Amtrak's assets including identities, devices, network/infrastructure, applications, and data. Delivered a multi-million-dollar program that significantly reduced overall enterprise risk. Implemented capabilities such as vulnerability management, application security testing, penetration testing, and social engineering simulations.
Responsibilities:
• Assist in the Cybersecurity Strategy and Governance to drive a cybersecurity strategy aligned with GRC standards and SEC requirements.
• Collaborated with business leaders to align on the cybersecurity framework and engage their support in managing cyber risk while ensuring continuous business operations.
• Served as the cybersecurity strategic advisor by providing actionable recommendations to stay ahead of cybersecurity practices.
• Communicated cybersecurity program status and updates to business leaders. • Provided insights on emerging cyber threats, vulnerabilities, and the effectiveness of security measures.
• Established and managed a risk register, conducting regular risk and vulnerability assessments.
• Evaluated and managed third-party vendors for cybersecurity risk, ensuring cybersecurity requirements in vendor contracts.
• Partnered with Internal Audit, Legal, and Public Reporting to ensure compliance with SEC rules and timely, accurate cybersecurity-related disclosures.
• Guided the cybersecurity team in managing a multi-year cybertechnology roadmap and implementing scalable cybersecurity technology management processes.
• Attracted, retained, and developed the Cybersecurity Team, fostering organization-wide confidence and cross-organizational collaboration.
Leidos / GD-ITDeputy, Cybersecurity Operations Center (PENTCIRT)
Mar. 2018 - Jul. 2020Led 25 cyber incident response experts through numerous highly sensitive incidents targeting the nations military headquarters. Served as the deputy across three major functions – Endpoint Security, Non Compliance Response Team, and PENTCIRT. Incidents investigated and resolved ranged from leaks of sensitve, personal, or classified information to nation-state level cyber attacks. Provided routine communications to executive level Pentagon staff and ensured all incidents met legal and regulatory reporting requirements. Lessons learned captured from incidents led to continuous improvements to the Pentagon’s cyber defense posture.
Veritas Technologies LLCProgram Manager – Insider Threat / Sr Incident Response Engineer
Oct. 2014 - Mar. 2018HerndonDesigned, built, and managed an industry leading Insider Threat Program, orchestrating cross-functional collaboration to align strategic objectives with regulatory demands and business imperatives. Conducted comprehensive threat assessments to identify and profile potential insider risks, leading to the design and implementation of tailored policies, procedures, and incident response protocols. Integrated leading security technologies to proactively monitor and detect abnormal insider activities. Presented program progress and accomplishments to executive leadership and external auditors, receiving accolades for exceptional program efficacy.
SymantecThreat & Vulnerability Analyst
Oct. 2014 - Oct. 2015Herndon, VALed the identification, assessment, and mitigation of risks associated with vulnerabilities and zero-day attacks. Conducted in-depth analysis of active security events, focusing on emergent threats and malware trends.
NJVC-LLCLead cyber security engineer
Jul. 2013 - Oct. 2014Springfield, virginiaInnovatively designed and integrated data collection solutions, serving as a go-to expert for system connectors and vigilant threat monitoring. Conducted comprehensive analysis of numerous security events, including malware occurrences and unauthorized activities, driving effective remediation actions and incident escalation.
RaytheonLead Cyber Engineer
Jun. 2008 - Jul. 2013Springfield virginiaProgressed as a Cybersecurity Engineering Leader, overseeing ArcSight system and content development, crafting new methods to detect cyber threats, metric development, and leadership reporting. Oversaw the testing and certification of cyber systems for government agency adoption.
BAE Systems Information TechnologySystems Engineer
Mar. 2006 - Mar. 2008TysonsDelivered systems engineering, administration, and security support for U.S. Intelligence Community client.
General Dynamics Information TechnologyNetwork Administrator
Apr. 2003 - Mar. 2006HerndonProvided network administration and security support for U.S. Government client.
Intch is a Professional Networking App for the Future of WorkSee more people like Olivia on Intch
300k+ people
130+ countries
AI matching
Get Intch if you'd like to
540312 people
21
Education Consultant
15
Human Resources @ UB Greensfelder
15
Principal Consultant @ Marketing Endeavors Strategic Consulting
130976 people
15
Human Resources @ UB Greensfelder
15
Data Analyst
42
Senior Mining Engineer @ Riot blockchain