ERIKS North AmericaInformation Security Officer - Compliance, NIST, ISO and SOGP, Security Hardening, Incident Response
Jun. 2021 - Dec. 2022United StatesServed as Information Security Officer for ERIKS Global managing all aspects of security for over 90 ERIKS North America locations. Security architecture design and improvement, network security divestiture planning, security incident response, third party risk review and mitigation, network threat and vulnerability management, data loss protection and prevention, security gap analysis, security compliance for ISF SOGP, NIST 800-53, SOC2, ISO27001, security policy development, security standard operating procedure development, create, modify and approve security architecture technical design drawings, SLA adherence. Closed over 10 critical IT Audit findings in 6 months, designed network changes to prevent the Log4j threat on our internal networks. Orchestrated over a dozen hardening activities for browsers, desktips, servers and mobile devices with global impact for over 9,000 employees across four continents.