Employment and Responsibilities
Information Security Analyst
• Perform internal audits and reporting towards compliance, risk analysis, threats
• Security architecture; research, development, and improvement• Consulting for Customers, RFP’s, Projects, Host External Audits: HIPAA, SAS 70, SOX 404
• Awareness and education employees and vendors• Incident Management and Investigation
A public nationwide technology company providing Group Purchasing Organizations and web based applications to the financial offices of hospitals and doctors offices. Datacenters are located in Texas, Georgia and Missouri; there are 16 physical locations, and approximately 2000 employees. Regulations include HIPAA, HITECH, and Sarbanes.
Accuro Healthcare Solutions
2003 - 2008
IT Manager and HIPAA Security Officer
• 8 direct reports
• IT projects and budget
• Network and system architecture development and enhancement
• Vendor evaluation
A private nationwide technology company providing web based applications to the financial offices of hospitals and doctors. Primarily a Microsoft, Dell, EMC, SonicWall environment with 1 datacenter, 5 physical locations throughout the United States and approximately 800 employees. Regulation included HIPAA.
Innovative Managed Care Solutions
1999 - 2003
IT Supervisor
• 3 direct reports
• IT projects
• Network and Desktop support
A private technology company providing software and web based applications to the business offices of hospitals. This was a single location that primarily consisted of a Microsoft, Dell, and Linksys environment and 180 employees.
Expert Solution Technical Training Center May – Oct 1999
Technical Instructor
• Instruction of hardware, software, programming, and operation
• Prepare and delivering lectures
• Lead classroom discussions and administer “hands on” sessions and scenarios• Create, administer and grade examinations
IT Supervisor
• 3 direct reports
• IT projects
• Network and Desktop support
A private technology company providing software and web based applications to the business offices of hospitals. This was a single location that primarily consisted of a Microsoft, Dell, and Linksys environment and 180 employees.
Expert Solution Technical Training Center May – Oct 1999
Technical Instructor
• Instruction of hardware, software, programming, and operation
• Prepare and delivering lectures
• Lead classroom discussions and administer “hands on” sessions and scenarios• Create, administer and grade examinations
Education and Certifications
Master of Business Administration in Information Assurance University of Dallas – Graduate School of Management
2007
Irving, Texas
Bachelor of Science in Business / e-Business
Irving, Texas
Bachelor of Science in Business / e-Business
University of Phoenix – Dallas Campus 2004
Dallas, Texas
Associates of Arts and Science
Dallas, Texas
Associates of Arts and Science
Brookhaven Community College 1992
Farmers Branch, Texas
Farmers Branch, Texas
Certifications and Memberships
CISSP, MCSE, MCP+I, A+
ISSA
CISSP, MCSE, MCP+I, A+
ISSA
Information Security Experience and Skills
I am actively attending “Digital Forensics Investigation” training which involves corporate investigation practices, data acquisition, chain of custody, and presentation practices.
Personnel
• Alerts to staff of threats and risks
• Security training employees
Policies and Plans
• Communications Policy
• Disaster Recovery
• HIPAA Privacy and Security
• HIPAA Privacy and Security
Patching
• Automated AV updates
• Automated AV updates
• Monthly software patching
Investigation and Reporting
• Malicious / Accidental
• Breach / Infection
• Malicious / Accidental
• Breach / Infection
• Complaints / Notifications
Auditing and Analysis Tools
• MBSA
• Nessus
• NMAP
• Qualys
• WSUS
• SecureWorks
• Snort
• Sourcefire
• Chubb
• Qualys
• WSUS
• SecureWorks
• Snort
• Sourcefire
• Chubb
• NetIQ
• S-Alive
• S-Alive
• Video
• Consoles
• Dump Sec
• Consoles
• Dump Sec
• Log Parser
• Scripts
• Scripts
• SQL Query
Accomplishments
SecureWorld Expo; Steering Committee 2008 and 2009
Participated in advisement on conference topics and direction
IANS Lone Star Security Conference; Speaking Appearance 2007
Participated in advisement on conference topics and direction
IANS Lone Star Security Conference; Speaking Appearance 2007
Intrusion detection/prevention solutions
HFMA; Speaking Appearance 2003
Patient information data security
References upon request or many may be found at LinkedIn.com
.