|
FISERV Corporation (2000 - Present)
|
|
DIRECTOR OF INFORMATION SECURITY
SUMMIT Information Systems (Fiserv Corporation) - Titusville, FL
|
Mar 2002 - Present
|
-
Payment Card Industry Data Security Standard (PCI-DSS)
-
Same as below
|
|
INFORMATION SECURITY OFFICER
Fiserv eCom Services (Fiserv Corporation) - Corvallis, OR
|
Jun 2000 - Jul 2002
|
-
Led on the validation and enhancement of Fiserv’s Security Policy statement to ensure that scope and depth of policy is sufficient to meet the security goals and objectives defined for the
Internet Banking services environment.
- This includes conducting, along with corporate management, ongoing risk analysis for all relevant areas of Fiserv’s operations.
- Participatory role in
developing and implementing enterprise security systems, operational or otherwise that comply with the Security Policy. These systems include: operational procedures, incident reporting and
tracking mechanisms, security profile statements, etc.
- Reviewed and monitored security systems to validate adherence to policy statement.
- Interfaced with all Fiserv Corporate Audit, Federal
Regulators (FFIEC) and third party auditors (SAS70, (CyberTrust formerly TruSecure) ICSA, IDefense, etc.) to provide an understanding of how Fiserv has defined and implemented the Security Policy.
This includes coordination of all third party audits, compilation and presentation to management of audit findings and recommendations, and proposals for implementing agreed upon changes.
- Provided
ongoing communication and education to all staff on the Security Policy and all systems associated with its compliance.
- Developed, maintained and distributed (as deemed appropriate) security
related documentation that outlines our Security Policy and systems, and capitalizes on our strong security focus, for the purposes of educating our clients and vendors.
|
|
PRESIDENT
Sealed Software Solutions – Albany, OR & Kings Hill,
England
|
1998 - 2002
|
-
Design customized Database and Web Enabled Solutions for small businesses.
- Contracted to provide Networking and peripheral solutions to both profit and non-profit service industries.
- Designed
and installed individual PC’s and Servers according to customer requirements.
|
|
DIRECTOR OF INFORMATION SYSTEMS AND SECURITY
Outplacement International - Irvine, CA
|
1999 - 2000
|
-
Conceptualized, built and installed high-performance Servers, LAN, Intranet, WAN and Web site into the Corporate Headquarters and branch offices centralizing necessary files and enhancing
efficiency.
- Established Security protocols and procedures for the enterprise wide operations.
- Initiated a security awareness campaign for all staff and temporaries. Conducted ongoing risk
assessments.
- Supported mobile consulting staff with Remote Access Servers and mobile solutions.
- Created a new database/project management system to enhance customer service/cost control analysis.
-
Instructed former Presidents and C.E.O.'s as part of their outplacement, in the increasing importance of using the Internet and E-mail for the purpose of research and remote
connectivity.
|
|
BRITISH ROYAL NAVY (1987 - 1998)
|
|
INFORMATION TECHNOLOGY SECURITY OFFICER
JMOTS - British Military Headquarters - London, England
|
Dec 1997 - May 1998
|
-
Organized the support services for International Training Conferences dealing with government and foreign authorities on a daily basis encompassing many security requirements as well as multiple
languages.
- Corporate Budgetary Management, tracking expenses and allocating funds resulting in saving of 30%. Departmental project management for security resources, allocation and training.
|
|
IT SECURITY / DOCUMENTARY SECURITY MANAGER
Naval HEADQUARTERS - Falkland Islands, South Atlantic Ocean
|
Aug 1997 - Dec 1997
|
-
Information Technology Officer for all Naval equipment in the Falkland Islands.
- Documentary Security Controller for all classified material held within the Headquarters involving the writing of
regulations as well as standard operating procedures (SOP).
- Facilitated a continued Security Awareness Training program including compliance tests and readiness exercises.
- Managed the Naval Travel
Booking Service, involving extensive project management, while implementing travel plans and allocating funds as required.
- Treasurer of the Naval Welfare Fund.
|
|
SECURITY ADMINISTRATOR / COMMON SERVICES MANAGER
Commander-in-Chief Fleets' Registry - London, England
|
Feb 1996 - Aug 1997
|
-
Directed the support services for the British Forces Joint Headquarters (including British Army and Royal Air Force personnel), through 25 staff providing timely support to over 300 Senior
Military and civilian personnel, including internal auditing, security awareness training, regular compliance testing and top-level project management.
- Planned and organized the amalgamation of two
administrative practices with annual savings of over $400,000.
- Instructed staff in the installation and use of a new computerized database and project management system.
|
|
SECURITY ADMINISTRATOR / IT OFFICE MANAGER
Commander-in-Chief Fleets' Orders Office – London, UK
|
Mar 1995 - Feb 1996
|
-
Led on the implementation and installation of a computerized network, involving electronic data filing, project management, spreadsheets and e-mail facilities, resulting in efficiency gains of
20%.
- Responsible for the control and issue of classified and sensitive material worldwide.
- Planned and oversaw the centralization of support services resulting in an increased output of 60%
Researched, edited and introduced into circulation several publications pertinent to all Naval personnel and affiliates.
|