FINANCIAL SERVICES COMPANY
Multi-billion dollar broker-dealer advisory and financial services organization
2011-2013
Information Security Officer

• Information Security Governance: Created an information security risk management program and risk register using SharePoint for managing prioritization of risks, presentation of metrics and tracking of resolution activities. This resulted in an action plan that led towards the remediation of security risks that had not been previously visible to management.

• Information Security Controls: Implemented multiple controls based on the results of information security risk register program, including security vulnerability assessment technology, penetration testing and patch resolution processes. Additionally, improved existing controls and management of external managed security vendors to increase security posture of the organization.