2.1 billion dollar financial services institution providing accidental and health insurance and financial planning
Director of Information Security & Business Continuity

• Information Security Policies/Standards: Identified gap in security requirements and created ISO 17799 compliant policies and standards. These policies were later aligned to ISO 27001, creating a consistent, actionable list of requirements that directly led to the improvement in organizational security.

• Information Security Controls: Implemented multiple information security controls, directly improving the organizations security. This included the implementation of laptop encryption, vulnerability scanning, centralized logging, email encryption and other enterprise wide initiatives.

• Business Continuity: Directly managed and led reimplementation of previously failed business continuity/disaster recovery program. Refocused program on internationally recognized standards with an emphasis on simplicity and rapid recovery. After six months, executive management recognized the transformation and the confidence of executive management was increase dramatically.

Nominated for Society of Information Management’s Leader of the Year for 2008