I'm looking for a challenging INFOSEC manager or security engineering role in the Dallas, Texas area. A skeleton resume is provided below. Thanks, chuck ************************** RELEVANT SKILLS Information Security - Expert in information security program development and management, security operations, security technologies and security incident response. Engineering and Computer Science - Real world security and systems engineering experience enhanced by a solid education garnered in a demanding postgraduate computer science program. Leadership and Management - Over 20 years of experience leading people and managing resources. PROFESSIONAL EXPERIENCE Independent Consultant December 2001 to Present Provided a variety of information security consulting services including policy review and preparation, incident response assistance, general security recommendations, sales support and security engineering. Director, Security EngineeringVice President, Security May 2000 to November 2001 Created, implemented and executed a comprehensive information security strategy for a 200+ person global Application Service Provider (ASP). Developed information security program from scratch, passing independent certification with high praise after only 12 months. Drafted and implemented security policies based on international standards (ISO17799) and best practices. Designed procedures and identified information protection tools and methods. Consulted with executive management, engineering staff, sales force, customers, vendors and employees on all variety of security issues. Served as lead systems engineer and program manager on security projects. Built a multi-faceted global security team. Collaborated with system, network and platform engineers to provide security oversight for engineering decisions. Crafted security training and awareness program. Investigated security incidents. Implemented personnel and administrative security initiatives. Developed internal penetration testing program. Spearheaded corporate efforts to obtain independent certification. Served as lead member of Change Control Board. Developed external relationships. Simultaneously served as acting Vice President, Operations (May - September 2000), directing engineers, administrators, help desk representatives and support staff. Took aggressive steps to transition a troubled production data center into a stable, reliable operation. Instituted repeatable procedures. Worked directly with customers at the executive level to resolve production issues. Implemented change management and configuration control programs. Conducted HR actions of all types. Senior Systems Engineer July 1999 to May 2000 Provided systems and security engineering expertise in a LAN/WAN networking group supporting a global real-time operation. Installed, configured, evaluated and researched remote display technologies, Virtual Private Networks, application response time profilers, network probes, and group collaboration tools. Conducted trade studies. Drafted in-depth technical reports. Developed and documented systems requirements. Supported business development efforts. Completed comprehensive systems engineering training pipeline. Director, Security Operations December 1996 to June 1999 Guided global Computer Incident Response Team and Security Operations Center, supporting organizations worldwide. Overcame 80 percent manning shortfall and severe budget limitations to transition the operation into a successful, dynamic, and responsive 24x7 team. Executed intrusion detection system strategy for 300 organizations spanning four global network operations centers. Upgraded network vulnerability analysis effort, expanding surveys from 12 to 300 annually. Conceptualized, organized and guided "ethical hacker" team to assess worldwide computer security capabilities and readiness by aggressive network penetration testing. Designed procedures for response to computer security incidents that increased from 36 to 12,000 annually. Coordinated with federal law enforcement officials for criminal investigations. Implemented aggressive security awareness and advisory initiative. Constructed effort to continuously verify policy compliance of 500 web sites. Provided network security research, consultation and recommendations to very senior decision-makers. Delivered presentations to audiences ranging from presidential commissions and senior military officials to large groups of system administrators. Gave interviews to international, national and trade journalists. Planned, justified and executed $3.5M budget. Led up to 44 managers, engineers and technicians. Director, IT Implementation October 1994 to November 1996 Managed system development projects and resource acquisition efforts for $2M in globally deployable IT systems. Spearheaded development, acquisition and training of new technology architecture initiatives. Led development and evaluation of prototype systems and oversaw their operational integration. Directed strategic planning to determine roles and missions of 13 branch organizations. Controlled varied and complex training programs for 1000+ technicians. Senior Operations Manager December 1985 to July 1992 Managed technical and operational resources for mobile units operating throughout the Pacific Ocean and Middle Eastern areas. Led up to 25 technicians and subordinate managers. Administered budget. Managed UNIX-based operations support system with high system reliability. Certified Physical Security Manager and Special Security Program Manager. ADP Security Manager. EDUCATION Master of Science (MS) in Computer Science, 1994. Specialization in Computer Systems and Architectures. Emphasis on networks. GPA: 3.66 out of 4.0. 127 quarter-hour credits. Bachelor of Business Administration (BBA) in Management Information Systems 1983 (with high honors). Additional coursework in MBA program. GPA: 3.78 out of 4.0 Other education and training: Security Manager; Senior Security Manager; Special Security Administration and Physical Security; Investigations; Justice. ADDITIONAL INFORMATION Organizational affiliations: High Technology Crime Investigation Association; High Tech Crime Consortium; FBI InfraGard; IEEE Computer Society; Phi Kappa Phi and Beta Gamma Sigma honor societies. U.S. Government Security Clearance: Top Secret based on SSBI/SBI with polygraph, 1975-1999.
