| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
Stamford CTEmail: EMAIL AVAILABLEMobile: PHONE NUMBER AVAILABLEProfessional AffiliationsStreet Address 2022 Chair, Chief Technology Officers Council - Connecticut Hospital Association2015 Present Member, CISO Council - Connecticut Hospital AssociationStamford Health Leadership2019 Present: Chair, Technology Innovation Committee2014 Present: Chair, Information Security Governance Council2014 Present: Co-Chair, Information Services Steering Committee2016 Present: Member of Enterprise Risk CommitteeCareer Summary2010 - Present Stamford Health System2014 - Present - Executive Director Information Services & Chief Information Security Officer2010 - 2014 - Director, Infrastructure Services & Information Security Officer2009 - 2010 Research Search Company- Chief Technology Officer2008 - 2009 Grantham, Mayo and Van Otterloo- Head, Global Infrastructure and Information Security Officer1996 - 2008 GE Asset Management2003 - 2008 - Chief Technology Officer / Information Security Officer1999 - 2003 - Director, Enterprise Infrastructure, Operations and Information Security1996 - 1999 - Manager, Infrastructure and Security1989 - 1996 The Prodigy Service Inc.1992 - 1996 - Manager Infrastructure1989 - 1992 - Network AnalystEducation and Qualifications1988 Iona College, New Rochelle NYBachelors Business Administration, Management Information SystemsCertificationsCISSP Certified Information Systems Security ProfessionalSix Sigma Certification (Green Belt)HonorsGE Above & Beyond Acknowledge efforts for meeting regulatoryProfessional ExperienceJune 2010 - Present Stamford Health System, Stamford CT2014: Executive Director, Information Services & Chief Information Security OfficerIn this dual faceted role, serve as the CTO and CISO responsible for strategic planning and operational oversight for enterprise technologies and the cybersecurity program for a $900M Healthsystem within Fairfield Connecticut.Provide thought leadership to a team of 70 technology professionals on the execution and post support of Stamford Healths strategic initiatives. This team has overall responsibility for cybersecurity, infrastructure and desktop engineering, data warehouse, Project Management Office (PMO), system integration, business resilience and IT operations.As Chief Information Security Officer, lead in the design and execution of a multi-year strategic initiative to improve on the five pillars of the NIST CSF framework (Identify, Protect, Detect, Respond, Recover). Under this program advanced solutions like SOAR (Security Orchestration Automated Response), privileged access management, and agentless MFA were introduced to enhance defenses and shorten the time to detect and respond. Adopted VMwares Cloud offering to improve upon system recovery times shortening RPO/RTO from 8 hours to 60 minutes. Stood up a business resiliency program to formalize business continuity efforts and streamline system recovery efforts.Strategy & PlanningCo-chair the information security governance process which oversees the organizations security strategies and execution.Lead strategic security planning to achieve business goals by prioritizing initiatives and coordinating the evaluation, deployment, and management of current and future security technologies.Develop and socialize information security strategies, associated plans and progress to executive leadership team.Lead a newly formed business resiliency program which oversees disaster recovery and business continuity planning, testing, compliancy audits, and enhancements.Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and identity access management based on regulatory requirements and industry-standard best practices.AccomplishmentsUnder a three-year cybersecurity strategy:Introduced SOAR which analyzes over 1.5 billion events per month for abnormal or suspicious behaviors which may be associated with Ransomware or other security incidents. Upon detection, alerts are sent for investigation and if warranted, remediation. This technology has reduced the time to detect/respond from 8 hours to 10 minutes.Implemented Privileged Access Management to eliminate local admin access, whitelist endpoint and server-side applications, and alert upon detection of suspicious user behaviors.Revitalized a cybersecurity governance process enlisting the participation of our senior leaders, having them become stewards of the cybersecurity program, promoting awareness, training as well as overseeing efforts and progress.Overseeing a newly formed Business Resiliency program tasked with the top-down development of Business Impact Assessments, the formulation of continuity plans and ongoing testing and education within each department. Under this same program, all disaster recovery planning and testing are governed.Serve as Executive sponsor for a Data Governance program providing leadership and support for the protection, integrity and quality of Stamford Health data.Leading a technology innovation council in the exploration and assessment of emerging technologies to enhance patient care, promote efficiencies, and capture expense reductions. Under this program, Stamford Health has adopted virtual reality for clinical simulation training, and pain management. Including various artificial intelligence solutions and Robotic Process Automation technologies.Introduced Robotic Process Automation to reduce labor costs associated with repeatable tasks and improve turn-around times and efficiencies. Within two years, this program captured operational savings of $950k.Transformed the culture of the IT Department by fostering a culture of trust, teamwork, and comradery. Coordinated team building events, and educational sessions to eliminate silos and build cross-team relationships. This program offered a reduction in attrition levels from 30% to less than 5%.Established a Project Management Office to centralize project management and overall responsibility for managing the enterprise project portfolio.Served as technology architect in the construction of a 640k Sq. Ft. hospital leading in the selection of information technology and the associated design and implementation efforts.2010 2014 Director, Infrastructure Services and Information Security OfficerLead a team of 40 professionals responsible for cybersecurity, engineering, service desk and IT operations.2009 - 2010 Resource Search Company New York, NYChief Technology Officer / Information Security OfficerProvided consulting services with assisting clients with developing technology and cybersecurity strategies in support of their business objectives.2008 - 2009 Grantham, Mayo and Van Otterloo, Boston MaHead, Global Infrastructure and Information Security OfficerAs information technology leader was tasked with identifying emerging technologies to enhance trading efforts. As security officer, formulated and implemented an information security framework to support business strategies.Provided leadership to a team of 40+ professionals in the execution of technology strategies, Information security, infrastructure engineering & support and disaster recovery efforts for a $300 Billion asset manager located across five countries.Introduced an information security program and framework in partnership with the internal legal team to address State and regulatory requirements.Led a cross-functional team in formulating a multi-year Data Protection program to address SAS 70 inefficiencies and to address new Massachusettss regulatory requirements. This team created data classification guidelines and formulated a process to implement appropriate data protections.1996 - 2008 GE Asset Management, Stamford, CT2001 - 2008 Chief Technology OfficerOversaw the technology strategy to align with the global business strategy. Responsible for Information security policies, processes and technologies.Managed a 125-person global engineering and operations team in support of business operations for a $200 billion asset management firm.Oversaw the development and testing of the business continuity and disaster recovery programs.Member of GE Companys Global Security Council responsible for assessing new security technologies, policies and technology standards for enterprise adoption.Partnered Chief Compliance Officer and Senior Legal counsel in the interpretation of regulations and the subsequent engineering of technical solutions to satisfy the requirements for; Sarbanes Oxley, eDiscovery, state audits, and document retention.Consolidated the IT support functions into a Center Of Excellence operation utilizing a Follow the Sun model to support a $6 Billion daily global transaction volume. Eliminated redundant roles, processes and simplified support capabilities resulting in 40% cost reduction of approx. $1.2mCo-led the Enterprise Architecture committee responsible for development standards and oversight of all application development efforts.1998 2001 Director, Enterprise Infrastructure and Operations1996 1998 Manager, Network and Telecommunications1989 1996 The Prodigy Service Inc., White Palins NY |
