Business Information Security Officer at Travelers
Hartford, Connecticut Area
I am an Information Security Professional with over 10 years experience in the Information Technology field. As a security professional, I have supported companies and agencies in the Government, Healthcare, and Defense industries. I have a Masters in Information Systems Management from Carnegie Mellon University and was awarded my Certified Information Systems Security Professional (CISSP) certification in November of 2014. At Travelers, I am the Claim Business Information Security Officer. I serve as Security Program Director for Claims' Secure Application/Systems Development (SDLC), Data and Privacy Management, Governance, Business engagement and IT alignment. Formerly, I led penetration tests and vulnerability assessments for multiple federal agencies including the Department of Health and Human Services, Center for Medicare and Medicaid services, and Federal Aviation Administration. I was also involved in conducting security research and development at MITRE's Cyber Security Operations Center to protect against advanced persistent threats. In the healthcare realm, I supported the Information Security Officer at Montefiore Medical Center on setting the security strategy, policy, and risk management process. I interfaced with the organizations' Infrastructure, Network, and Clinical Application teams to ensure HIPAA/HITECH compliance across the enterprise. I helped Montefiore Health Systems achieve their first SSAE 16 SOC2 attestation. I led application and mobile security testing and directed development of the Security Operations Center for Incident Response, Vulnerability Management, Intrusion Detection/Prevent systems.Outside of work, I co-Lead the Hartford Chapter of OWASP (Open Web Application Security Project) and have been involved with their application hacking challenges since 2010.