Strong leadership skills with leading multiple projects compromised of cross-functional domain teams
Excellent collaboration skills with working groups, internal guilds, and employee focus/resource groups
Trusted mentor both formally and informally for people working to get into Information Security as a career
Worked in senior technical roles and serving as an advisor to executive leadership and board members
Exceptional communication skills, both written and verbal
Exceptional presentation skills to both technical and non-technical audiences
Served as a leader role in corporate IT security initiatives and adoption of new technologies across multiple departmental boundaries
Concentration centered around risk and risk management leveraging regulatory compliance measures including HIPAA, ISO 27000, NIST, FISMA, and SOC standards
Focus on security architecture, software/application security, leveraging DAST, SCA, and cloud scanning technologies
Familiar with multiple programming and scripting languages: Python, PowerShell, Git, Terraform, CloudFormation
Strong background with AWS Cloud technologies
Strong experience with implementation and administration of security solutions across endpoints, network, and applications
Strong experience and knowledge with SIEM and log management tools
Vulnerability and penetration testing with Burp Suite
Very active in the infosec community with emerging technologies and security threats
Excellent at building relationships and parterships across company departments and with product vendors
Memberships
Iowa Alliance with InfraGard, a partnership between the FBI and private sector
Des Moines chapter of Information Systems Security Association (ISSA)
SecDSM, a local community of information security professionals
SecKC, a local community of information security professionals
The Open Organization of Lockpickers (TOOOL) DSM Chapter
Center for Internet Security (CIS) Community
SysAdmin, Audit and Network Security (SANS) Community
Relevant Experience
Cloud visibility and scanning tools such as Prisma Cloud and Lacework
SIEM and logging aggregation tools: Splunk, Logz.io and ELK/Opensearch
Experienced with AWS services including but not limited to network and security services
Experienced with endpoint protection tools: Bitdefender and Carbon Black
Experienced with Product Services Automation (PSA) and issue tracking (JIRA) tools.
Experienced with Cloud and On-Prem Network Equipment: AWS WAF, Signal Sciences, Cisco Meraki
CI/CD and software development pipelines Bitbucket Pipelines and AWS CodeBuild
Fluent in Linux, MacOS and Windows Operating Systems