Experience

• The University of Memphis

  Adjunct Professor

  The University of Memphis computer science department is internationally recognized for its high-quality research contributions and degree programs for both graduates and under-graduates.
  Accomplishments:
  • Developed online courses for Security Training for use by the US Department of Homeland Security and FEMA.
  • Developed an Applied Computer Science Masters Program with focus areas that include Information Security and HIPPA compliance.
  • Lectured graduate and undergraduate courses including: Computers in business and society, Programming Languages, Distributed Systems, Operating Systems, Applied Computer Science, Computer Forensics, and others.
  • Developed courses for online education on topics that include information security, networking, network security, forensics, software development, and applied computer science.
  • Developed bootcamps on IT Governance, Security, Python, and fundamentals of programming for non-IT professionals.
  • Assisting research projects on topics including super-computing, operating systems, security, forensics, DNA computing, and data analysis.

• Discover Financial Services

  Sr Consultant

  Discover is a multi-billion dollar global financial enterprise providing student loans, credit services for Discover and Diners Club brands, Discover Bank, Payment services, Pulse banking network, and home-mortgage services.
  Responsibilities and Accomplishments:
  • Chief responsibility is to provide "Security Thought Leadership" to Information Security VPs and directors.
  • Developed security standards and risk control matrix compliant with COBIT, PCIv3, FFIEC, and other regulatory requirements.
  • Developed metrics for all levels of leadership (Board of Directors, Sub-Committees to the BoD, Sr. Leadership, Directors. and others)
  • Developed a parallel (high performance) data analytics architecture for security metrics using R with full integration with enterprise data warehouse solutions.
  • Responsible for communicating Information Security risk to multiple executive committees.
  • Responsible for designing and leading the development of metrics for Discover's Information Security organization and IT business unit.
  • Responsible for consulting on key business projects where success in Information Security is critical.

• Discover Financial Services

  Security Architect

  Discover is a multi-billion dollar global financial enterprise providing student loans, credit services for Discover and Diners Club brands, Discover Bank, Payment services, Pulse banking network, and home-mortgage services.
  Responsibilities and Accomplishments:
  • Performed maturity assessment for enterprise policies and standards.
  • Delivered enterprise architectural solutions to technical leadership for international credit processing services for Diners Club.
  • Developed plan for security and compliance acquisition assessments.
  • Delivered a security and compliance assessment of an international acquisition.
  • Consulted with business and technologies leaders to build secure, PCI-compliant applications for credit processing services.
  • Developed security standards for several products including Apache, Tomcat, JBoss, and WebSphere.
  • Collaborated with QSAs, compliance, and technology teams to collect evidence and improve enterprise designs in order to meet compliance objectives.

• FedEx

  Technical Advisor

  FedEx is a Fortune 100 international enterprise which provides global transportation services, supply chain services, international commerce trade tools, and print services. The FedEx enterprise employs over three-hundred thousand globally.
  Accomplishments:
  • Architected an enterprise test environment which provided applications and infrastructure testing capabilities in context of production-like traffic.
  • Consulted with PCI, SOX, Internal, and external auditors to architect solutions compliant with PCI, SOX, and ISO.
  • Consulted with key vendors such as Checkpoint and F5 in order to improve their products and shape them to more closely fit business needs.
  • Team / thought leader in redesigning of enterprise data-centers with the goal of achieving compliance more efficiently.
  • Architected global perimeter networks which include five enterprise datacenters distributed domestically & internationally which contain ten-thousands of servers.
  • Developed an acquisition program which includes acquisition assessment and integration planning.
  • Performed assessments of multiple domestic and international acquisitions, developed necessary integration plans, and led teams to accomplish integration.
  • Integrated firewall and perimeter technologies for global.
  • Designed a robust firewall architecture that allowed for autonomy in each region and data center while also providing necessary enterprise oversight / governance.
  • Team leader of 12 responsible for establishing an enterprise perimeter security team that provided research of future threats, engineering of solutions to existing problems, and operational components.
  • Assisted enterprise architects and developers in designing, architecting, and deploying applications with appropriate security & compliance controls.
  • Provided designs, solutions, and evidence to compliance and audit teams.
  • Developed policy and procedures for topics pertaining to information security.
  • Participated in the governance programs.

• ServiceMaster

  Chief Security Architect

  ServiceMaster is a multi-billion dollar, international company that provides maintenance and insurance services to home and business owners.
  Accomplishments:
  • Led a team of architects in developing policies, procedures, and solutions for securing business projects from idea to implementation.
  • Consulted with PCI, SOX, Internal, and external auditors to form solutions compliant with PCI, SOX, and ISO for new and existing products.
  • Consulted to design a security organization capable of meeting regulatory, PCI, SOX, and ISO obligations as well as business objectives for security.
  • Performed a maturity assessment of the Information Security organization to identify gaps and priorities for future development of the security program.
  • Produced designs for applications and infrastructure within subsidiaries and franchises that were compliant with a wide range of regulatory controls.
  • Developed a governance process for project reviews for reviewing projects for compliance and security issues and which is compatible with existing SDLC.
  • Developed company policies for the enterprise for SOX & PCI compliance.
  • Published content on Information Security awareness teams to 30K users.
  • Consulted on construction and dissemination of executive directives pertaining to security and compliance.