Want your profile here?

Becoming a member is easy! works with you to help you advance your career by putting you directly in front of tens of thousands of recruiters in your field. Sign up today on

RssCISSP Information Security Specialist

My ideal job is with a medium sized corporation where security issues have strong upper management support. I prefer a team environment but can also work alone effectively. Variety is the spice of life and keeps the technical skills sharp. I enjoy the technical aspects of the job but would like the opportunity to transition into a management position as an Information Security Officer or Manager of an Information Security Department. The corporation would have an emphasis on training to keep the skills and the knowledge current with today’s environment. Recognition for a job well done is always appreciated.

Application Support

Mesquite, TX

About Me

Work Experiences

12/2005 - 1/2009


Individual Contributor

  • Recruited to establish Sarbanes-Oxley (SOX) compliance and oversee the governance initiative for the HR and Financial systems to mitigate risk. Interfaced with cross-functional teams to resolve audit findings and develop new procedures and processes. Evaluated security tools, interfaced with vendors, and prepared recommendations for management. Provisioned PeopleSoft users and resolved security issues. Monitored database reports daily and ensured resolution of security incidents. • Resolved 75% of on-going problematic audit issues in eight months. • Developed and coordinated Security Access Control and Authentication Quarterly Reviews with 123 departments for PeopleSoft and Oracle which reduced access control issues by 40%. • Authored numerous procedures, standards, and processes in support of Governance to ensure regulatory compliance and resolve audit issues. • Re-engineered PeopleSoft and Oracle security administration, as well as cross-trained personnel. • Initiated centralized repository for compliance and security documentation.

8/2005 - 12/2005

Encore 2

Contractor / Freelance

  • Completed three month contract as an Information Security consultant to draft and implement corporate gold standard security policies, standards and procedures. Interviewed personnel and facilitated meetings to gather current practices and procedures and to determine gaps between the old and new standards and procedures. • Created and implemented policies, standards, and baseline configurations for Oracle, DB2, SQL Server, and Windows 2000/2003 for Sarbanes-Oxley (SOX) compliance to mitigate risk.

3/2004 - 8/2005


Individual Contributor

  • Conducted datacenter and application IT audits as part of an Audit team to ensure compliance with company and technical standards, regulatory requirements and best business practices. Audited all areas of the business: facilities, business continuity, change control, information security, operations, SOX compliance, problem/risk and vendor management.

3/2001 - 3/2005

Parkland Hospital and Health System

Individual Contributor

  • Lead midrange analyst responsible for strategic oversight and coordination in establishing best practices and evaluating the security infrastructure in a multi-platform network environment. Conducted risk assessments for HIPAA compliance. Consultant for application security reviews, incident response, disaster recovery, security infrastructure and architecture design. • Performed gap analysis to meet HIPAA regulations and installed compliance measures. • Instrumental in establishing segregation of duties for PeopleSoft security administration. • Created security awareness program and employee security manual for hospital. • Designed, developed and implemented information security policies, standards, procedures, guidelines, and baselines in an enterprise with 7,400 employees/providers/students.

10/1993 - 3/2001

Bank of America

Individual Contributor

  • Led Departmental Project Management analysis responsibilities for medium to large projects such as Y2K, Disaster Recovery, User-Access Conversion Project, Bank of America/NationsBank Merger Project in a multi-platform network environment. Challenged to create and install security policies, standards, and baselines for all midrange platforms. Evaluated, tested and wrote proposals on security tools for compatibility with network and security risks. Heavy customer and technical support interface for user requests, risk assessments, transition projects, and system upgrades with cross-departmental teams. Application Developer and Support for mainframe and midrange systems. • Authored and implemented security policies, standards, and baselines for all midrange platforms – UNIX (HP, AIX, Sun Solaris, and DEC), STRATUS, Tandem and AS/400. • Received 2000 Customer Experience Leadership Award for quality customer service as determined by the user community. • Awarded the 24X7X365 Award for exemplary Project Management 1999 by the Information Security Management. • Established and maintained Hyperchannel encryption transmissions for critical bank interfaces. • Formulated and tested disaster recovery plans quarterly for midrange systems. • Led JAD sessions and gap analysis to facilitate information gathering for high corporate impact projects such as Y2K, the Bank of America/Nations Bank merger, and other bank acquisitions. • Successfully installed security upgrades and PowerBroker configurations on 645 UNIX boxes and five STRATUS boxes in a client server environment with cross-functional systems.