As Chief Information Security Officer (CISO) for Duke Medicine, I lead the organization's Information Security Office, which provides information security services for all Duke University Health System entities, as well as academic departments, centers, and research institutes in Duke’s Schools of Medicine and Nursing. I am responsible for establishing and managing all aspects of Duke Medicine’s information
As Chief Information Security Officer (CISO) for Duke Medicine, I lead the organization's Information Security Office, which provides information security services for all Duke University Health System entities, as well as academic departments, centers, and research institutes in Duke’s Schools of Medicine and Nursing. I am responsible for establishing and managing all aspects of Duke Medicine’s information security program, including security strategy, governance, risk management, security policies, security awareness, vulnerability management, security event monitoring, and incident response.
I have over 26 years of progressive experience in IT and information security management. Prior to joining Duke Medicine in 2011, I served as the senior manager for Symantec Corporation's Security Advisory Services consulting practice in the US. My previous roles have also included IT management and technical leadership positions with MCNC, which operates the North Carolina Research and Education Network (NCREN), North Carolina State University, and Interpath Communications.
I hold an MBA and B.S. in Physics from North Carolina State University, and am a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and Project Management Professional (PMP). I also hold multiple ITIL certifications.
Chief Information Security Officer @ From November 2011 to Present (4 years 2 months) Senior Manager, Consulting Services @ From June 2007 to November 2011 (4 years 6 months) Lead Consulting Project Manager @ From March 2006 to June 2007 (1 year 4 months) Director, IT and Data Center Services @ Oversaw all aspects of developing data center hosting service offerings for the North Carolina Research and Education (NCREN) community, including strategic and tactical planning, budgeting, business development, P&L responsibility, project management, and managing a staff of 10. Also provided executive management for corporate IT functions. Facilitated and participated in collaborations with university partners on advanced technology initiatives such as grid computing. Frequently called upon to make presentations at board meetings and academic conferences. From November 2001 to March 2006 (4 years 5 months) Director, IT @ Managed a team of 7 IT professionals responsible for designing, building and supporting the data center and enterprise IT infrastructure for a start-up cable TV multi-service organization. Note that Carolina Broadband shut down in July 2001 due to market conditions. From November 2000 to July 2001 (9 months) Senior Manager @ In 2000, built 6-person information security team to address internal and customer security requirements. Developed corporate information security policy, coordinated incident response activities, and handled external audits. From 1998 to 1999, managed the Systems Engineering group, which at its peak consisted of 23 IT professionals. Played a key role in the design and build-out of Interpath's 15,000 square foor data center. Provided leadership for teams that developed carrier-class e-mail and web hosting services. Assisted product managers in developing pricing and SLAs. Acted as pre- and post-sales technical contact for managed hosting services. From March 1998 to November 2000 (2 years 9 months) Manager, Corporate Information Services @ Provided management and technical leadership for the 6-person corporate information services group. Oversaw help desk program that supported 200 users. Completed a program to re-engineer the campus LAN across 3 buildings with a switched Ethernet architecture. Impelemented a centralized user account management system. From May 1997 to February 1998 (10 months) Senior Systems Engineer @ Served as a contractor on an international team that rolled out a computing platform for statistical research at GlaxoWellcome. Implemented systems administration best practices for Sun E5000 server and Ultra 1 desktops. Tested and documented systems for FDA 21 CFR Part 11 validation procedures. From January 1997 to May 1997 (5 months) Systems Programmer @ From 1994 through 1996, led systems teams of 2 to 4 staff that were responsible for operational systems support of Project Eos/Unity, a university-wide distributed UNIX environment with over 50 servers, 1,000 workstations and 30,000 users. This position started in the College of Engineering, and was moved to the campus Information Technology Division in 1996. From 1992 to 1994, served as part of the systems team that established Project Eos as the primary academic IT platform in the College of Engineering. From 1986 through 1991, provided systems programming support for IBM mainframe systems with the Information Technology Division. Note that work was part time from 1986 through May 1989 while I was a full time undergrad student, but I was hired as a full time employee in June 1989 (after graduation). From August 1986 to December 1996 (10 years 5 months)
MBA, Business Administration @ North Carolina State University From 2002 to 2004 B.S., Physics @ North Carolina State University From 1985 to 1989 Chuck Kesler is skilled in: Information Security Management, Vulnerability Management, Security Assessments, Security Awareness, Vulnerability Scanning, ITIL v3 Foundations Certified, Information Security, Security, Project Management, CISSP, CISM, PMP, Higher Education, Healthcare Information Technology, Data Center
Looking for a different
Get an email address for anyone on LinkedIn with the ContactOut Chrome extension