Director Information Security & Information Technology @ XIUS-bcgi - (Boston Communications Group)
Information Security Professional and skilled architect in designing and managing IT Security, infrastructures & programs for health care institutes, eCommerce payment portals, on-line banking and high volume transaction processing platforms. Adept at leading 24/7 mission critical operations management, customer service support, and help desk operations. Experienced in managing multiple facilities and employees located globally. Experienced with domestic
Information Security Professional and skilled architect in designing and managing IT Security, infrastructures & programs for health care institutes, eCommerce payment portals, on-line banking and high volume transaction processing platforms. Adept at leading 24/7 mission critical operations management, customer service support, and help desk operations. Experienced in managing multiple facilities and employees located globally. Experienced with domestic and international operations.
Exceptional knowledge of principles, theories, techniques and practices of modern IT Auditing to conduct audits, evaluations, and other reviews related to data confidentiality, integrity, availability and , document results for regulatory compliance. In-depth knowledge of Payment Card Industry Data Security Standards, (PCI DSS) , Health Insurance Portability and Accountability Act (HIPAA), Sarbanes Oxley (SOX), Statement on Auditing Standards (SAS70 - SSAE 16), and the technical regulatory requirements and business processes surrounding these stringent controls.
A proven track record for delivering quality customer service through designing and maintaining continuous improvement programs that avoids service outages where possible and expedites solution of those that cannot be totally eliminated. Proactive, goal-focused service professional with demonstrated talent at creating and leading motivated teams to develop customized IT systems and business applications that meet and exceed client needs.
Specialities: Information Security, IT Auditing, Cyber Security, Forensic Analysis, Spy-ware/Malware prevention / removal, Intrusion Detection / Prevention, Security Architecture Design, Technology support, LAN/WAN Engineering, Application Management, Disaster Recovery Planning, Voice/Data Comm., Strategic / Project Planning, Data Center Management, Operations Support, Compliance (PCI-DSS, SOC2, SOX, HIPAA, MA201.CMR.17) Framework (ITIL, COBIT) Standards, ( NIST, ISO17799)
Information Security Officer @ Responsible for all information security activities across over 30 locations including the main hospital campus. Managing all external vulerability and penetration testing, control and regulatory readiness for HIPAA, PCI DSS, CAP, and Financial controls.
Managing day to day security operations by reviewing all security related changes across multiple data centers and multiple EMR platforms. Work side by side with the privacy officer & compliance officer in all aspects of privacy and security investigations.
Maintaining all technical, administrative, and physical security controls to protect the confidentiality , integrity, and availability of all PHI, PII, PCI DSS data for the organization.
Managing information security risk assessments, vulnerability assessments, and security monitoring. Creating security policies, awareness training, and security auditing for the organization including all affiliates.
Performing risk review on all Bio-Medical equipment providing remediation where possible and risk reduction to cover vendor product gaps.
Provide security mentoring to security & technology teams through maintenance & support of all clinical systems, end-user computing, networking infrastructure , and IP telecommunications.
Providing security architecture & design of multiple critical path implementations including data center virtualization with VMware ESX platform and thin client computing with Citrix Xen Desktop platform / Imprivata Onesign SSO. From October 2008 to Present (7 years 1 month) Senior Consultant @ Utilizing various third party tools such as Nessus, N-Stalker, Acunetix, Shadow Security Scanner, MSF, Burpsuite, Nexpose, and a host of others including tools on Kali Linux, Perform various security reviews, penetration testing, and vulnerability assessments for financial and other regulated institutions .
Perform Malware, Virus removals, and security assessments for companies. From May 2006 to September 2015 (9 years 5 months) Director Information Security & Information Technology @ Oversee company-wide global IT , Networking, and security efforts.
Direct cross functional teams in global infrastructure projects and lead successful implementations of new products. Manage the security and networking infrastructure for the entire company’s business portfolio and primary revenue stream.
Provide leadership and project management for the Corporate Information Technology, Networking, Security, and Telecommunications groups. Responsible for the day to day operations of the corporate infrastructure, communications and end user support in a high SLA telecommunications environment. From April 2002 to August 2008 (6 years 5 months) Director, Information Technology @ Design and implement IT processes and procedures and perform cost benefit analysis on all recommended strategies. Supervise daily activities of the Corporate IT Helpdesk and Corporate Systems Administration, Wan Engineering, and Information Security. Direct continuous improvement and Roadmap for all End User Applications. Maintain vendor relationships and continue to scrutinize purchasing and maintenance contracts Manage HRIS and maintain the Peoplesoft system. From April 2000 to June 2002 (2 years 3 months) Manager, Information Technology @ Provided leadership and project management for the Corporate Information Technology and Telecommunications groups. Responsible for the day to day operations of the corporate infrastructure, communications and end user support. Manage and maintain GreatPlains ERP and Financials. From July 1998 to 2000 (2 years) Network Administrator @ Supported the general administrative networks including finance, payroll and human resources. Responsible for the day to day operations, platform enhancements for servers and end user desktops. Brought onboard to support the administrative network and end users From April 1997 to July 1998 (1 year 4 months) Manager, Customer Service @ Manage customer service division for medical devices and drive the RMA unit. Assist in maintaining IT infrastructure,
Service automated manufacturing equipment.
Mechanical engineering in the critical life support monitoring division. From March 1987 to September 1997 (10 years 7 months)
CISSP, Computer and Information Systems Security/Information Assurance @ ISC2 - CISSP From 2015 to 2015 HIPAA Security @ Supremus Group From 2009 to 2009 CISSP, MCP, CNA, ITIL @ Boston University Kenneth Double is skilled in: Security, Cyber Security, Information Security, Computer Security, Vulnerability Assessment, Disaster Recovery, Incident Response, Information Security..., PCI DSS, IT Management, IT Audit, Telecommunications, Forensic Analysis, HIPAA, Data Center, VMware, IT Risk Management, Project Management, Penetration Testing, Enterprise Software, Servers, CISSP, VMware ESX, Solution Architecture, Business Continuity, Leadership, Vendor Management, Regulatory Requirements, Cross-functional Team..., IT Operations, Malware Analysis, Metasploit, NeXpose, Burp Suite, Backtrack, OWASP
Looking for a different
Get an email address for anyone on LinkedIn with the ContactOut Chrome extension