IT Risk Management: * Implementation of security and risk management strategies * Implementation and execution of risk assessment and analysis methodologies (COBIT / ITIL / ISO) * Integration of security process and controls into SDLC and other life cycle processes. Application Security: * Development and management of application assurance programs. * Implementation of dynamic and static analysis tools * Application vulnerability remediation programs * Secure SDLC program development * PCI-DSS Information Security Governance & Program development: * Development of information security strategies * Enterprise Information Security posture assessment * Implementation of information security governance programs * Metrics / KPI analysis and development Program Management: * Management of large scale Infrastructure projects * Internal / external resource management * Project / Program governance and compliance * Contractual performance / vendor assessment Incident Management: * Coordination and execution of DR/BCP testing * Management of security and operational risk events * Implementation and management of RCA processes Training * Designing and delivering risk management, security awareness and compliance training Systems Analysis, Business Analysis & Project Management: * Managing technical projects in varying size and scope * Leading teams of development and operational staff * Organizing and managing business and technical JAD sessions. * Requirements management * Business process engineering * Management of software deployments and enterprise level software implementations * Management of UAT / Testing processes and programs

VP - CISO @ From May 2015 to Present (8 months) Chief Information Security Officer (CISO) @ From June 2013 to May 2015 (2 years) Chief Information Security Officer (CISO), 21st Century Insurance @ From March 2011 to September 2013 (2 years 7 months) Software Product Manager @ From February 2010 to March 2011 (1 year 2 months) Annuities Application Development @ From May 2007 to February 2010 (2 years 10 months) AVP - Investment Management Services East @ From August 2005 to May 2007 (1 year 10 months) AVP - Operational Risk Manager / Deputy to the CISO @ From April 2002 to April 2005 (3 years 1 month) Business Analysis & Portfolio Operations @ From February 2000 to April 2002 (2 years 3 months) Investment Operations @ From 1998 to 2000 (2 years)