Technologies & Tools

  • Security Frameworks: NIST, Australian Signals Directorate ACSC Essential Eight, C2M2

  • Zero Trust Architecture Security Program

  • Cloud DevSecOps Security Program

  • Operational Technology Cybersecurity Program

  • Incident Response User End Point Behavior Analytics (Exabeam XDR)

  • Security Orchestration Automation and Response (SOAR) Swimlane implementation

  • Enterprise Cyber Vault Data Recovery Solution

  • Firewall Automation

  • Palo Alto IPS/IDS Wildfire network malware prevention

  • Enterprise Certificate Management

  • Cloud Access Security Broker (CASB)

  • Threat Intel Platform (TIP) Anomali

  • Vulnerability Management systems – Enterprise Tenable scanning solution integration with ServiceNow

  • Enterprise Identity Access Management Program (SailPoint)

  • Enterprise End Point Security MS MDE migration from Carbon Black / Bit9

  • NERC CIP Compliance Records Management (SigmaFlow)

  • Enterprise Privileged Access Management (CyberArk)

  • Enterprise Log Management (Splunk)

  • e-Discovery RelativityOne SaaS migration

  • Forensics Inside Threat Infrastructure

Management Experience

Cybersecurity Program Manager

|Sempra Energy

  • Responsible for the enterprise Cybersecurity program portfolio

  • Continuous evaluation of Cybersecurity strategic capabilities for enterprise IT and OT systems

  • Development of 3-year Cybersecurity technology road map prioritized and aligned with strategic capabilities objectives aligned with NIST, C2M2 and Essential Eight security frameworks

  • Responsible for prioritization and implementation of $36M Cybersecurity capital portfolio

  • Responsible for $13M annual Cybersecurity systems operating and maintenance budget

  • Lead implementation of TSA Security Directives

  • Able to speak smoothly and confidently with executives

  • Direct IT Project Management matrix resources assigned to Cybersecurity projects

  • Develop RFP (Request for Proposal) for Cybersecurity systems evaluations to meet technical and functional requirements

  • Lead Business Case development with cost / benefit avoided costs model

  • Oversight and planning CSO O&C budget and outlook

  • ForcePoint Data Loss Prevention

  • Archer Enterprise Risk Management system

  • SAP Super User Provisioning

  • SDGE Emergency Operations Center activation Cybersecurity representative

June 2006 – December 2010

Information Technology – Network Infrastructure Program Manager

|SDGE

  • Oversight of annual capital program of WAN, LAN, VOIP, Telepresence Conferencing systems

  • Direct management responsibility of Project Managers’ team

  • Direct Project Managers leading competitive bid Request for Proposals

  • Reconciliation of Actuals to Plan capital portfolio and operations cash flow budgets

Information Technology – Account Manager

|SDGE

  • Oversight of business unit technical liaison team

  • Prioritization of business unit technical capabilities with IT resources and investments

February 1996 – June 2006

January 2011 – March 2023

Education

Master of Science Cybersecurity Operations and Leadership

|University of San Diego

  • Responsible for the enterprise Cybersecurity program portfolio

  • Continuous evaluation of Cybersecurity strategic capabilities for enterprise IT and OT systems

  • Development of 3-year Cybersecurity technology road map prioritized and aligned with strategic capabilities objectives aligned with NIST, C2M2 and Essential Eight security frameworks

  • Responsible for prioritization and implementation of $36M Cybersecurity capital portfolio

  • Responsible for $13M annual Cybersecurity systems operating and maintenance budget

  • Lead implementation of TSA Security Directives

  • Able to speak smoothly and confidently with executives

  • Direct IT Project Management matrix resources assigned to Cybersecurity projects

  • Develop RFP (Request for Proposal) for Cybersecurity systems evaluations to meet technical and functional requirements

1985-1987

Bachelor of Business Administration Management Information Systems

|Pace Univesity

  • 3.10 overall GPA

  • Complex Information Systems, Strategy and Policy Formulation, Structured

    Programming, Database Management Systems, Artificial Intelligence, Managerial Accounting, Finance,

    Business Law, Calculus

2018-2020

Certifications

  • Certified Information Systems Security Professional CISSP # 687669

  • Project Management Professional PMP # 74723

  • US Department of Homeland Security CISA Industrial Control Systems Cybersecurity (301) Training

  • SANS Global Industrial Cybersecurity Professional

  • SANS Security Leadership for Management

  • Sempra Energy High Performing Leadership program 2022