Charles O.

Senior Information Security Professional - Architect, Consultant, Leader

Greeley, CO, United States

Details

Education: Bachelors of Science

Information Technology-Security

Western Governors University

Experience: 2022 : Present

Tailored Brands, Inc.

Manager, Information Security - Engineering

FIDUS specializes in secure technology solutions to minimize an SMB's budget expenses. Teams of architects design, implement and educate clientele on the solutions they need for efficient annuity-based expenditures.

Board advisor & part-time consultant for small to mid-sized businesses required to meet government-mandated regulatory compliance and high-risk companies that accumulate large quantities of personally identifiable information from their clientele.

2016 :

FIDUS Information Security & Technology Specialists

Founding Board Member

2020 : 2022

CVP (Customer Value Partners)

Sr. Information Security Solutions Architect - (CTR) United States Department of Agriculture

I am a senior information security architect/consultant currently employed by 1901 Group LLC, contracted to the USDA for the role of senior information security specialist and lead of intrusion detection & prevention solutions team (IDPS)(consultant/contractor). I have operational responsibility for staff and tools for over 300k+ endpoints. I manage multiple teams, serve as a senior technical advisor to federal management, and internal & external groups, and manage staff. In addition, I provide technical oversight on security-related projects and design & manage training paths, requirements, and goal success for the staff I am assigned. I enjoy proactively engaging with external teams to ensure the continued success of my teams’ security services and tools. Additionally, before vendor engagement, I serve as a final point of escalation for all technical matters (in my areas of responsibility).

2016 : 2020

1901 Group

Sr. Information Security Solutions Architect - (CTR) United States Department of Agriculture

Position Description :

Manager of Information Security & Compliance is responsible for defining, advocating, implementing, monitoring, and enforcing information security and compliance standards for Denovo businesses. I am responsible for maintaining the information security controls in accordance with best practices and most cost effective levels that align with regulatory and business requirements. I am also responsible for compliance controls, adherence to those controls, and annual audits. My position serves as the process owner of all information security assurance and compliance activities.

Summary of Duties :

• Develop and implement short and long term enterprise information security strategies.

• Develop an security architecture roadmap that will identify security controls.

• Assess technologies that will enforce the organization’s security policies.

• Establish an information security management framework.

• Creation and management of information security and compliance training programs.

• Provide regular reporting on the security and compliance programs to executive leadership.

• Manage vendor risk, including risks that may result from partners, consultants, etc.

• Effectively manage an information security budget.

• Provide security guidance for IT projects.

• Deploy and leverage tools to facilitate automated tracking and compliance with controls.

• Management of security incidents and events.

• Identify, assess, and prioritize IT risks to corporate data and systems.

2010 : 2015

Denovo, LLC

Information Security & Compliance Manager

Company: Tailored Brands, Inc.

Years of Experience: 13

Spoken Language: English

Skills Application Security, AWS Security, Cisco Information Security, CISSP, Cloud Computing, Cloud Security, Compliance Management, Contract Management, Cybersecurity, Data Center, Disaster Recovery, Enterprise Network Security, Enterprise Risk Management, Enterprise Software, HITRUST, Incident Response, Information Security, Information Security Consultancy, Information Security Consulting, Information Security Engineering, Information Security Governance, Information Security Standards, Intrusion Detection, ISO 27001, IT & Business Strategy Alignment, IT Operations, IT Project & Program Management, IT Risk Management, IT Service Management, Leadership, Management, Microsoft 365, Microsoft Technologies, Networking, Network Security, Network Security Implementation, NIST, NIST 800-53, Payment Card Industry Data Security Standard (PCI DSS), Security, Security Architecture Design, Security Audits, Security Information and Event Management (SIEM), Security Management, Strategic Leadership, Strategic Planning, Technical Leadership, U.S. Federal Information Security Management Act (FISMA), U.S. Health Insurance Portability and Accountability Act (HIPAA), Zero Trust Design & Integration

About My goal is to provide experienced services to employers and clients in order to enhance their IT and InfoSec capabilities, be profitable, and efficiently operate their businesses.

A seasoned information security & technology professional with 28 years of experience in IT and InfoSec. My higher education is in IT & information security. I hold many current certifications in infosec such as CISSP, and others in networking, Microsoft, Linux, and hardware-specific technologies. I provide CISO/CSO advising, and perform security & IT design, compliance, and implementation services to my employers and clients. I have direct experience working with federal, commercial, medical, and nonprofit organizations of all sizes. I have led large and small teams with a high degree of success in project delivery, customer satisfaction, and timeliness. I am very well-rounded technically and experienced in hands-on solution deployment. I provide consulting services to organizations of all sizes that are required to comply with one or more regulatory compliance models. I continually develop my skills and knowledge to increase my effectiveness and relevancy in information security, compliance, and IT operations.