Ronald Buglione
Education:
Bachelor Of Science
Security Systems
Farmingdale State University of New York
2001 : 2006
Experience:
I earned promotion to this role through a series of increasingly responsible positions. I currently serve as cybersecurity leader charged with implementing, maintaining, and expanding the incident response and threat intelligence programs for the company’s 25+ brands. I lead an 8-member, cross-functional, multilevel technology team in identifying, investigating, and remediating any major security issues that arise across the organization. I am also responsible for the engineering and architecture that protects technology services (e.g., email security), along with implementing denial of service (DoS) attack prevention.
►Developed, implemented, and led incident response and threat intelligence program servicing 25+ LOB,
resulting in 100+ organizational security posture improvements and remediation of hundreds of security
issues.
---Developed many processes and procedures supporting the program and company initiatives.
►Continually implement and operationalize security products and processes to bolster organizational security.
►Manage 8 top-performing team members and trained up to 15 security specialists on cybersecurity skills, career advancement, and goal attainment.
►Currently leading security control implementation for Microsoft Azure and other cloud-based services such as OKTA and custom mission-critical products.
►Currently leading and deploying API security control response processes to help reduce risks to the organization.
2022 : Present
Cox Automotive Inc.
Director, Cybersecurity
I was promoted to this role because I was recognized as a top performer who achieved notable milestones, including successful incident response handling, improving the organization’s security capabilities, and continually adding value to both the organization and team members. I led a team of advanced cybersecurity specialists responsible for threat intelligence gathering, incident response, and security forensic functions across 25 LOB. I oversaw integration of security products and services for acquired companies, ensuring standardization and protection of the organization. I managed email security, SIEM engineering, and deployment of DDoS attack prevention measures. I collaborated with cross-functional and interdepartmental teams to develop and implement effective security strategies and initiatives to mitigate risks and enhance overall security posture and Implemented proactive measures and protocols to identify and address potential security threats and vulnerabilities.
►Promoted team attainment of the 2021 Enterprise Technology People’s Choice Award.
►Provided team guidance and mentoring, fostering professional development, and promoting a culture of continuous learning.
►Acted as SME on security-related matters, advising and offering recommendations to senior leadership and stakeholders.
►Led technical integration and implementation of security technologies for 15+ domestic and international company acquisitions (Splunk ES, Proofpoint, CrowdStrike, and Recorded Future), leading to security standardization across the organization.
►Developed, led, expanded, and maintained cybersecurity incident response and threat intelligence program.
►Implemented threat intelligence platforms such as Recorded Future, providing proactive security monitoring.
►Deployed DDoS protection technologies responsible for protecting mission-critical systems supporting more than half of the company’s yearly revenue.
2020 :
Cox Automotive Inc.
Sr. Manager, Cyber Security
I earned performance-based promotion to this role supporting company growth and its need for a larger, more focused cybersecurity department. I oversaw a team centered on cyber threat intelligence, threat hunting, security product engineering, security alert development, and threat response activities. I designed and implemented cloud security monitoring for numerous AWS accounts and upgraded security systems by adopting advanced SIEM and EDR technologies while streamlining response processes through automation. My team included a senior security analyst and junior analysts.
►Set stage for company CSO50 award, recognizing security projects and initiatives that demonstrate
business value and thought leadership, by architecting cloud security monitoring and misconfiguration
detection for 1000+ AWS cloud accounts, an accomplishment that also prevented countless security
incidents and issues.
►Modernized security practices by transitioning to best-in-class SIEM monitoring petabytes of data and
EDR technologies protecting over 70k endpoints.
►Automated response processes and procedures to improve efficiency and effectiveness.
►Remediated and helped solve major security issues via incident response activities.
2018 : 2020
Cox Automotive Inc.
Manager, Security Operations
I earned performance-based promotion to this role as lead security analyst and individual contributor, exercising managerial and hands-on expertise in security technology deployment, technology integration, incident response, and proactive enhancement of the organization's security posture through various initiatives. I revamped the data loss prevention infrastructure to protect organizational data through monitoring of 10,000 employees. I led other team members and worked with interns and candidates from nonprofit organizations. I sponsored programs to help individuals with their career paths and introduced them to the corporate experience.
►Played key role in establishment of the Security Operations Center.
►Architected and deployed multiple security technologies, including network-based IDS, vulnerability assessment tools, firewall policy evaluation tooling, SIEM systems, and endpoint security solutions. These deployments significantly strengthened the organization's security infrastructure.
►Provided hands-on security engineering; responsible for major security tooling for the organization.
►Successfully integrated and centralized various security technologies with corporate security infrastructure, enabling better visibility, coordination, and management of security incidents across the organization.
►Established Level 2 cybersecurity response capability, expanding the organization's incident response program. This initiative involved developing processes, procedures, and training to effectively respond to and mitigate security incidents.
►Maintained and ensured continuous 24/7 monitoring of security events and incidents as part of the Level 1 security monitoring function, working closely with the Managed Security Service Provider (MSSP).
►Threat Intelligence Program : Initiated the development and implementation of a threat intelligence program aimed at enriching the organization's overall cybersecurity program and company security strategy.
2016 : 2018
Dealertrack
Lead Security Analyst
Here, I earned performance-based promotion to serve as individual contributor and senior security analyst prior to promotion to Lead Security Analyst amid the Cox Automotive acquisition. I was charged with enhancing security measures and optimizing processes throughout the organization. I managed and provided hands-on leadership with event monitoring, detection, and reporting; application vulnerability detection and remediation; data center migrations, and Change Control Board (CCB) project activities and initiatives.
► Revamped employee onboarding and offboarding process, working with numerous cross-divisional teams to strengthen team member account management security and implementing automation to improve efficiency.
►Pioneered the implementation of first SIEM system, enabling centralized security monitoring and proactive incident response.
►Maintained vulnerability management program, proactively identifying and reporting application vulnerabilities to mitigate risks and safeguard systems.
►Performed data center migration for all security equipment such as SIEM, vulnerability scanning devices, firewall monitoring devices, and DLP server clusters.
2011 : 2016
Dealertrack Technologies
Sr. Security Analyst
Company: Cox Automotive Inc.
Years of Experience: 17
Create, implement, and lead major, corporate-wide cybersecurity programs and initiatives; build, lead, train, and develop high-performance technology teams and industry specialists; modernize operations; and manage multiple large, diverse workloads and projects simultaneously.
I’ve led my organization and team to win prestigious awards, created and led a highly effective threat intelligence and incident response program across 25+ LOB, managed technology integration for 15+ acquisitions, spearheaded standardization across the organization, and earned a series of promotions as my organization moved through business transition.