Download PDF

Summary

Information security leader with over 15 years of leadership experience. Adept at implementing security programs that are aligned to business objectives. Excels as compliance focal point for wide variety of regulatory bodies.

Work experience

Mar 2016Present

Vice President, Information Security

CoreLogic - Irvine, CA

Responsible for protecting CoreLogic's information assets, intellectual property, and trade secrets.

Plan and drive key programs to understand, catalog , and protect Corelogic's business from losing market position by protecting the Company's key information assets and intellectual property.  These programs helped shift behaviors and built controls to support these new behaviors.

Apr 2014Mar 2016

Senior Manager-Information Security Officer

TACO BELL CORPORATION - Irvine, CA

Deliver strategic guidance to Taco Bell's executive team and drive information security for the Taco Bell brand.

Build and lead the information security program for the Taco Bell brand. Drive efforts to secure all Taco Bell restaurants including franchisees, licensees, and corporate owned restaurants(over 6000 locations). Deliver strategic direction and guidance to Taco Bell's executives. Build the brand's first information security program from the ground up. Established relationships and protocols for engaging TB's information security. Deployed information policies and standards for franchisees and licensees. Drive information security Taco Bell while working with the parent company to ensure alignment.Drive PCI Compliance and audits Develop and manage program budget.

Aug 2008Jun 2014

Senior Manager-Information Security

SOUTHERN CALIFORNIA EDISON - Irwindale, CA

Led all cyber security aspects for San Onofre Nuclear Generating Station including executive collaboration, strategy, compliance, technology initiatives, personnel, financial management, and external engagement.

Led the nuclear industry's exemplary cyber security program which is still the benchmark that the Nuclear Regulatory Commission uses to assess other nuclear facilities' cyber security programs. Engage and collaborate with the plant's executives to drive the nuclear plant's NIST/NEI based cyber security program's defense in depth strategy incorporating a wide array of security controls and tools, including: physical security integration, psychological testing, policy and procedure development, advanced end point protection, network and computer forensics, cyber surveillance rounds for air-gapped systems, etc. Manage all aspects of Nuclear Cyber Security Development including executive reporting, strategy development and initiatives, manage the program's budget ($6M/year), and staffing.

Nov 2003Feb 2008

Manager-Information Security

OPTION ONE MORTGAGE CORPORATION - Irvine, CA

Led security program for financial services company with 4, 600 employees nationwide.

Created and evangelized the company's progressive information security program built upon solid network security infrastructure, higher application development standards and improved compliance and testing processes. improved application-level security infrastructure; delivered multidisciplinary solutions that allowed the information security team to enable new business processes while reducing risk exposures. Coached, led, and managed performance of onsite and offshore resources; assisted in career planning and developed effective methods for boosting morale including telecommuting and flexible work schedules, and online training opportunities with industry leading groups.

Jan 1999Nov 2003

Manager - Risk and Advisory Services

KPMG LLP - Los Angeles, CA

Advised clients of one of the world's largest professional services firms with understanding and mitigating business issues arising through use of technology.

Developed new information security service products for KPMG, and delivered key security engagements for KPMG's clients including security architecture, network design, security assessments, etc. Led, mentored, and allocated resources on 24-member team, prepared and managed execution of project plans, and reported to project sponsors. Recruited new personnel and assisted in managing practice’s daily operations and profitability. Acquired and vetted new clients; reviewed client financials, credit ratings, and industries, and identified levels of risk posed to firm. Maintained strong relationships and built trust with clients as information security product portfolio’s lead manager; translated complex security issues into meaningful business concerns, and delivered presentations to Boards of Directors, audit committees, and senior executives, playing pivotal role in securing information security engagements.

Education

Bachelor of Science, Computer Science

CALIFORNIA STATE UNIVERSITY-Los Angeles

Juris Doctor

CONCORD LAW SCHOOL

Certifications

Apr 2015Present

Life Only License

California Department of Insurance

License - 0K18730

Apr 2002Present

Certified Information Systems Security Professional (CISSP)

ISC2

Certification number - 29972

Apr 2004Present

Certified Information Security Manager (CISM)

ISACA

Certification number - 0403952