eBay 2016 – Present Senior Director, Information Security – Threat and Management Response
Orchestrated a $5M operational expense budget and reported to the CISO, leading a team of 38 security engineers and analysts to elevate eBay’s 24x7x365 global security operations. • Directed Threat Management and Response, encompassing security incident response, logging and monitoring, security tools, automation of security, and delivery of threat intelligence as a service. • Implemented NIST cybersecurity framework for incident response, aligning executive responses with security breach protocols. • Defined and refined security KPIs and metrics, reducing eBay's security risk posture by improving detection, response, and remediation times. • Crafted GRC automation capabilities, including controls attestation, risk register management, and exception processing to support PCI and NYDFS framework requirements. • Key Accomplishments: o Achieved an 85%+ reduction in incident resolution time and transitioned security event investigation from a 7-day backlog to real-time. o Deployed Security IR and SOAR platforms, reducing incident resolution and resource demands. o Operationalized security capabilities, including intruder deception, UBA, DLP, and network anomaly detection, and established an insider threat program to enhance visibility. o Designed vulnerability management automation and SLA capabilities, improving visibility and reducing open vulnerabilities to industry average or below.
EllieMae Financial 2013 – 2014 Senior Director, SaaS Operations and IT Infrastructure
Spearheaded customer-facing SaaS operations and delivery for one of the top online mortgage loan origination software companies in the US, enhancing service quality and operational efficiency. • Directed a team of 12 senior engineers across network, systems/middleware, database, storage, virtualization, program management, and service management managed a $2.5M budget. • Integrated an ITSM framework, including incident, problem, change, and service level management. • Established and integrated IT DevOps practices in collaboration with the VP of Applications, driving improvements in development processes and operational agility. • Key Accomplishments: o Attained 99.99% high availability in customer-facing operations by implementing advanced operational strategies and rigorous performance monitoring. o Created and enforced compliance procedures, achieving successful SOC and SOX audits. o Architected and launched an IT program management, governance, and delivery organization. o Overhauled data center infrastructure and developed capacity planning strategies to accommodate accelerated enterprise sales growth.
Cisco 2008 – 2013 Senior Manager, IT – Security Accelerator SaaS Operations & Security Program Management (2010 – 2013)
Accelerating the delivery of security architectures across the IT portfolio. • Orchestrated a $24M IT security program across Cisco’s IT, information security, and product engineering teams to address foundational changes in the security landscape. • Defined and delivered program roadmaps, budgets, and success metrics. • Established a governance and operating model to ensure accountability and effective execution. • Integrated PCI compliance controls in alignment with credit card and banking regulations. • Key Accomplishments: o Established an operational CoE for Cisco's SaaS billing platforms, delivering a PCI-compliant service billing solution with 99.95% availability. Director of IT – Flip It Video (Cisco) (2008 – 2010) • Aligned with CFO to optimize IT infrastructure and applications environment for the acquisition of the 5th fastest-growing private company in the US, achieving successful readiness in under 5 months. • Overhauled critical corporate and production networks, enhancing high-availability, security, and compliance standards to align with industry best practices. • Oversaw the seamless integration of IT systems into Cisco's corporate network, managing the migration of business systems and the relocation of IT infrastructure to Cisco's facilities. • Key Accomplishments: o Architected a SaaS solution for FlipShare, streamlining its functionality and scalability. o Established SDLC processes to support application's transition to a SaaS model.
