About Adroitcyber.Net

Adroit

Having or showing skill, cleverness, or resourcefulness in handling situations — Mirriam-Webster Dictionary

This Veteran owned and operated company can adroitly provide tailored solutions to drive your business forward. We are ready to assist with any inquiries and ensure your information technology needs are met

Providing Senior Information Systems Professionalism with deep expertise in design, delivery, and operations of enterprise-wide Information Technologies in several industries including aerospace, chemical, government, health care, legal, manufacturing, radio & television, retail, shipping, and telecommunications.

25+ years with diverse skills including Cloud Services, IT Help Desk, IT Infrastructure, IT Security, LAN/WAN, and project & operations. Adept at collaborating with cross-functional teams, senior management, and key stakeholders to introduce continuous improvements and innovative solutions that enhance performance and security while reducing costs.

Focus

Conducting Information Technology evaluation and integration based upon experience with various organizations in secure systems architecture and leadership roles. Assess, design, implement, remediation, and support of solutions for clients of all sizes in industries including aerospace, banking, chemical, education, graphics, healthcare, hospitality, insurance, judicial, medical, military, mining, oceanography, pharmaceutical, radio & television, retail, and telecommunications. Applying international standards, and industry and technology experience to improve systems performance and reduce risk to networks, computers, software, and data from attack, damage or unauthorized access.

Improvement of critical infrastructure domains. Development of strategies to empower efficient business operations. Assess & remediate information technology solutions to increase resiliency and operational capabilities. Conduct and oversee computer and network forensics and digital media analysis. Define and develop “leading edge” technologies and strategies. Conduct corporate education and research. Identify and prevent vulnerabilities, threats, and events.

Achievements

Responsible Engineer for information assurance of In-Confidence Business, Mobile Communications, Classified & Unclassified Plant Management, Electronic Security System, Fire & Safety, Physical Security, Meteorological, Radiation Monitoring, Criticality Alarm & Annunciation, and SAN, NAS & Backup.

Authored, implemented, and audited Information Systems Security Program (ISSP) directives and guidance at USA Homeland Security designated critical infrastructure assets.

Committee Member NERC Critical Infrastructure Protection Working Group; contributor NERC Standards.

Committee Member NIST Cloud Computing Program Access Controls; co-author NCCP White Paper

Featured Speaker and Presenter, InfraGard Chapters in Long Island, Salt Lake City, San Diego, and San Francisco, on cybersecurity, governance, risk and compliance.

Skills

Cloud services: Azure & AWS
Disaster recovery & Business Continuity Planning
Incident & Change Management
IT Audits
IT Help Desk
IT Infrastructure & Business Applications
IT Operations
IT Programs, Deployments & Initiatives
ITIL Best Practices
LAN/WAN Design & Maintenance
Network Engineering
Project Delivery
Project Management
Risk Assessment
System Administration
Team Leadership
Vendor Relationships
Virtualization

Work Experience

Abalta Technologies Inc., Hands-on IT Manager, May2022-October2025

Provide IT and Cybersecurity Services to a multi-national Software Development Company in the Automotive sector. Hands-on leader of a small team providing IT Help Desk, Systems Administration, Information Security and related functions. Deployed Windows and Linux servers in AWS Cloud. Lead the team in achieving ISO 27001 Certification and TISAXver6 qualification. Moved two offices to new locations. Managed hybrid environment with 1Password, Adobe, Apple, Atlassian, AWS. GitHub, GoDaddy, Google Workplace, Meraki, Microsoft365 , N-Able, SnipeIT, Slack, Terrestrial NAS, and Zoom services. Conduct IT and Cybersecurity Employee Training.

Adroitcyber, LLC, Owner, Consultation, June2019-April2022

Provide vision, strategy, design, and deployment of Information Technology and Information Security results. Craft robust and secure local area and wide area networks. Develop identify and access management requirements, design, and fabrication. Configured and implemented Security Information and Event Management, Anti-Virus and Anti-Malware for servers and workstations. Sub-contract to Viasat, Inc., to build and configure solutions based Active Directory, Cisco, Dell, McAfee, Satellite Radio, VMware, and VxRail technologies for international manufacturers and the Australian military.

Charlotte Russe Holding, Inc., Hands-on IT Manager, May2017-May2019

Responsible for the operations of Information Systems for eCommerce and 550 stores across two divisions. Established business, technology and fiscal vision and strategy. Led a team that provided call center services to eComm and store customers. Led a second team that provided Hep Desk services to employees, contractors & vendors. Led a team that operated and secured Linux, Windows & Unix servers, Apple and Windows workstations, Palo Alto firewalls, Cisco switches and WAP. Designed and deployed Hybrid Cloud security solution. Shifted ticketing services from KACE to Jira. Provided identification, protective, detective, responsive and recovery information security services for Active Directory, Identity Management services, Exchange, SharePoint, VMWare solution, & Storage technologies for the enterprise. Managed GDPR, PCI DSS, and SOX compliance. Designed, deployed, operated and monitored advanced threat protection for cloud infrastructure and migrated services from data centers to a hybrid cloud environment.

City of Santa Clara, CA, Cybersecurity Officer, November2016-April2017

Backfill for Maternity Leave. Provided cybersecurity protective services for city government operations in Silicon Valley with Unisys. Served as the Information Security evangelist across all city departments, vendors & contractors. Partnered with Accounting to develop the Information Security Risk Register. I led teams of engineers in assessing, remediating, designing, deploying, & commissioning business information security solutions. Maintained compliance in all city IT systems under the criteria of HIPAA, ISA/IEC 62443, ISO27000 series, NIST 800-53, NIST CSF, NISTIR- 7628, PCI DSS, and SOX.

Adroitcybersecurity, LLC, Owner, Consultation, May2016-Oct2016

Provided solutions for the rapid response to casualties, breaches, and forensics at small and medium businesses. I set up systems with a focus on open source tools to detect issues & threats and remediate them. I assisted clients in returning to safe computing condition by restoring from archives.

LP3 SecurIT, CISO/Directory of Engineering, July2015-April2016

Founder of an MSP startup. I created a directorate with three departments: Develop, Deliver, and Sustain. Defined personnel requirements and hired three department managers and their staffs. Established team development plans, training plans, KPI’s, schedules, and feedback channels. Led the team that provided Help Desk and Desktop support services internally and to several customers. Fostered successful inter-department coordination and collaboration to achieve directorate and enterprise goals. My directorate developed Cloud Services for Microsoft (CSfM) offerings and I led the team in delivering them to SMB clients. Led teams in packet capture analysis. Developed assessment processes and practices. Conducted data classification and inventory. Delivered remediation projects on time and budget. Organized and led CIRT response team; led incident responses and recovery. Developed NOC, SOC, monitoring tools, and log analysis. Developed and presented C-Level reports.

Computer Sciences Corporation, Partner, May2000-June2015

As a Partner with a focus in critical infrastructure solutions I led teams to design, deploy, and support solutions for the following featured clients:

Delivered Information Systems Consulting Services to Urenco, International Uranium Enrichment

Implemented and managed 18 projects for 4 project teams consisting of 42 engineers with annual budgets in excess of $130M. Developed and implemented Help Desk services for employees and contractors. Developed and deployed internal and wide-area network security design. Determined network management requirements and configured network administration tools. Designed and deployed network measures to fulfill Items Relied on For Safety (IROFS) requirement. Deployed and upgraded IDS/IPS, Network scanning & monitoring. Crafted and deployed IP LAN and vLAN schema. Developed Identity Access Management for classified and unclassified networks and applications.

Designed plant wide cyber security programs, identity access management, and networks for plant control, plant management, business networking, voice, public address, radio, and wireless communications solutions. Configured and implemented McAfee Security Information and Event Management, Anti-Virus and Anti-Malware for servers and workstations.

Worked with plant owner, USA NRC, and USA DOE. Authored, implemented, and audited Information Systems Security Program (ISSP) directives and guidance. Deployed company Intranet. Designed and Implemented IDM to facilitate access to Windows networks and Cisco gear. Deployed VPNs. Incorporated advanced security programs and solutions across the facility.

Delivered Information Systems Consulting Services to Maersk Oil Qatar, International Oil and Gas

Authored and implemented Information System strategy, policy, plans, procedures and processes to cover facilities in Africa, Asia, Europe, Middle East, North America and South America. Evaluated risk of network architecture design, web applications, remote access, server configurations, firewall & router configurations. Conducted analysis and documented compliance with laws and regulations at facilities in 12 nations. Created hardening guidelines for IDM. Authored and deployed a daily dashboard of the status of Information Systems in the Middle East and expanded the program into Asia and Europe. Developed annual budgets and oversaw relationships with vendors and service providers.

Delivered Information Systems Consulting Services to Telephonics, International Manufacturing Corporation

Reviewed and improved Help Desk services. Led a team in the development of plans and framework to manage controls for information systems policies and procedures, standards and structure; document management; data protection; network security; security governance; security architecture. Assessed IT Operations, application delivery, network engineering, IT Security Operations, IT hardware & software. Developed program for the administration of compliance. Conducted detailed review of servers, workstations, and networking components and architecture. Deployed McAfee (Data Loss Prevention); Titus (Classification Labeling); Varonis (Data Access Monitoring and Auditing), Windows and Linux server security; encryption technologies. Designed network/data segmentation based on classification (ITAR). Conducted vulnerability scanning (Qualys). Developed plan for Security Information Event Management (SIEM) replacement and IPS replacement. Developed Risk Assessment framework. Assessed infrastructure security of extranets; perimeter boundary; WAN/LAN; third-party remote connections, and business corporate networks.

Delivered Information Systems Consulting Services to Amgen, International Pharmaceutical Corporation

Led a team in the Information Systems architecture of Distributed Control Systems based upon ISO 27000 series. Measured controls for account management, authentication, authorization, business continuity planning, business rationale, conformance, information & document management, incident planning & response, cyber security management system, network segmentation, security organization, physical & environmental security, personnel security, risk identification, risk classification, risk assessment, risk management & implementation, system development & implementation, security policies & procedures, and training & administration. Developed projects for upgrade and rationalization.

Delivered Information Systems Consulting Services to Internal Revenue Service – IRS

Led a team of 15+ engineers in the development of secure services. Established RBAC for 300+ applications and aligned it with authorization and auditing. Cleaned up user repositories. Synchronized passwords and developed forced de-synchronization for highly privileged accounts. Created user management workflow. Integrated the solution with LDAP.

Delivered Information Systems Consulting Services to Federal Reserve System – Federal Reserve Bank (Richmond)

Led a team of 8 engineers in moving inter-bank transfers from leased lines to the Internet. Developed information security solutions for the transfer of $5.5Trillion per day between Federal Reserve branches and customer banks. Reduced the cost of transfers to keep a competitive edge.

Delivered Information Systems Consulting Services to National Commodities Exchange – Chicago Mercantile

Led a team of 12 engineers in migrating the trading floor to Wireless. Improved the speed of trading by over one minute per transaction. Established information security services for the floor and back-office operations. Established secure access for highly privileged accounts.

Delivered Information Systems Consulting Services to Nationwide, National Insurance Company

Conducted firewall packet capture and analysis, analysis of firewall operating system rules and configuration. Conducted forensics with SANS SIFT Appliance. Performed analytics of connectivity to customers, hospitals, clinics, and industry information exchanges. Configured Cisco routers, switches and firewalls. Developed multi-tier security model aligned to value and risk.

Associations

ASIS International, BICSI, Committee Member of NERC WG, Committee Member of NIST WG

Affiliations

Computer Security Institute (CSI), CompTIA, Critical Infrastructure Protection Working Group and NIST Cloud Computing Program Access Controls, IEEE, ISA, ISACA, ISSA, SoCal .NET User Group, TechAmerica

Standards

COBIT, DISA STIG, EU 95/46/EC, GBLA, HIPAA, ISA/IEC 62443, ISO27000 series, NIST 800-53, NIST CSF, NISTIR- 7628, PCI DSS, SOX, TISAX

Education

Bachelor of Science, Southern Illinois University at Carbondale

Community Involvement

Habitat for Humanity
San Diego Food Bank