DevOps, System Architecture, and Security Consultant. Specializing in AWS, infrastructure management, & scalability.

Virtual CISO, I have over 17 years of Cyber and Information Security experience. I can show you how to ensure the confidentiality, integrity and availability of your network and data assets and help you develop a program that will enable your business growth in a secure fashion. In my career I have launched security, risk and compliance programs and developed them into business enabling service departments. Currently providing Chief Information Security Officer (CISO) consultative services to a variety of verticals. Currently held industry certifications include CISSP, HCISSP, CISA, CISM, CRISC, C|CISO, CFE, ITIL and Cloud Integration. Reach out to me, I am here to help and provide you with the best security advice that will help you sleep at night.

***How To GUARANTEE You can Make Your GDPR, Data Protection, Security, ISO27001, Cyber Essentials PAINLESS: Let's Talk, 23 FREE Technologies in Data and Cyber protection that will make you feel shocked! see link below https://gdpruk.eu/index.php/23-free-data-cyber-protection-technologies/ Avoid the Following RISKS. ~~~Fines, Loss of Business, Enforcement Action, BreachLess Liability, Breach Losses~~~ #Breaches are now reportable (72 Hours) (59,000 reported in Europe so far) #Class Actions/Group Actions for GDPR (Happening now all over the world) #Incorrect Privacy Notices (Emma's Diaries and others) #Risk Of Data Breach is $7% UK Government Figures #3rd Party Contract Checks by Data Protection Authorities, Danish DPA #Privacy Notice Checks By Data Protection Authorities #Complaints by Consumers over 40,000 in the UK so far, ***Alignment with Data Protection will REQUIRE ....... • GDPR Awareness Article 39, Article 47 - Legal Requirement • Breach Notification Procedure process Article 33, Article 34 - Legal Requirement • Data Protection Impact Assessment DPIA Article 35 - Legal Requirement • Record Of Processing Article 30 - Legal Requirement • Data protection Maturity Assessment Article 5 + Security Audits/ISO27001/PC-DSS/GDPR Cyber Security and Data protection Risk Management Policy and Procedure review (Security Policy, Retention Policy, Data Protection Policy etc..) Expected by the GDPR and Data Protection Legislation. No Matter what your situation GDPR alignment and direction of GDPR can be always improved, Because I have done this many times for all types of businesses and size of business. If YOU were to do only one thing I would suggest a FIXED Price Data Protection/GDPR maturity audit which highlights any gaps in your businesses Data protection program and planning and enables the risks to be managed. Book a call for FREE on https://clarity.fm/1davidclarke/BookAcall "Top 50 Global Experts" "Top 10 Risk Compliance Regtech" David Clarke is the Founder of GDPR Technology Forum over 18500 members https://www.linkedin.com/groups/12017677 and an internationally known GDPR and security advisor. He is recognized as one of the top 10 influencers by Thompson Reuter’s “Top 30 most influential thought-leaders and thinkers on social media, in risk management, compliance and regtech in the UK” and is in the the top 50 list of Global Experts by Kingston Technology. For more information, visit his Linkedin https://www.linkedin.com/in/1davidclarke and follow him on Twitter at @1DavidClarke 84k Followers

Owner of dFensive, CISO/CTO of Pattern Group - Over 25 years providing practical technical solutions for Startup/Small/Medium Business owners. I specialize in helping you leverage what's already in place to achieve your current and future objectives.

23 Years - Experience Governance & Strategy Practice at Halock Security Labs July 2011 - Present Virtual CISO and Third-Party Risk Management Practice Lead currently managing multiple information security management systems and both internal and external/service provider assesssment programs based on ISO 27001/27002, NIST, HIPAA and PCI controls. Presented findings and remediation projects to C-level sponsors and executive leadership teams. Implemented Information Security Management Systems (ISMS) based on ISO 27001. Planned and implemented Security Policy projects. Designed and implemented Incident Response plans. Contributed intellectual capital to Halock's Professional Services Framework including reporting, checklists, templates, testing methods and techniques, and research. Page 1 • Third Party Risk Management • Risk Management • Risk Assessments • Security Policy Standards & Procedure Development. • Incident Response Development. • ISO 27001 ISMS • Regulatory Compliance Assessment and Program Development (HIPAA, GLBA, Sarbanes-Oxley, etc.). Information Security Officer at Wells Fargo/Wachovia June 2005 - July 2011 (6 years 2 months) Provide dedicated security resources to help educate and support the business units on security controls and standards; establish security checkpoints in business unit processes; facilitate ongoing compliance monitoring and security oversight; and provide security consulting to projects using the ISO 27005 methodology. Led risk assessments to support due diligence for a global financial institution looking to offshore business functions. Created and managed risk treatment plans and remediation efforts for over 20 facilities. Initial phase of risk assessments was over 5000 hours. • External/Internal Attack and Penetration Assessments (Ethical Hacks, Wireless Scans, MacAfee Foundstone) • Security Vulnerability Assessments. • IT Audit and Risk Assessments. • Network Server and Application Security Assessments. • Security Policy Standards & Procedure Development. • Regulatory Compliance Assessment and Program Development (HIPAA, GLBA, Sarbanes-Oxley, etc.). • Business Continuance and Disaster Recovery Planning and Testing. Sr. Network Security Engineer at Wachovia, A Wells Fargo Company June 2000 - June 2005 (5 years 1 month) • Designed and implemented network security policies for network access. Developed and implemented remediation plans for vulnerabilities assessment and mitigation. Designed, installed, and managed multiple versions of Check Point Firewalls on the Sun Solaris and Nokia platforms. Designed and implemented Symantec Raptor Firewalls. Led infrastructure upgrade for global financial institution that include upgrading 300+ firewalls with multiple versions of Check Point Firewall on the Sun Solaris and Nokia platforms to Check Point Next Generation Provider 1. Led RSA SecurID dual factor authentication project for remote access and network infrastructure administration on CISCO, Checkpoint, Nokia IPSO, Solaris and Microsoft equipment. Page 2 • Expert Knowledge in Nokia Check Point Design, Implementation, and Support. • Hardened the Sun Solaris and Windows NT/2000 Server operating systems. • Installed and configured Check Point client VPN access to internal networks. • Implemented Secure Shell SSH software for encrypted equipment access. • Prepared security assessment reports for management detailing corrective actions. • Performed security awareness training classes for staff. • Managed Check Point Provider 1 and RSA Administration. COMSEC Administrator at United States Marine Corps June 1996 - June 2000 (4 years 1 month) DOD Security Clearance: Top Secret Small Computer systems specialists ensured the proper installation, configuration, and operation of stand-alone and client- server information systems. Installed, operated, and maintained microcomputers and Local and Wide Area Network (LAN/WAN) systems. Configured, optimized, administered, and troubleshot microcomputer network hardware and operating system software using Marine Corps standard network operating software and protocols. • Managed twelve Marines as Platoon Sgt. • Administered Classified Information Systems Operation and Maintenance • Supervised and Implement an installation of moving an entire Unit’s HQ from a desk environment to a field environment, while still being able to perform everyday administrative function during a mach combat situation. 400+ end-users and systems. • Perform technical analysis on computer system security procedures including personnel, physical security, communications, emanations, hardware, software, and data • Handled Top Secret Cryptographic Equipment and Documents. Education Strayer University (DC) BS, Information Security, 2003 - 2007

Payments Manager with more than 16 years of experience. We advise our clients on the management of their payments portfolio, including payments management, technology, payment operations, and risk management.

Hi, I am an IT consultant with 25 years of experience working with companies across the Middle East, Asia, UK, US, and Europe. I have done B2B/ B2C Project on Travel, Insurance, Education, Hospitality and Aviation domain. Apart from that I have implemented Salesforce, SAP Hana and other ERP and Ecommerce projects. I specialized in IT project and program management, including Business Intelligence, enterprise architecture, business and digital transformation, strategic and operational technology planning, cost reduction, cybersecurity, GDPR compliance, IT policy, strategy, service management, solution design, IT audit, cloud services, and IT setup. Expertise - Project Management, Enterprise Architecture, Software Development, SDLC, Business Intelligence, ERP, Ecommerce, Compliance, IT Budget, Audit, Business Transformation, IT Road Map, IT Strategy and Leadership, Conflict Management. I am proficient in crafting IT strategies, leading organizational transformations, and managing the implementation of business solutions. I have extensive experience in IT operations, governance, budgeting, and delivery across diverse industries, with specific expertise in travel technology. I am PMP, SCRUM, CPISI certified, Computer Science Engineer and hold an MBA degree in IT. Looking forward to working with you.

An experienced professional that has played key roles in designing, executing and analyzing projects for the international business to business and business to consumer markets, especially in the financial services IT arena. An excellent communicator able to translate jargon and IT-speak into clear concepts and ideas for non-technical management or board members. Expert on Payment Systems for Global Marketplace including traditional payment networks credit debit methods as well as emerging alternative payment methods and mobile applications. On all matters from Treasury to Processing, my 15 years of experience and professional references make me an excellent resource for advice with your next payments project.

IT professional with over 22 years of experience in various industries. CISSP, CISA, CRISC, PCIP, PMP

Expert in technology, information security, and business practices. Spent more than 18 years in Telecom sector, Banking and real estate, worked with several business to leverage their potential and improve their employees productivity.

Project Management (PRINCE2) ● Mobile Banking Systems ● ATM/POS Systems/Networks ● Risk Focused. Senior IT Consultant with extensive financial services industry experience and software development, project management and operations/infrastructure management. A strong communicator and leader with excellent presentation, customer-facing and negotiation skills, in-depth understanding of financial environments and demonstrable success in breaking down barriers to faster services. Key Skills Management Services ● Operational & Infrastructure Management ● Staff Management & Leadership ● Cost Savings ● Business Strategy ● Client Management ● Change Management ● Audit ● Security Compliance ● PCI

IT Security (20+) Years experience Areas of expertise: Compliance (PCI/Risk Assessments) Phishing, Security Awareness training, patching, best practices.