jared r. greene

CISSP, CISSP-ISSAP, CISSP-ISSMP, CCSP, GIAC-GPEN, SCSAS, PCIP, CICP

495 N. Federal Highway #1503.   ·   Fort Lauderdale, FL 33301   ·   jaredgreene100@gmail.com   ·  (407) 414-4003

Executive Information Security and Infrastructure Technologist / Strategist with strong security program management experience leading enterprise domestic and international information security IT disciplines.

SUMMARY OF QUALIFICATIONS

·               Seasoned, organizational leader with a strong technical/operational background and experience partnering, leading and influencing across business units with all levels of leadership. Develops forward-thinking, industry leading vision and strategy to ensure organizations are strong leaders in security. Extensive experience in workforce diversity, team building, and group leadership.

·               Security and infrastructure technologist, strategist and thought leader with extensive expertise implementing sound security controls, while cognizant of operational and financial goals.

·               Extensive background with on-premise and cloud-based virtualization and platform technologies. Multiple green field deployments of SaaS, PaaS, IaaS and aPaaS enterprise security and performance monitoring. Deployment automation governance and SDLC management of multiple discrete cloud environment product architectures leveraging Amazon Web Services (AWS), Rackspace, and private cloud technologies.

·               Security Subject Matter Expert (SME) and Exam Writer for (ISC)² certifications internationally. Contributing SME for the premier (ISC)² - Certified Cloud Security Professional (CCSP) certification exam.

·               Comprehensive experience with compliance initiatives including: PCI-DSS, ISO-27001, GLBA, OTS, OCC, FDIC, SOX, SOC 1/2/3, NIST, and other federal and international regulations for banking, transportation, healthcare, government, DOD, Dept. of Energy (NERC, FERC), and identity management.
 

Enterprise Cloud Security (contractor)November 2014  – Present

Citrix, Inc. Fort Lauderdale, FL

Enterprise Cloud Security Strategist & Architect for public/private clouds managing security for compute and storage of $37 million in virtual assets, resources, and applications across six cloud service providers.

·               Developed and implemented multivendor API based process with dashboard for the identification and audit of cloud assets across multiple cloud service providers (AWS, Azure, Google, Rackspace, IBM-SoftLayer)

·               Cost savings totaling of $7 million annualized through the identification and remediation of inefficiencies in cloud consumption and consolidation of security and orchestration toolsets.

·               Successful completion of beta testing and phased implementation CloudAware for 325+ cloud accounts.

·               Created framework for the unification and definition of cloud consumption models for the enterprise. These initiatives focused on sustainable security best practices implementations, scalable security automation and orchestration, and the policies and procedures that govern the use of public, private, and hybrid clouds.

·               Defined the following enterprise cloud centric architectures for CISO and CFO:

o   Enterprise Log Management Solution (10 TB daily upload to Cloud Hadoop/Mongo Data Lake)

o   Enterprise Cloud Security Program (Council, working group and SecDevOps)

o   Converted the Netflix - Simian Army toolset for multi-cloud and product specific applicability

o   Enterprise Cloud Consumption Model (monitoring, efficiencies, standardization, and Security)

 

Subject Matter Expert and Exam WriterJanuary 2007  – Present

(ISC2)² US-National

Volunteer team member in the creation of experience and domain appropriate test questions for the CISSP, ISSAP, ISSMP, and CCSP certification exams offered by ISC2. Mapped security domain content subject matter against testing objectives leveraging prescribed psychometric principles.

 

Information Security Architect (contractor)December 2013 – November 2014

Cisco systems, Inc. Morrisville, NC

Information Security and Infrastructure Architect providing enterprise guidance on Cisco’s Cloud Services offering for IaaS, PaaS, Sec-aaS, and SaaS products and services internationally.

·               Security Architect for global deployments of Cisco System’s Nimbus Enterprise Cloud Services for tenant, platform, and infrastructure offerings IaaS and PaaS - (OpenStack - Grizzly, Horizon and Icehouse).

·               Enterprise AlienVault SIEM beta test with cloud-based HIDS, NIDS, and invasive health and security monitoring of tenant virtual resources, platform, and infrastructure resources globally.

·               Tenant and product ingress guidance, operational controls implementation and autonomous validation.

·               Agile methodology coaching and ISMS framework foundations consulting for ISO27001, SOC II/III  and other international compliance attainment and attestation efforts.  Trained Cisco staff in cloud security.

·               Subject matter expert (SME) for InfoSec team performing cross training on cloud computing concepts of operations for the AWS, Azure, Google Cloud, and Rackspace and on premise (Openstack) platforms.

Senior Security Architect (contractor)March 2013 – December 2013

Progress Software, Inc. Morrisville, NC

Information security consultant charged with the attainment of SOC II and Trust Services compliance attainment for flagship SaaS, PaaS and aPaaS cloud-based solution.

Created and implemented compliance roadmap with supporting policies, procedures, and enforcement criteria for Progress|Pacific’s first step into cloud computing with AWS leveraging aPaaS technologies using Agile methodologies.
 

·               Assisted with the transition from “boxed software” to cloud-based application and platform as a service.

·               Aided with acquisition, conversion, and normalization of RollBase.com into AWS from Rackspace.

·               Implemented enterprise Security policy framework, SDLC and audit guidelines.

·               Implemented custom and COTS security and performance monitoring solution.

·               Amazon Web Services deployment automation and application and platform hardening.

·               Amazon Web Services infrastructure retooling for compliance, interoperability, and security.

·               Threat and vulnerability identification, remediation and socialization across all management levels.

·               Customer-facing liaison for security and compliance attestations as well as pre and post sales negotiations.
 

President / CISOApril 2008 - March 2013

colejake enterprises, inc. Orlando, FL

Founded and managed an international consultancy providing enterprise security, infrastructure, architecture, and compliance solutions for governments and private sector clients. Collaborated with executives and staff to protect and optimize how enterprise critical information is processed, managed, and stored.
 

·               Responsible for security, network infrastructure design, software development, and implementation management for the nation’s largest tolling system infrastructure upgrade ($350 million project).

·               Project management and direct development of applications for $91 million in annual violations processing management reporting and delivery assurance.

·               PCI Level 1 merchant certification attainment for Florida’s Department of Transportation.

·               Served as Interim Chief Information Security Officer (CISO) for LifeLock, Inc. awarded initial ISO 17799 certification and obtained initial PCI Level 1 Merchant Certification. Designed and implemented enterprise Active Directory migration to Windows 2003, redundant/active-active datacenter and national call center implementations simultaneously. Successful transition of security program to new CISO after national recruitment search.

·               Conducted extensive security audits and compliance assessments for the US Department of Commerce, US Department of Energy, University of Wisconsin, Grenada Co-operative Bank Ltd., and PassportMD.com.
 

PRESIDENT & CISO/CTO                  January 2007 – April 2008

esureity, inc., a division of Infosight, inc. Saint Cloud, FL

A spin-off of InfoSight’s Security and Assessment Division, a security consulting and compliance strategy firm for national and international clients in the banking, financial, healthcare and government industries.

Directed strategic spin-off of security, compliance and assessment division. Managed operations and products and services delivery of penetration testing and Enterprise Risk and Vulnerability assessments for clients internationally.

·               Facilitated speaking and training engagements surrounding security architecture, engineering, and management for financial customers and clients driving brand awareness, capabilities confidence and sales.

·               Automated the assessment process and developed and delivered a rigorous training program to increase penetration success rate.

·               Expanded customer base by generating strong business partnerships and reseller programs.

·               Clients included all levels of the US and Canadian governments and banking clients ranging from De Novo status to greater than fifty billion in assets across the Americas.

·               Lead penetration testing and compliance teams auditing for over 300 clients internationally.

division president & lead AuditorFebruary 2002 – December 2006

infosight, inc.Miami Lakes, FL

A security and IT compliance and vulnerability consulting service.

Directed a Security Services consulting group within the international banking and financial industries managing security specialists and overall practice performance. Accountable for Comprehensive Vulnerability & Risk Assessment (CVRA) security audits, risk assessment and mitigation, penetration testing, and ethical hacking for multi-year engagements.

·               Achieved a 99.2% network penetration success rate with an average network penetration time of 11.2 minutes, and a best zero-knowledge penetration time of 4 minutes.

·               Spearheaded simulated and actual break-ins, impersonations, social engineering, and ethical hacking

·               Displaced the competition at unprecedented levels, conducting 500+ assessments in 5 years… garnering numerous accolades from federal and state audit community representatives.

·               Advisor to the board of directors for the nation’s fastest growing bank in the US, providing executive level leadership for all security and risk management endeavors.
 

CURRENT CERTIFICATIONS

·               CISSP - Certified Information Systems Security Professional – 56764

·               ISSMP - Information Systems Security Management Professional – 56764

·               ISSAP - Information Systems Security Architecture Professional – 56764

·               CCSP – Certified Cloud Security Professional – 56764

·               PCIP - Professional in Critical Infrastructure Protection

·               SCSAS - Sun Certified Solaris Associate - SUN598437

·               CPTE - Certified Penetration Testing Expert (Instructor)

·               CICP - Core Impact Certified Professional

Previous Certifications and training delivered

·               GIAC - GPEN – GIAC Certified Penetration Tester

·               CCNA/CCNP - Cisco Certified Network Associate/Professional – CSCO10277493 (Instructor)

·               CCDA/CCDP - Cisco Certified Design Associate/Professional– CSCO10277493 (Instructor)

·               CQS - Cisco Qualified Specialist – IP Telephony Field Engineer– CSCO10277493

·               MCSE - Microsoft Certified Systems Engineer (Instructor)

·               Microsoft Windows /2000/2003/2008/XP/Vista/7 – (Instructor)