Home

Thomas John Maika - Technical Program Director Manager

[email protected]

Location: Fort Collins, Colorado, USA

Relocation:

Visa:

[email protected] US CITIZEN-Thomas Maika, PMP, CEH, B.Sc. CO, WY, NE ph. 713-594-2442 Work auth: U.S. Citizen ACTIVE CLEARANCE: US Gov't Clearance, Nuclear NRC 10 CFR 73.57 May 2025 Previously held: DOD USN Secret Clearance-Tricare 2012, and US Treasury Public Trust 2017-2023, US CMMS Public Trust 2012-2016, US Dept. of Education, Public Trust 2016. EXPERIENCE Data Regime Co., Softpath Systems Clients: Colorado, Wyoming, Nebraska June 2024 - Present Technical Program Lead, 200 subordinates Budget $50 million+ 50% Hands-on technical 50% Managerial CLIENT SECTORS SERVING: DOD DOJ, US Navy, USMC, US Army, US Coast Guard, NYPD, Ft. Worth, TX PD, New Orleans PD, US Marshalls. Utility, Nuclear Energy Utility Generation, Electric Utility Transmission, Substations, OT, DMZ, IIoT. Dominion Energy, Next Era-FPL, Entergy Inc., PG&E. BFSI clients, Banking, US Treasury, Thrifts, CPA Firms, Service Bureaus, Mortgage, Insurance Companies. Pharmaceutical, Healthcare, Health-Medical, US Navy Tricare, United Healthcare/OPTUM, CIGNA, BCBS affiliates. Telecommunications, Spectrum, Charter Communications, Pitney-Bowes, Data Regime Tech, Forensic CEH, Vulnerability, Threat management clients with NDAs in place. RELATED EXPERIENCE listed by Skillset 1. Enterprise Governance Risk Compliance EGRC standards, DOD, Military, DOJ, Nuclear Utility Test SCADA internal controls and maintain risk framework. Identify KRI key risk indicators. Utilize IT Audit Standards SOC 1, 2, 3, NRC internal controls, SOX, GDPR, IAPP, GLBA, NIST 800-53, NIST 800-82, Modbus, IEC61850, DNP3, SCADA. Platforms, GOOSE, Verizon, SAAS, MaaS, VMaaS, MSSP, PAAS, DLP, DNP3. Standards, Electric Utility, Nuclear 10 CFR 73.57, Title 10, NRC Nuclear CYB-10, CYB-106, CM AA CYB 10-3, IT AA CYB-102, IT AA CYB-103, IT AA CYB 104, IT CYB 106, IEC 62443, IEC 61850. SSE, SASE, Program management with the application of US DOD DIARMF, DISA-STIGS, CJIS, Next Gen-911, GSEC, GCED, FDA, PSIRT, NIST, Uniform Crime Reporting Program, CAM, IRM. US Law-Codes: Title(s) 10, 18, 32, 50. Maintained compliance with DISA STIGS in missions: US Navy Tricare systems. Spares for radar/sonar for military missions Desert Shield, Desert Storm, US Navy AEGIS Sonar, Seawolf submarine, AN FPS-117, AN FPS-118 OTH Radar, OTH B backscatter, TPS-59 Portable Radar. Direct radar and sonar spares support inventory for programs: ICELAND, PEACE SHIELD, ARE-Depot, Royal Saudi Arabian Air Force, Germany, S. Korea, and Japan. Improved GE ROI by 50% in DD-250 deliverables, mission reporting accuracy. Reconciled General Electric spares database to accurately reflect finished inventory-DD-250 reports, MIL-SPECs, MIL-STDs. Work and lead multiple IT Risk Engagements with Internal Controls Risk, TOGAF, FAIR, OCTAVE, TARA, Archer risk management, RCA, Root-cause Analysis, quantifying dollar-value risk impact. Assessed and Managed IT Risk of Impact, Risk Transfer, Risk Avoidance, Risk Mitigation, Risk Acceptance, Remediation of Critical issues, Regulatory Requirements using DIARMF, DISA STIGS, and NIST. 2. Enterprise Cybersecurity, DOD, Military, DOJ, Nuclear Utility Setup and work IAM, PAM Cyberark SIEM, Beyond Trust SIEM. Administer threat management, vulnerability management, IDR, IDS, IPS, ICS/OT Cybersecurity, Endpoint security, Zero Trust attack surface, threat containment. CEH Penetration testing, eDiscovery, cryptography, AppDevSec, SecOps, DevOps, Vendor Engineering Entitlement Reviews, ICS, Auth0, SAML, MFA, Cloud CSA, CSM. Maintain, configure critical security platforms including Splunk UBA, IDR, IDS, IPS, VM platforms on Insight R7. Next Gen Configuration management CMDB, UpGuard, Tripwire, ITIL CMDB, CSDM. Data-Asset Retention, Splunk. 3. Strategic-Level Cybersecurity, C-Level Managerial efforts Serving for 18 years in strategic management of cybersystems, cryptography services for clients in BFSI, Electric Utility Companies-Nuclear energy, traditional electric generation and transmission, substations, DMZs, IIoT, and VLAN. Support programs and contracts with Financial Institutions, Data Service Bureaus, Department of Justice, CJIS Law Enforcement, Department of Defense, and Electric Utility Operations. SOX, GDPR, GxP, IAPP controls. Develop, author strategy: NIST compliance, core vendor mgt., actionable intelligence, risk-based threat detections. Research industry-focused best practices and network with core vendors to prevent intrusions, breaches via behavioral modeling UBA and machine learning capabilities. Work to configure Splunk Enterprise security, SCADA, SOAR, SIEM platforms to give fast and automated response to intrusions and threats. Fast action reports given for risk scoring, notable events, and incident response workflows. Made efficient the work schedules for cybersecurity personnel. Leader for daily 7:00 AM PM Scrum meetings. Contract Administration Lead: Watch, monitor for relevant technologies and legal criteria in system contracts. 4. Policy and Procedures Apply best practices with data ingestion, threat model building and adjustments, and research. Regularly utilize IAVA, www.cvedetails.com and farming core vendor support in order to better define our cybersecurity footprint and boundaries. Maintain Information Security Systems Manual ISSM. Scribe, document, and implement policies as needed. Update and document new system configurations, policies, procedures regarding UBA, threat, vulnerabilities. Maintain current disaster recovery procedures to accurately reflect environment and key individuals. Created new Policies and initiatives based on Nuclear FERC, NERC CIP. Pull logs for daily analysis as needed. Reference endpoints, tunnels, VPNs, UNIX, Linux, active directory, firewalls as it relates to UBA analytics. SME working with Legal & Compliance in the analysis of vendors and the vetting of contractual obligations. Roll up sleeves for upgrades on NERC, CIP, and BES, appliances, with operating systems IOS XR, IOS, Android, and IOS XE, Firewall rulesets, IT and OT Asset inventories. HMI Work with Splunk vendor technicians in farming relationships that enhance our involvement with patching, upgrades, architecture, data center design, indexers, databases. Audit internal controls referencing SOX, IAPP, GDPR, NRC Nuclear CYB 10, CYB 102, CYB 103, CYB 104, and CYB 106. Engagement Audit lead using NERC, CIP, FEDRAMP, GSA, FIPS, FDA, FFIEC, AAFISS guidance, FDIC, GAAP, NG-911, CJIS, MITRE, ISAE, IEC 81001, DIARMF, SOAR, ESMIG, NIST 800-53, ISO/IEC 27001(2) DISA STIGS. Perform analysis of data flow management of legacy firewalls, Cisco, Brocade, Juniper and recommend Palo Alto. 5. Core OT Operations, Vulnerability, Threat management, IDS, IDR, IPS, UBA Worked on team to upgrade DFR, RTU and specialty Utility IT tools in 2,000+ Substations in 6 U.S. States. Program Technician, improving security in PowerBI, Risk, VM vulnerability mgt., SIEM, XSOAR, SOAR, ATT&CK, IDR, IDS, IPS, MITRE, Excel tools. Passive and air-gapped and AdHoc scans. . Actively research known white hat and greyhat advisories with additional Intel data sources from IAVA, Microsoft, GitHub, Red Hat, Cisco, www.cvedetails.com, vendors, Peers and relevant to our OT boundaries. Look for exploits from exploit-db, packet storm security, metasploit and other open source vulnerabilities. Lead solution architect, VMaaS, vulnerability and threat management, BCS, BESS, SSEP, ESP, ADAMS, PCAs, PAM, IAM, CIAM, FIPS, FEDRAMP, GSA, FIPS, R7, Nessus / ACAS, IEC 81001, Qualys, Qradar. Work to define malicious activity and possible malware, bots, unapproved applications, vendor management and contracts that govern critical vendors. Use Sophos enterprise and McAfee enterprise. Use MITRE ATT&CK and threat detection methods and frameworks. Working to implement, optimize, and maintain the existing User Behavior Analytics (UBA) platform. Configure security appliances with firmware upgrades, EDR, EndPoint Security Cisco Secure EndPoint, Tenable Nessus / ACAS, Rapid 7, Qradar, Crowdstrike, Sentinel One, Cyware SOAR, Sophos Intercept XNE, ICS firmware. Implemented CONNECT automated tool for Rapid 7 with servicenow. Working administration involving Splunk UBA in the cybersecurity efforts involving identifying insider threats, any compromised accounts, blocking intrusions, data exfiltration, and persistent attack techniques. Conduct analysis and administer Sophos AV Enterprise. Build Splunk dashboards and use other investigation applications in all threat modeling, threat hunting or cyber hacking investigations and forensics. Reference OWASP standards and best practices in perfuming triage and investigations. Participate with SIEM tools and creative methods for threat vulnerability remediation. Certified in Rapid 7 VM, IDR, IDS, IPS, and APP SEC. Improved endpoint security with EDR Sophos Intercept X. Active in forums, UBA, CVE www.cvedetails.com, NVD vulnerability database, IAVA, PSIRT, Gartner, TrustRadius, and LANDWARNET Conference attendee. Evolved Data Regime co. to dot. TECH, .NET, .US, .COM web presence. 6. Configuration Management CMDB Admin-level support with Tripwire Enterprise, UpGuard, Splunk CMDB, ServiceNow CMDB, OKTA CMDB. Applied NIST, NERC, DISA STIGS, ISO / IEC 27001 criteria to CMDB. In-depth understanding of cybersecurity internal controls best practices: NIST, NERC CIP, ISO/IEC, DIARMF, JET DS, DIACAP, ISO 27001, 27002. Administer Tripwire Enterprise (DISA STIGS), Splunk Ec2 data retention. Tripwire Enterprise and UpGuard CMDB applied cryptography research. 7. Application Development Security AppDevSec Provide leadership projects for safety and soundness in all aspects of AppDevSec for OT domain. Initiated multifactor authentication with Auth0 and existing API interface for 200+ applications. Edit and work with new scripting and existing applications involving Python, Bash, Java scripting, PowerShell. Work to improve companywide API-based data integration. Lead in collaboration with team to troubleshoot, debug it risk, cybersecurity, native-coded applications. Support SDLC, DevOps lifecycle, flowchart, UAT, pilot, pre-post release, Ansible, Jenkins, Json. Conduct vendor code testing with veracode, DAST, SAST, manual code reviews, aqua container analysis. Application testing with Web spider, Metasploit, Rhel Linux, Checkmarx, Fortify, HCL AppScan, IBM AppScan, Insight AppSec, Json, Burpsuite, Kali Linux, Tenable Nessus/Acas, w3af, aqua container security. Use and support DAST processes and procedures (dynamic, non-source code) using Burpsuite, Kali Linux, Nessus, Waf, w3af. Design SAST (static source code) tools to safeguard applications from threats, vulnerabilities. Work with build, think and implementation of simple to complex pen testing methods involving primary discovery scans, database access, and take proactive notifications against threats. Pen testing: Burpsuite, OWASP, Metasploit, Crest, Kali linux, Yara-l, Json, social networking, shoulder surfing, physical security, AppScan, AppSec, Ansible and other white hat pen tests. 8. Data loss prevention DLP Gatekeeper of policies, procedures, McAfee DLP, MS Purview DLP, vendor, cloud contracts with legal and compliance affecting operational enclaves. Perform SME vendor farming and patch management. Lead in deploying, SOPHOS, McAfee EDR, Microsoft purview DLP, Google sec ops, Symantec DLP, McAfee DLP, McAfee EPO, products, and services. Lead resource for servicenow ERM, CMDB, CSDM. Provide resources to Servicenow ITSM, ITBM, and ITOM. Write scripts and dashboards for SPLUNK system in forensics. Warn key stakeholders against any emerging CVEs and CVEs not yet published or mentioned. 9. Endpoint Security EDR, Anti-Virus OT Level Configured Sophos SWG, Tanium, Fortinet, Dashlane, Zscaler, IBM, Insight Rapid 7, Darktrace, Okta, and Broadcom. Provide in-depth support for CyberArk Identity Access Mgt. IAM, Password Vault, Endpoint Privilege Mgt. EPM, and PAM power-user access session mgt., Elevated Accounts, Thycotic, and Central Policy Manager. MITRE, HashiCorp Vault, Broadcom CA PAM., Proofpoint PX PO, Vintela, Google SEC OPS, SSE, SASE. Work with operation and maintenance of Cyberark and Beyond Trust applications. Increased skills in modules Admin status with Splunk and OKTA configuring indexers, databases, and key dashboards. Test security posture, SME with Crowdstrike, SentinelOne, Cyware SOAR, Trellix, and Sophos Intercept X. 10. AI, Automation Programs Research and document the latest cutting edge AI, user behavioral analytics, apply them to threat algorithms, scripts, vulnerability management systems, firewalls, virtual firewalls, API interfaces, critical path equipment and systems. Interact with key stakeholders for IT security and UI Path and RPA automation. AppDevSec: Manage 200 apps, AppDev engineers, managers, staff for initiatives, credentials, IAM, PAM. Perform automation of processes with Terraform, YARA-L, Javascript, Powershell, Python scripting. Tata Consultancy Service, Pyramid CI Client locations: USA Nationwide July 2019 June 2024 Director, Technical Program Manager, 150 Subordinates Budget $500 million 50% technical, 50% managerial Client base: Citibank, N.A., Florida Power & Light-Next Era, Pitney Bowes, Cenveo, IADB development Tower Director and Program lead in Financial Services Banking, Investments, Development Banks, Manufacturing, Insurance & Casualty companies, Nuclear Electric Utilities. Led Sarbanes Oxley controls implementation, testing, and SOX 404b, GDPR, IAPP. AppDevSec programs, CMDB, CSA, DLP, key vendor entitlements, technology shift decisions, NERC CIP, Nuclear NRC compliance. Effectively applied project management agile scrum frameworks, SDLC, in enhancing cloud cybersecurity environments for fortune 500 companies and critical infrastructure for Nuclear Electric Utilities. Data Regime Co., Client locations: United States - All Feb 2017 June 2019 Technical Program Manager, Cybersecurity, Risk Budget $5 million 50% hands-on technical, 50% managerial Working with Client Base: Platform as a Service, PAAS, Software as a Service, SAAS, BASEL Accord, Management as a Service MAAS, Programs with clients: Nuclear Electric Utilities Entergy Inc., University of New Mexico, Wells Fargo, U.S. Marshalls, City of Ft. Worth Law Enforcement, Allianz and State Farm Mutual Insurance Companies, others with NDAs. Define and manage MAAS, PAAS, SAAS contracts in OT operations, 24/7 365 Elastic Cloud, CJIS analysis, Access Mgt. IAM PAM, NAC, DMZ, VLANs, NERC CIP, FERC standards. Work Tripwire Enterprise, Solarwinds, MS Entra ID, Amazon AWS API, GCP GCT, SAML WS FED Ping Federate, Saviynt IGA, Cisco XDR, Cisco ESA, Symantec Corporate, SOPHOS Endpoint security, Apache Kafka, SSE, SASE, McAfee EPO Enterprise., DLP, MS Purview DLP, MS Security Essentials, Thycotic, Beyond Trust, ver 10.7. SME standards: BASEL 3 endgame, UiPath, RPA, IEC 81001, ISO / IEC 27001:2018, FFIEC, FEDRAMP, FIPS, NIST 800-53, HIPAA 164.310, GDPR, GSA, UEBA, PMP, PMBOK, SOX section 4, IAPP, GDPR, GxP, SAP ERP 6.0. ITC Technical Svc, APEX inc., San Francisco, CA October 2016 - February 2017 Penetration testing, Cybersecurity engineer Budget $3 million 90% hands-on technical, 10% managerial Working with and traveling to clients: United Healthcare OPTUM, WellCare Healthplans Directed third party assessments, IT Audit engagements, baselining, and remediation of IT security risk. Issues surrounding HIPAA, risk standards CMS compliance, PAN data, PCI-DSS ver. 3.2 compliance, FFIEC. Directives, GSA, NIST 800-53, SOX, GDPR, IAPP, ISO/IEC 27001:2013, DISA/STIGS, McAfee DLP, Cyberark. Performed Qradar IDS/IPS on reporting and metrics: intrusion prevention, malicious data, patching. Performant Financial Recovery Corp., Livermore, CA April 2016 October 2016 Cybersecurity Engineer, Penetration Testing Budget $12 million 90% hands-on technical 10% managerial Qualified for Secret Clearance: US Treasury, US DOE, US CMMS . Led projects: NERC-CIP, vulnerability, threat assessment, security architecture and Cybersecurity. Directed cybersecurity with 1,100-user network, threat posture, AppDevSec, gap analysis risk posture. Security tools utilized: IBM Qradar, FireEye, Bit9 Carbon Black, Kerberos, Sophia, RedSeal, Proofpoint, Palo Alto, Juniper, Checkpoint, BlueCoat, WebSense Firewalls, Wireshark analyzer, Rapid 7 VM, intrusion IDR, IPS, IDS, SIEM, SOC, UEBA. Spectrum-Brighthouse Networks, Tampa, FL Oct 2015 - April 2016 Technical Program Manager, Cybersecurity Budget $10 million 75% managerial 25% hands-on technical Oversaw a 3000+ user computer CAT 1 Network project during creation of SPECTRUM Corp. Led Sarbanes Oxley 404B implementation in converting private Data to SEC Public corp. SOX standards. SEC, SOX 404b project lead involving twenty staff using PCI-DSS 12.3, SOX standards working internally with Legal and Compliance Staff and C-Level management. Analysis w GDPR, GxP, IAPP controls. Directed CSIRT, OWASP baseline, Insight Rapid 7 SIEM event trends, attack patterns, vectors, SCADA. Cybersecurity, PAN data analysis, AWS cloud, SCADA Robotics study for future merger to form SPECTRUM. Data Regime Co., New York, NY, NJ, CT, PA May 2007 October 2015 Director, Cybersecurity Technical Program Management Budget $6 million 80% managerial 20% technical Qualified for Public Trust, Secret Clearance with US Treasury, US CMMS Working with and traveling to clients: Hemisphere Holdings Corp., Bayview Financial Inc., Pamrapo Bancorp Inc., Microware Inc., and BlueCross BlueShield Affiliates, Partsfleet II, Advance Auto Corp. Setup Company-wide data standards for privately held to public SEC standards for IPO. Implemented CDO collateralized debt obligations, derivatives to issue common stock IPO. Worked with JP Morgan Chase and C-level Legal and Compliance with SOX 404B requirements. Authored new ISSM for Mortgage Co. $500k saved in identifying threats, vulnerabilities in OT environments. Staff of 3. Planning, Organization and Direction of medium-high value BFSI. Applied BASEL 2 Accord, FINRA, FEDRAMP, GSA, FIPS, CMS governance. SME TOGAF, FAIR, OCTAVE risk engagements. SME with BASEL 2, SCADA, GLBA, GSA, FIPS, SOX, CVE, NERC, FERC, CIPv3, AppDevSec, CIAM, OWASP. Strategic C-level Authoring of Policy and Threats Subject Matter Expert to Banking / Financial Services involving Vendor Risk and OT Cybersecurity, MFA. Mizuho Corporate Bank, Ltd., Tokyo Japan, New York, NY April 2004 - May 2007 Bank Officer, Vice President, BASEL Risk PM SME 45 Subordinates Budget $5 million 100% Managerial Accomplished and mitigated a $30 million risk with a Capital Markets application exposure. BASEL 2 Project Manager, 45-person team involving identifying risk $ impact, planning, milestones. Applied BASEL 2, PMP PMBOK, AGILE SCRUM, SDLC, ITIL v2, COBIT, FFIEC, FEDRAMP, FINRA, FDIC, OWASP, AML, GLBA, GSA, SOX, FFIEC directives, KRI, RMA, ISO IEC 27001. Worked Program with Deloitte & Touche. Learned Japanese Language and cultural norms in Japanese FSA Banking directives and US Banking policy. Baker Tilly LLP, merged with Radics & Co., LLC Pine Brook, NJ January 1997 - April 2004 IT Manager, IT Auditor, Banking IT Audit SME Budget $500k 70% managerial, 30% hands-on technical Qualified for Public Trust Clearance Audit Engagement lead for 300+Audits involving BASEL 2, Risk Assessment, IT-FFIEC, SSAE-16 and SSAE4302 audits for 60+ clients including Bank service bureaus. Oversaw three Staff involving risk assessment plans, IT Safety & Soundness Audits. Frequently addressed Bank boards of directors on corrective remediation regarding OT operations. Authored new audit program for FFIEC audits, Safety & Soundness Bank reviews. Risk SME with BASEL 2 ACCORD NIST 800, FEDRAMP, FINRA, FIPS, GSA, CJIS, FDIC, AML, GLBA, FFIEC, risk Assessment. Used ISACA COBIT, ITIL, BASEL II, GAAP and OTS guidance. Interpublic Group-William Douglas McAdams New York City, NY April 1994 -January 1997 Senior Network Administrator Budget $1.2 million 90% technical 10% managerial Elevated to Senior Mgr. responsible for 500+ user network and converting data to new systems in Merger. Thomson Consumer Electronics, S.A, Syracuse, NY September 1992 April 1994 Corporation Risk Manager, New Product Development Budget $50 million 100% managerial Proposed to C-level Executives a plan to unseat no. 1 SONY and to make THOMSON the new market Leader. Authored a Risk Assessment study to retool a 200+ consumer electronics product line. Promoted to Thomson Americas Risk Project Lead in assessing Risk Impact with the creation of a UNIX. Global database containing product built in U.S., Taiwan, France and Germany. GE Aerospace, Lockheed Martin Syracuse, NY September 1989 September 1992 Deputy Project Manager, Radar-Sonar Systems Budget $100 million 90% managerial 10% technical Qualified for Public Trust Clearance Clients: US DOD, US Navy, Army, Airforce, Coast Guard, USMC, Saudi Arabia, ARE Egypt, Germany, Iceland, S. Korea, Japan, and Singapore. US Military Missions: Desert Storm, Desert Shield Built inventory accounting audit reconciliation model which managed manufacturing inventory to DD-250 DOD procurement contracts allowing cost accounting and strategic management to have visibility to accurate product delivery where none existed previously. EDUCATION Bachelor of Science, Business Administration Management Franciscan University, Steubenville, OH May 1989 Mgt. Science, Business Law 1, 2, Cost Accounting, Financial Mgt. Onondaga Community College, Syracuse, NY 1993 Certification: NRC Nuclear Energy NERC CIP OPFCC 10 CFR 73.57 Title 10 Access Authorization May 2025 NRC Nuclear NERC CIP CM AA CYB-10 R3, IT AA CYB-102, IT AA CYB-103R2, IT AA CYB-104, ITAA CYB-106 Coursework: NRC NANTEL Nuclear Plant Operations April 2025 Certification: InfoSec Rapid 7 CVE Vulnerability Management, IDR, AppSec, Web Spider August 2018 Certification: Python Coding, Agamid Computer Graphics November 2024 Certification: PMBOK, PMP Project Management EDTIA.org November 2024 Certification: CEH Ethical Hacker, GSEC, GCED, EDTIA.org November 2024 Certification: AWS Cloud Certification EDTIA.org November 2024 Certification: CENTURYLINK SOC Datacenter Bonding, Grounding Policy Review July 2017 Certification: CENTURYLINK DC-SOC Telecommunication Power Maintenance Competency July 2017 Certification: CENTURYLINK SOC2, SOC3 IT Audit Competency July 2017 Certification: CENTURYLINK, ISO/IEC 27001, 2 IT Audit Competency July 2017 CERTIFICATE PROGRAMS: CISSP, CEH course certificate, Infosec Institute, (fka Vigilar) July 2006 ITIL (Information Technology Infrastructure Library) & ITSM, Insight, NYC April 2012 AT&T Network Administration, AT&T Valhalla, NY January 1997 F-M HS Diploma: NY State Regents, Spanish, foreign language, NY State Regents, Mathematics. 1986 Coursework: Junior AppDevSec, Coding Java, JavaScript, Python, Cloud Security Contracts, Administration, AWS, MS Entra ID, Google GCP, Oracle Cloud, Intellectual Property. Citibank, N.A., Lumens CenturyLink 2017-2024 Uniform Crime Reporting, Title 10, 18, 32, 50, US Code, NENA, NG-911 TCS-Public Safety, Law March 2021 2024 INDUSTRY MEMBERSHIPS / AFFILIATIONS GARP Global Association of Risk Professionals, ISACA Information Systems Audit and Control Association, FFIEC Federal Financial Institutions Examination Council, THEIIA Institute of Internal Auditors, RMA Risk Management Association, NERC North American Electric Reliability Corp., FERC Federal Energy Regulatory Commission PROFESSIONAL REFERENCES Furnished upon request. Keywords: cprogramm continuous integration artificial intelligence user interface access management database information technology purchase order microsoft California Colorado Connecticut Florida Idaho Nebraska New Jersey New York Ohio Pennsylvania South Carolina Texas Wyoming