I am responsible for the development and delivery of a comprehensive information security strategy to optimize the security posture of the Nevada System of Higher Education. I am accountable for the development and implementation of a security program that leverages collaboration and system-wide resources, facilitating information security governance including the deployment of a state-wide information security framework, advising senior leadership on security direction and resource investments, and applying appropriate policies to manage information security risk.
Additionally, I am responsible for the security of all centralized, non-academic systems used by the state of Nevada's public universities, colleges and research institute including the state-wide ERP student information system, financial system, HR/Payroll, and several secondary internal applications and systems. I am accountable for incident response, vulnerability discovery and remediation, security awareness training, security policy development and general oversight of projects.
Before coming to NSHE, I was a Vice President of an information security consulting firm responsible for forensics investigation, litigation support, risk management and regulatory compliance efforts. I am a Certified Information System Security Professional (CISSP) and Certified Information System Auditor (CISA) and have presented nationally, regionally and locally on a variety of information security topics.