Profiles search

Barry Kramer

CISO, vCISO, BISO, - 25+ years in Information Security Leadership, Research, Engineering, Compliance, and Architecture - CISSP, CISM
Los Angeles, CA, United States

Details

Education: Multiple IT, and IT Security Certifications

CISSP, CISA, CEH, CISM, PCI-QSA, SOX Security Auditor,.And over a dozen vendor specific Certs.

Multiple Certifications

1998 : 2020

Exotic Animal Training and Management (EATM) program.

Exotic Animal Behavior

Moorpark College
Experience: This is a unique position that allows me to remediate of hundreds of types of Vulnerabilities, perform Penetration Testing and Vulnerability Assessments while giving me a unique view as to what big attacks are at the front line of Information Security landscape, as well as the multiple solutions used to protect a industry giant.

2022 : Present

Cigna

AppSec Vulnerabilities Reduction Triage

Information Security Consultant -vCISO-Virtual Chief Information Security Officer, Penetration Testing, Emergency Response, Forensics.

Silent Breach specializes in network security and digital asset protection. Companies are compromised on a daily basis, resulting in direct financial losses, eroding customer loyalty, harming companies reputation and sometimes triggering significant fines and penalties.

2021 :

Silent Breach

Information Security Consultant -vCISO-Virtual Chief Information Security Officer

1995 :

Self employed

Information Security Specialist (Compliance Audits, Penetration Testing Remediation Forensics.)

2017 : 2021

S.E.D.A

VP of Information Security

Managed the top role for IT Security, creating the vision and direction of all IT Security related projects and directives.

Directed departmental operations and supervised employees directly and through lower level managers and supervisors.

Coordinated enterprise security efforts across the company.

Security risks – identified and address hundreds of undiscovered risks.

Performed And/Or Managed Quarterly Penetration and vulnerability assessment.

Implemented Intrusion Detection and protection on internal and external networks.

Managed the creation, implimentation and compliance of corporate security policy.

Managed Disaster recovery program and the corporate Emergency Response Team (CERT).

--Increased the overall security of informational assets.

2006 : 2016

CRC

CISO (Head of internal IT Security Dept. and outsourced for Security Consulting.)
Company: Cigna
Years of Experience: 29
Spoken Language: Binary and Hexidecimal

Skills

Asset Protection, Auditing, CISA, CISSP, Computer Forensics, Computer Security, Consulting, Cybersecurity, Database Security, Disaster Recovery, Enterprise Risk Management, Fraud Investigations, GIAC, GSEC, Identity and Access Management (IAM), Incident Management, Information Assurance, Information Security Management, Information Technology, Infrastructure, Intrusion Detection, ISO 27001, IT Audit, IT Management, IT Strategy, Network Engineering, Networking, Network Security, PCI DSS, Penetration Testing, Physical Security, Program Management, Risk Analysis, Risk Assessment, Risk Management, Security, Security+, Security Audits, Security Management, Security Operations, Software Development, SOX, Troubleshooting, Vulnerability Assessment

About

I am a highly experienced Senior IT Security Professional with over 20+ years of demonstrated history of success.



I work in management roles or hands on work in Information/Cyber Security for large corporations (Regardless of title, as it is often as head of the Information Security Department, I still enjoy doing hands on engineering work as there no better way to see the real threats).



When not working in management, I freelance my hands on work experience on the side, consulting in Advanced Penetration Testing, Computer Forensics, Risk Management, and Auditing work (PCI, SOX, ISO27001) etc..



I also hold over a dozen certifications in Information Security (CISSP, CISM, PCI, etc, etc. ad-infinitum, as well as multiple vendor certs.(Cisco, Checkpoint, etc.).



I excel at communication with the ability to convey highly complex and technical Information in a manor that the layman can understand.



I have been working with Information Technology since early childhood and currently work with both government sector and in the corporate world.



In the end I have over 20+ years corporate experience in Cyber Intelligence and Information Security.  And even more in Information Technology.



I have worked as a consultant and engineer, up to Senior Management and CISO. As long as the position is interesting and a challenge than I'm open to any new adventure.



I have experience in Information Security & Cyber Intelligence, both hands on as well as in Upper Management, Advanced Penetration Testing, Computer Forensics, Intrusion Detection, Risk Management, Auditing - PCI (Payment Card Industry) Data Security Standards (PCI DSS), SOX, and HIPAA.



If you need someone with over 20 years of experience that thrives on diversity than please contact me.



I love this field and has never felt like work but always a chance to learn something new.  Also I truly believe you need to have real world experience in both Invasive and Defensive tactics to have a real world understanding of the true threats the Corporate World.



Outside of the corporate world I have worked for the Department of Justice, and FBI in Child Crimes and Corporate Fraud, and have been a Expert Witness multiple times for the United States Supreme Court regarding Information Technology and Information Security. 



Regards,

Barry Kramer