Profiles search

Brad Jones

Senior Regulatory and Compliance Specialist with Broad IT Technical Knowledge
Richmond, TX, United States

Details

Education: Information Tehnology, Electrical Engineering

Dallas College

1987 : 1989

North Mesquite High

1982 : 1986
Experience: - Lead representative responsible for aligning the business units to observe and integrate with corporate policies, standards, and assist with the development of business specific guidelines, procedures, and processes.

- Work closely with all business units to facilitate the mitigation, remediation, and/or dispute resolution related to identified risk to the company.

- Provide first line insight related to various regulatory audit requirements, including PCI, SSAE-16/18, SOC-1/2, SOX 404, and FFIEC.

2006 : Present

Discover Financial Services

Senior Associate Information Security

- Provide informational security and system engineering insight for Boeing's I.D.S. ( Integrated Defense Systems ), with primary objectives to identify gaps in Information Technology processes and procedures related to both regulatory and U.S. government requirements as they pertained to logical information security and physical controls.

- Coordinate delegation of duties for a team of 20+ security consultants

- Key Principle for assisting various divisions within Boeing adopt corporate governance related to information security and process procedures.

2004 : 2004

The Boeing Company

Senior Information Security Consultant (SE Regional US Lead)

Responsible for performing detailed gap analysis, including A&P testing, associated risk assessments, and assisting with the development of the DR/BC program.

2004 : 2004

Universal Weather and Aviation

Senior Information Security Consultant
Company: Discover Financial Services
Years of Experience: 19

Skills

Active Directory, Application Security, Auditing, Business Continuity, Business Continuity Planning, CISA, CISSP, COBIT, Computer Security, COSO, Data Center, Disaster Recovery, Enterprise Architecture, Enterprise Risk Management, FFIEC, Financial Risk, Firewalls, GLBA, Information Security, Information Security Management, Information Technology, Infrastructure, Integration, Internal Controls, IT Audit, ITIL, IT Management, Linux, Networking, Network Security, Payment Industry, PCI DSS, Penetration Testing, Project Management, Risk Assessment, Risk Management, Sarbanes-Oxley, Sarbanes-Oxley Act, SAS70, SDLC, Security, Servers, SOX 404, TCP/IP, Unix, Vendor Management, Virtualization, VMware, Vulnerability Assessment, Windows Server

About

Key factors: COBIT / COSO / Sarbanes Oxley Sox 404 / PCI / GLBA / FFIEC



- Regulatory principle responsible for ensuring compliance with PCI, SOX, FFIEC, and GLBA requirements.



- Strong information security background, Audit of Internal Controls / GAP Analysis, Disaster Recovery/Business Continuity, and A&P Testing



- Strong background designing, integrating, and administering LAN/WAN functions from a Senior Engineering level.



- Strong wireless 802.11x background specializing in both fixed/mobile and short and long haul solutions.



- Strong Project Management experience with responsibilities in excess of $1,000,000.00



- 10+ years supporting a network and systems infrastructure in a senior role & 5 years holding a position responsible for 99.9999 uptime