Profiles search

Brandon Edwards, CISSP

AVP, Info Sec Ops/Engineering Manager at TIAA Bank
Jacksonville, FL, United States

Details

Experience: Currently Manage

• Detection & Response Program (7) over 25+ tools

• 24x7 SOC team tier 1-3 (14)

• IAM Program (auditing access and PAM) (5)

• Threat Intel Program (2) (Brand Monitoring, Domain, Threats, Dark web activity, Fraud)

• Forensics Program

• InfoSec Incident Management

• InfoSec Representative for Bank level Incident Response

Previously Managed

• Vulnerability Management Program (scanning, re-rating, & prioritization)

• PII Discovery & reporting Program.

Services Managed

• Malware Sandbox analysis ability.

• Inventory Reconciliation.

• Security Tool Saturation Reporting.

• Access Control Review Program.

• Behavior Based Endpoint Detection & Prevention.

• Behavior Based Network Detection.

• Tool Configuration Review program (Security & IT)

2021 : Present

TIAA Bank

AVP, Lead Information Security Engineering Manager

2020 : 2021

TIAA Bank

Information Security Operations Manager

2019 : 2020

TIAA Bank

Lead Information Security Engineer

2018 : 2019

TIAA Bank

Senior Information Security Engineer

This position is responsible for

• Incident Response & Investigations, Reverse Engineering Malware

• Intrusion & Network Monitoring

• Primary for Behavior Based Endpoint Protection

• Primary for Brand Monitoring

• Primary implementing/managing Forensics program

• Perform internal / external Vulnerability Scanning and reporting/remediation guidance

• Secondary on an Enterprise Password manager

• This position will continuously make / suggest security enhancements, Perform / Automate Metrics, and offer guidance.

2015 : 2018

TIAA Bank

Information Security Engineer
Company: TIAA Bank

About

Please Note: Please do not reach out to sell any service/tool etc. unless I have initiated contact. My personal cell is on the do not call registry and I do not answer phone numbers that are not already saved in my phone. I appreciate you wanting to share your solution, however I can not maintain 9+ vendor calls/meetings a day, which is the level I'm currently receiving.



With many years of experience, my passion is coming up with and implementing creative solutions to fix and streamline issues & eliminate inefficiencies. From managing hundreds of systems, to automating system audits down to hours instead of days, to researching security incidents and responding to them, to working with system owners to have them meet Security requirements. I believe strongly that proper, People, Process & Technology is the foundation that everything should be built on. Policy, Procedure & Documentation is key to risk mitigation, while staying cost effective. I yearn to be challenged and adapt quickly. I communicate well with others, from the years working directly with customers to the years working with owners of companies and other top level decision makers, to help them truly understand the importance of what we do to protect data in a way that is easy for those unfamiliar with IT Security to understand.



I’m always looking to learn and test new things and seek new opportunities to broaden my knowledge and abilities. I feel seeing a project to its timely completion is one of the most important things I do and I am restless until it is.