Profiles search

Brian Woodward, CISSP

Sr. Security Analyst - GOV Services
Frisco, TX, United States

Details

Education: Computer Science with focus on Information Assurance

The University of Texas at Dallas

2022

Duncanville HS

1990 : 1994
Experience: 2021 : Present

Cotiviti

Senior Information Security Analyst

Responsible for overall operations, hiring, firing, and payroll for a multi-million-dollar company that produced t-shirts through online marketplaces such as Amazon, Etsy, Wal-mart.com, and Ebay. Served as a single point of contact for all Information Technology services as well as Human Resources.

2016 : 2020

Nursery Decals and More, Inc

General Manager

Analyze and resolve security breaches and vulnerability issues timely and accurately.

Design, perform, and/or oversee penetration testing of all systems in order to identify systems vulnerabilities, define security requirements, and correct security issues.

Develop and implement the the information security strategic plan

Evaluate, recommend, and manage existing and new security products and techniques for the purpose of enhancing information security controls and practices.

Responsible for the integration, monitoring, and remediation of network devices, back-end infrastructure, and endpoint security.

Promote information security awareness and education throughout the city

Communication and implementation of organizational information security procedures and guidelines to system users.

Ensure that all security related documentation is current and accurate and report on appropriate information security standards adherence.

Assign priorities to security projects while maintaining security project assignments, deliverables, and status files.

Implement, manage, and enforce information security directives as mandated by HIPAA, CJIS, and PCI.

Perform ongoing risk assessments and audits to ensure that information systems are adequate and meet documented standards.

Coordinate investigations of suspected computer system misuse with the appropriate data owners and/or application owners while documenting the results of all investigations.

Serve as an internal information security consultant to the organization by ensuring the city applies industry best practices surrounding information security.

Perform information security risk assessments and server as an internal auditor for security issues.

Suggest and maintain departmental standards, procedures, and documentation.

2013 : 2017

City of McKinney

Information Security

Implemented Information Security department overseeing security for all of MedNetwoRx to ensure the Confidentiality, Integrity, and Availability of our systems and data. Responsible for all domains of security including Physical Security, Operations Security, Network Security, Access Controls, Risk Management, Business Continuity and Disaster Recovery Planning, Compliance with NIST, HIPAA, and HITECH Act, and overall Security Governance.

2008 : 2013

MedNetwoRX

Information System Security Officer

Directly responsible for ensuring the stability and ongoing operations for more than 2000 servers, and acted as Project Lead for a subset of approximately 500 servers. This role was a combination of proactive and reactive support in addition to planning for future additions, upgrades, and patching. Responsible for efforts in preparing for the SAS70 audit for which we greatly improved compared to the prior year. Volunteered to work both before and after the audit to make sure the business had an appropriate level of balance between security and usability

2006 : 2007

The Thomson Corporation

Senior Systems Engineer
Company: Cotiviti
Years of Experience: 29

Skills

Active Directory, Auditing, Business Continuity, CEH, CISSP, Cloud Computing, Computer Security, CPT, Data Center, Disaster Recovery, DNS, Enterprise Architecture, Federal Government, Firewalls, Hyper-V, Information Security, Information Security Engineering, Information Security Governance, Information Security Management, Infrastructure, Integration, IT Security Policies & Procedures, MCSE: Security, Microsoft Exchange, Microsoft Technologies, Networking, Network Security, Palo Alto, Penetration Testing, Risk Assessment, SCCM, Security, Server Architecture, Servers, System Administration, System Center, System Deployment, TCP/IP, Troubleshooting, Virtualization, VMware, Vulnerability Assessment, Windows, Windows Server

About

Experienced Information Security Professional with demonstrated expertise in Risk Management, Compliance, Access Control, Business Continuity Planning, and Penetration Testing. Extensive background in Infrastructure Security and providing timely resolutions to the most challenging of issues. Currently in charge of operations of a multi-million dollar business selling various shirts and decals all over the US.