Profiles search

Eric Holtzclaw

vCISO Consulting Partner | Compliance, Risk Modeling, Security Budgets, DevSecOps Solutions
San Francisco, CA, United States

Details

Experience: 2020 : Present

Improving

Consulting Partner

2020 :

iTexico

Head Of Security

• Compliance for SAE16, ISO2700 and PCI with pre security assessments before audits from a CPA firm, also assisting with security budgets for the enterprise

• Logging and Visibility to a SEIM

OSSEC Agent on Windows, Linux, Apple to ElasticSearch (this is a Splunk Replacement) it’s a quarter of the cost and can be deployed in the cloud in a HA mode as the default

• Automation and operationalizing services for the enterprise (DevSecOps)

• Pen testing, vulnerabilities management, OS imaging harding, OWASP coding

• Compliance automations (config changes)

• Operationalize security with work flow and Policy writing (SDLC, ITIL, Scrum)

• IdM platforms and integrations (Red Hat IdM, MS AD)

• BYOD platforms and integrations

• IDS/IPS and Firewall platforms (WAFs) and integrations (Sourcefire, SecureOnion, Imperva, PAN)

• End-to-End Encryption technologies (HSM, PKI’s, Root CA’s, mobile applications, cloud file sharing, and databases)

2016 :

Black Cat Designs

Information Security Consultant

Define and provide the strategic roadmap for security, technology development, planning, execution and implementation.

Partner with senior business heads across the departments to understand business needs and requirements.

Build a team of software engineers and developers who can deliver the highest quality products in a highly time sensitive environment.

Proven experience as a business owner, head of technology, and security with innovating customer driven IT consulting firm.

Proven experience managing a team of both local and offshore software engineers and developers.

Proven experience managing complex custom software development, systems infrastructure and data warehouse projects from inception to implementation.

2019 : 2020

Grasshopper Kiosks

CIO

2018 : 2019

Grasshopper Kiosks

CTO
Company: Improving

About

As a Consulting Partner at Alpine Security Group, I serve as a virtual Chief Information Security Officer (vCISO) for 25 SaaS companies, helping them achieve compliance, security, and automation goals. I lead and support multiple projects across IT, HR, and Cloud domains, such as FedRAMP, SAE16, ISO2700, and PCI audits, exit readiness, and security budgeting.



With over 25 years of IT consulting and security experience, I have developed a wide range of competencies and skills, such as pen testing, vulnerability management, OS hardening, OWASP coding, compliance automation, policy writing, identity management, BYOD, IDS/IPS, WAFs, and encryption technologies. I have worked with various platforms and tools, such as AWS, Azure, GCP, OSSEC, ElasticSearch, Terraform, and Container security. I have also made many clients happy, including XOfficeLive.com, Browns Rehmus and Foxworth, Tellme, Lucasarts, Calypte Biomedical, Inacom, America West, Granite Construction, and SSFCC. My mission is to provide effective and efficient solutions that enhance the security posture and resilience of my clients.