Profiles search
Gary Starling
Chief Information Security Officer-> delivering software, technology, and infrastructure solutions for high-growth organizations.
Aurora, CO, United States
Details
Education:
Masters
Information Systems
Capella University
2009 : 2010
B.S
Electrical Engineering
Colorado Technical University
1991 : 1995
Information Systems
Capella University
2009 : 2010
B.S
Electrical Engineering
Colorado Technical University
1991 : 1995
Experience:
Responsible for Information Technology and Information Security strategy, policy, and operations. Highlights of activities to date :
• Lead a diverse, multi-functional team to deliver robust, highly available IT and Information Security services to our internal and external customers.
• Rationalized corporate software utilization and successfully reduced corporate IT spend by 25% without impacting operational efficiency, while maximizing value to the business.
• Manage high performance teams responsible for Cloud and Co-Lo Data Center operations, Helpdesk, Security Operations Center (SOC), systems administration, and project management.
• Developed and lead annual cross-functional “Super Audit” to maintain HIPAA, SOC 2 Type 2, and PCI compliance.
• Implement robust IT and cyber solutions including ZenDesk, Mimecast email hygiene, JAMF Mac device management, MS Intune, DUO Multi-factor Authentication, Crowdstrike Falcon endpoint protection, SaintCloud vulnerability management, and DNIF SIEM.
• Spearheaded implementation of ITIL service management processes and procedures.
• Reduced Help Desk ticket backlog from more than 1,600 to less than 50 over a 90-day timeframe.
• Evaluate and deployed technologies that enable a robust, highly available, hybrid work environment.
• Collaborate with peer leaders to implement process improvements to support a rapidly changing business model.
2021 : Present
IntelePeer Cloud Communications, LLC
Chief Information Security Officer
Provided technical guidance for a multi-million-dollar IT operation supporting more than 11,000 students and 4,000 employees across 14 locations. Managed diverse group of direct reports including Architecture & Engineering, Computer Operations, Information Security, Network Support, and Voice Services. Created strategic plans, business objectives, and budgets to guide all IT Infrastructure and Information Security activities. Researched emergent technologies and provided guidance for their adoption and secure operation. Operated and maintained 24x7x365 data centers, cloud infrastructure services, and Security Operations Center (SOC). Provided direction and thought leadership in support of :
• IT service outage reduction and customer satisfaction improvement efforts
• IT operational, finance, and people management activities
• The university’s business continuity and disaster recovery capabilities
• IT application and infrastructure modernization efforts
• Leveraged best of breed security capabilities such as Crowdstrike Falcon, Palo Alto Firewalls, Tenable.IO, Darktrace, Cisco UCS servers, Cisco routers and switches, Cisco Meraki APs, Aruba wireless, DUO MFA, Proofpoint email hygiene, and F5 WAFs.
• Provided regular reporting on the status of the information security program to the Audit Committee of the Board of Trustees.
2015 :
University of Denver
Chief Information Security Officer & Assistance Vice-Chancellor, IT Infrastructure
Held bottom-line accountability for global IT and security operations spanning 22 domestic and 14 international locations.
• Developed and maintained multi-year strategic plan for IT operations, network engineering, and corporate information security functions.
• Responsible for NOC/SOC operations in Europe and the United States
• Worked with internal & external audit, risk management, and compliance teams to define IT security policies to ensure continue compliance with domestic and international regulations governing EchoStar’s lines of business.
• Developed and maintained security strategies to safeguard the company’s computing infrastructure and intellectual property.
• Reviewed and analyzed data to determine cost savings opportunities through vendor optimization, contract renegotiations, product elimination, and process improvements.
2014 : 2015
EchoStar Corporation
Director Global IT, Networks, and Security
Oversaw IT Help Desk, systems administration, information security, and network services supporting 750+ geographically dispersed end-stage Renal Dialysis laboratories. Instrumental in creating and operationalizing corporate ISO 2700x, HIPAA, PCI, SSAE 16 Type II, and GLBA compliance programs.
2010 : 2014
Ascend Clinical, LLC.
Director, Information Technology & Security
Chief Information Security Officer, Information Security 2004 - 2010
• Provided guidance and subject matter expertise to 1800+ employees and 1100 contract/temporary workers across TriZetto’s International workforce
• Served as company subject matter expert during contract negotiations, mergers and acquisitions, and response to client questionnaires
• Developed TriZetto's enterprise security program and compliance strategies specifically tailored to address initiatives related to ISO 27002, HIPAA/HITECH, PCI DSS, SAS 70, GLBa, and SOX
• Regularly briefed existing and potential clients on the company’s security posture and ongoing compliance activities
• Developed policy and procedures addressing data classification and retention, identify and access management, risk assessment and management, data loss prevention, and data protection/encryption and business continuity
Director - Business Continuity Planning 2004 – 2010
• Developed, implemented, and managed corporate Business Continuity Management/Disaster Recovery programs in response to risk assessment and contractual/regulatory obligations
• Developed TriZetto’s crisis and pandemic management programs
• Conducted annual BCM/DR exercises in support of client and regulatory requirements
Director Corporate Information Services - Infrastructure 2008-2009
• Developed, implemented, and maintained corporate IT strategy and vision in reference to internal applications, end user workstations, network architecture, customer support, data, voice, and video communications
Sr. Manager, Network Architecture and Engineering 2001- 2004
• Lead design, test, and implementation of data, voice, and video systems implementation and modification across TriZetto’s International application service provider (ASP) environment
• Set strategic direction in reference to network architecture, access controls, and regulatory compliance efforts
2001 : 2010
TriZetto
Chief Information Security Officer
• Lead a diverse, multi-functional team to deliver robust, highly available IT and Information Security services to our internal and external customers.
• Rationalized corporate software utilization and successfully reduced corporate IT spend by 25% without impacting operational efficiency, while maximizing value to the business.
• Manage high performance teams responsible for Cloud and Co-Lo Data Center operations, Helpdesk, Security Operations Center (SOC), systems administration, and project management.
• Developed and lead annual cross-functional “Super Audit” to maintain HIPAA, SOC 2 Type 2, and PCI compliance.
• Implement robust IT and cyber solutions including ZenDesk, Mimecast email hygiene, JAMF Mac device management, MS Intune, DUO Multi-factor Authentication, Crowdstrike Falcon endpoint protection, SaintCloud vulnerability management, and DNIF SIEM.
• Spearheaded implementation of ITIL service management processes and procedures.
• Reduced Help Desk ticket backlog from more than 1,600 to less than 50 over a 90-day timeframe.
• Evaluate and deployed technologies that enable a robust, highly available, hybrid work environment.
• Collaborate with peer leaders to implement process improvements to support a rapidly changing business model.
2021 : Present
IntelePeer Cloud Communications, LLC
Chief Information Security Officer
Provided technical guidance for a multi-million-dollar IT operation supporting more than 11,000 students and 4,000 employees across 14 locations. Managed diverse group of direct reports including Architecture & Engineering, Computer Operations, Information Security, Network Support, and Voice Services. Created strategic plans, business objectives, and budgets to guide all IT Infrastructure and Information Security activities. Researched emergent technologies and provided guidance for their adoption and secure operation. Operated and maintained 24x7x365 data centers, cloud infrastructure services, and Security Operations Center (SOC). Provided direction and thought leadership in support of :
• IT service outage reduction and customer satisfaction improvement efforts
• IT operational, finance, and people management activities
• The university’s business continuity and disaster recovery capabilities
• IT application and infrastructure modernization efforts
• Leveraged best of breed security capabilities such as Crowdstrike Falcon, Palo Alto Firewalls, Tenable.IO, Darktrace, Cisco UCS servers, Cisco routers and switches, Cisco Meraki APs, Aruba wireless, DUO MFA, Proofpoint email hygiene, and F5 WAFs.
• Provided regular reporting on the status of the information security program to the Audit Committee of the Board of Trustees.
2015 :
University of Denver
Chief Information Security Officer & Assistance Vice-Chancellor, IT Infrastructure
Held bottom-line accountability for global IT and security operations spanning 22 domestic and 14 international locations.
• Developed and maintained multi-year strategic plan for IT operations, network engineering, and corporate information security functions.
• Responsible for NOC/SOC operations in Europe and the United States
• Worked with internal & external audit, risk management, and compliance teams to define IT security policies to ensure continue compliance with domestic and international regulations governing EchoStar’s lines of business.
• Developed and maintained security strategies to safeguard the company’s computing infrastructure and intellectual property.
• Reviewed and analyzed data to determine cost savings opportunities through vendor optimization, contract renegotiations, product elimination, and process improvements.
2014 : 2015
EchoStar Corporation
Director Global IT, Networks, and Security
Oversaw IT Help Desk, systems administration, information security, and network services supporting 750+ geographically dispersed end-stage Renal Dialysis laboratories. Instrumental in creating and operationalizing corporate ISO 2700x, HIPAA, PCI, SSAE 16 Type II, and GLBA compliance programs.
2010 : 2014
Ascend Clinical, LLC.
Director, Information Technology & Security
Chief Information Security Officer, Information Security 2004 - 2010
• Provided guidance and subject matter expertise to 1800+ employees and 1100 contract/temporary workers across TriZetto’s International workforce
• Served as company subject matter expert during contract negotiations, mergers and acquisitions, and response to client questionnaires
• Developed TriZetto's enterprise security program and compliance strategies specifically tailored to address initiatives related to ISO 27002, HIPAA/HITECH, PCI DSS, SAS 70, GLBa, and SOX
• Regularly briefed existing and potential clients on the company’s security posture and ongoing compliance activities
• Developed policy and procedures addressing data classification and retention, identify and access management, risk assessment and management, data loss prevention, and data protection/encryption and business continuity
Director - Business Continuity Planning 2004 – 2010
• Developed, implemented, and managed corporate Business Continuity Management/Disaster Recovery programs in response to risk assessment and contractual/regulatory obligations
• Developed TriZetto’s crisis and pandemic management programs
• Conducted annual BCM/DR exercises in support of client and regulatory requirements
Director Corporate Information Services - Infrastructure 2008-2009
• Developed, implemented, and maintained corporate IT strategy and vision in reference to internal applications, end user workstations, network architecture, customer support, data, voice, and video communications
Sr. Manager, Network Architecture and Engineering 2001- 2004
• Lead design, test, and implementation of data, voice, and video systems implementation and modification across TriZetto’s International application service provider (ASP) environment
• Set strategic direction in reference to network architecture, access controls, and regulatory compliance efforts
2001 : 2010
TriZetto
Chief Information Security Officer
Company:
IntelePeer Cloud Communications, LLC
Years of Experience:
34
Skills
Business Continuity, Cloud Computing, Cross-functional Team Leadership, Data Center, Data Center Operations, Disaster Recovery, Disaster Response, Enterprise Software, Ethical Hacking, Firewalls, Information Security, Information Security Awareness, Information Security Management, Information Technology, Integration, International Project Management, IT Audit, IT Governance, ITIL, IT Management, IT Operations, IT Security Operations, Linux, Management, Network Architecture, Networking, Offshore Project Management, Outsourcing, PCI DSS, Penetration Testing, Performance Management, Process Improvement, Program Management, Project Delivery, SaaS, SDLC, Security, Security Awareness, Security Incident Response, Servers, Software Documentation, Strategy, Telecommunications, Troubleshooting, U.S. Federal Information Security Management Act (FISMA), Unix, Virtualization, VMware, Vulnerability Assessment, Windows
About
“Real transformation requires real honesty. If you want to move forward – get real with yourself.” Bryant McGill
Profile Photo
