Jamey Wofford, CISSP
Details
Management, Strategy, and Leadership (HR Management Concentration)
Michigan State University - Eli Broad College of Business
2022 :
B.S.
Computer Information Systems
Davenport University
2001 : 2003
Natural Resources/Conservation, General
Northern Michigan University
1994 : 1996
Associate's degree
General Studies
Kellogg Community College
1993 : 1996
Responsible for semi-annual and annual performance reviews, merit increases, and bonuses.
Key Responsibilities :
• Multi-team Financial Budgeting and Forecasting
• Global leadership and Team Development
• Lead SOC/SIEM efforts
• Incident Response
• Risk and Vulnerability Management
• Defense Industrial Base Compliance (CMMC, DFARS, FAR)
2022 : Present
Constellium
Global Senior Manager of Information Security
Assist West Michigan manufacturing and technology vendors with advancement of CMMC compliancy from legacy SP 800-171 controls. Develop Plans of Action and Milestones (POA&M) and compensating controls where gaps exist, provide framework for continuous monitoring to ensure compliance drift does not occur, lead and conduct weekly compliance status meetings with senior management, as well as other stakeholders. Plan, design, and implement sound security practices, including SIEM, MDR/EDR, and network security configurations.Assist West Michigan manufacturing and technology vendors with advancement of CMMC compliancy from legacy SP 800-171 controls. Develop Plans of Action and Milestones (POA&M) and compensating controls where gaps exist, provide framework for continuous monitoring to ensure compliance drift does not occur, lead and conduct weekly compliance status meetings with senior management, as well as other stakeholders. Plan, design, and implement sound security practices, including SIEM, MDR/EDR, and network security configurations.
Skills : HITRUST
2021 : 2022
Ignite Communications, LLC
vCISO/Information Security Consultant
Highlights :
• Lead and mentor team members on threat analysis/mitigation, as well as best business practices
• Budget planning
• Practice planning and development
• Prevent exploitation of critical vulnerabilities through offensive security techniques
• Provide consultative security awareness to client IT teams, as well as end users
• Present findings and remediation recommendations to client IT staff and stakeholders
• Executive summaries for C-Level professionals to assist in fiscal support of IT security resources (People, processes, and technologies)
Key Skills and Responsibilities
• Penetration Testing
• Vulnerability Assessments
• Risk Management
• Network Security
• Red/Blue Team Assessments
• WLAN Security
• Data Center Security
• Disaster Recovery
• Security Planning and Design
• Database Security
• Cisco Route/Switch
• Data-at-Rest/Data-in-Transit encryption
2018 : 2021
The KR Group, Inc.
Senior Security Services Manager
Supervisory level Solutions Architect responsible for management of staff and large projects. Responsible for client information security readiness as it relates to regulatory as well as business best practices. Conduct holistic vulnerability and risk assessments and advise client on plan of action and milestones of mitigation strategies. Perform pre-validation audit readiness for credit union customers in preparation for PCI/GLBA audits. Lead team efforts to ensure emerging threats are addressed through technological, as well as best business practices Network route/switch planning, design, implementation, and troubleshooting in Cisco, as well as HPE/Aruba WAN environments. Maintain and deploy VMWare and Hyper-V infrastructure to ensure optimal speed and availability. Design and implement storage area network (SAN) solutions to meet performance and high availability client requirements. . Oversee network assessments for current and potential clients and ensure hardware/software technologies align with demands. In charge of sales efforts as they relate to project and network infrastructure demands for current and potential clients.
2017 : 2018
Red Five IT
Senior Security Manager
Onsite consultant in charge of the planning, design, and implementation of enterprise VMWare, storage, and network infrastructure. Responsible for maintaining and improving productivity through continuous monitoring and improvement of the client’s multi-tiered spindle and flash-based storage area networks (SAN), including the high-performance computing (HPC) environment. Evaluate and modify the network, as well as virtual infrastructure as it relates to performance improvements of resource intensive services. Ensure high availability of all virtual enterprise compute resources through enhanced VMWare features. Implement and maintain disaster recovery (DR) site effectiveness by utilizing site-to-site replication technologies. Meet aggressive Recovery Point Objectives (RPOs) by way of VM and block-level replication. Monitor resource availability, including emerging network traffic patterns that require upgrades or topology changes. Mentor and foster growth of onsite contract staff to ensure a balanced and cohesive team skill set.
2014 : 2016
Muskegon County Information Systems (ISI/NextIT)
Lead Network Manager
Skills
Active Directory, Analytic Problem Solving, Business Continuity, Business Metrics, Cisco Routers, Cisco Technologies, CISSP, Computer Forensics, Computer Hardware, Computer Security, DIACAP, Disaster Recovery, Diversity & Inclusion, Enterprise Storage, Firewalls, Foreign Currency, Government Regulations, Incident Response, Industry standards, Information Assurance, Information Security, Information Security Management, Information Technology, Integration, International leadership, Leadership, Linux, Management, Network Administration, Network Security, Penetration Testing, Planning Budgeting & Forecasting, Project Management, Risk Management, Security, Security+, Security Audits, Servers, Strategy, System Administration, Systems Engineering, Threat & Vulnerability Management, VDI, Veeam, Vendor Risk Management, VMware, VMware vSphere, Vulnerability Assessment, Vulnerability Management, Windows Server, SharePoint, DNS, Unix, Intrusion Detection, IPS, TCP/IP, Virtualization, IDS, DoD, Configuration Management, Security Clearance, Enterprise Architecture, VPN, Microsoft Exchange, Checkpoint, System Deployment, Network Design, Routing Protocols, Border Gateway Protocol (BGP), EIGRP, Quality of Service (QoS), software defined networking, hpe/aruba switching, aruba wireless
About
As a Global Senior Manager of Information Security at Constellium, I have over 17 years of experience in designing and implementing effective information security solutions for complex and diverse challenges. I hold a CISSP certification and several Cisco certifications, and am near completion of a master's degree in management, strategy, and leadership from Michigan State University.
I lead a global team of information security engineers, analysts, and architects, and I'm responsible for budgeting, vendor risk management, vulnerability management, and incident response. My core competencies include GRC, penetration testing, risk management, and project leadership. I have successfully applied these skills across multiple verticals, such as defense, financial, and healthcare. My mission is to protect and enable the business objectives of Constellium and its partners, while fostering a culture of security awareness and best practices.
Profile Photo
