Profiles search

Kar M.

Cybersecurity & Risk Executive Leader | People Builder | Relationship Driven | Trusted Advisor | Educator | Public Speaker
Raleigh, NC, United States

Details

Experience: As a strategic chief cyber advisor, I have had the privilege of working alongside a highly accomplished C-Suite executive to spearhead transformative security, technology, and business initiatives in dynamic and ever-changing environments. With my expertise in technological adeptness and business intelligence, I have successfully developed and executed robust cyber strategies and roadmaps, positioning the organization as an industry leader in a highly competitive landscape. My track record of success in these endeavors underscores my ability to drive impactful change and deliver results that truly make a difference.

2021 : Present

Cyber Equus

Managing Partner, cybersecurity

Being an effective people leader, led the enterprise-class information security consultation, and risk management needs for CSBB (25000+ employees); Secured budget for the team’s growth and execution of strategic security roadmap to elevate risk posture. Evaluated security posture, emerging threats, risk, vulnerabilities, compliance needs, control effectiveness, and managed robust incident responses, so the board, audit, governance, oversight, and risk committees can make informed decision with data-driven approach to remediate risks and actively worked with FDIC, OCC and other regulatory bodies to close MRAs within risk-appetite frameworks.

2019 : 2021

Wells Fargo

Senior information security executive for Consumer and Small Business Banking

Led people and digital transformation while balancing a risk-averse security posture for multi-billion-dollar bank portfolio. Operationalized Business information security officer (BISO) program and enabled it with mature processes, technology, and people. Implemented. risk pyramid approach to define assets criticality and applied adequate controls. Led Merger of equals of BB&T and Suntrust to be Truist for the digital.

2017 : 2019

Truist

Chief Information security officer for digital and retail

Direct report to the CISO; developed strategic, tactical, and operational information security program with year-to-year outlook. Industrialized IT Governance structure to reduce risks in business processes and comply with regulatory body using GRC-fusion tool. Led a team of risk practitioners and established methodologies to perform risk assessment for proprietary data, Personally Identifiable Information (PII), and critical Assets.

• Implemented mitigation strategies leveraging risk register reducing attack records by 65%.

• Developed and executed a system-wide strategy to addressing the full spectrum of the organization’s vulnerabilities by understanding the combined impact of risks (compliance, credit, liquidity, market, operational, reputation and strategic risks).

• Reduced phishing click-rate to a single digit. Authored and fashioned companywide cyber security training and awareness campaign.

• Led emerging risks and their successful mitigation strategies.

2017 : 2019

Goldman Sachs

Director of information security

• Lead, Managed, and designed security operation center (SOC) for multiple telecommunications security customers for 2 decades. Developed process flow for SOC. Trained technicians and engineers for security event management. Researched products such as various firewalls, IDS, access control (ACS) and authentication tools, lead various vendor products meetings, made informative decisions regarding resources that fit with SOC. Interviewed and hired engineers for TSOM event management. Managed the SOC from initiation phase to Execution.

• Managed inactive and non-functional IDS project to live and functioning services. Translated the clients’ requirements into technical terms, assigned tasks to engineers, supervised their duties, required updates from them regularly, and made progress until IDS became part of production environment.

• Performed analysis and provided resolution of network security related problems by managing, monitoring, and troubleshooting Checkpoint, Netscreen, Pix Firewalls, and IDS.

• Performed authentication services on RADIUS, SecureID, LDAP, Entrust and NetCache. Help troubleshoot and trained team members for authentication service, tools and methodologies.

• Provided customer support for hardware/software failures, security vulnerability, virus attacks, VPN configuration, user authentication and/or policy changes. Knowledgeable in the network fundamentals (OSI/TCP/IP)

• Authored more then 30 Job-Aid documents detailing product utilization, troubleshooting and improvisation.•

• Real-time analyzing critical DDOS, IDS, IPS attacks and mitigating them

• Write customized scripts to enhance capability of an existing platform to meet our environment needs

• Analyze and collaborate all monitoring efforts across all shifts and fine tune them to protect our infrastructure ISO/IEC 27001

• Technically trained new engineers and making them better future security engineers

2003 : 2017

Telecommunications

Security Operation Center Manager
Company: Cyber Equus

About

As a thought and people leader, my passion lies in creating innovative environments that foster new ideas and drive business solutions that enhance products and services. I firmly believe that leadership is anchored in a clear vision and plan that inspires those around me to reach their full potential. With a proven track record of building high-performing teams, I have driven cost-savings of millions by implementing an efficient and compliant enterprise-wide structure, risk-mitigation strategy, and mature cyber posture. By leveraging data-driven analysis, I strive to exceed client expectations, ultimately leading to high satisfaction.



My expertise in digital transformation has enabled me to develop and execute technology strategies across various domains, including audit and risk management, cybersecurity, and cloud. I am drawn to leadership roles that challenge me to push the boundaries of innovation, and I excel in ambiguous situations where I can collaborate cross-functionally to improve processes, develop leadership, and provide team guidance that drives productivity and profitability.



As a strategic and innovative thinker, I work seamlessly with all levels of the organization to create a culture of wins that extends beyond the status quo. I believe in creating meaningful progress by building strong bridges and nurturing mutually respectful relationships that keep the organization competitive. Rather than striving to be the smartest person in the room, I focus on thinking outside the box and collaborating with team members to build a better organization, stronger teams, and a better self. I am always eager to deliver new possibilities that lead to profitable solutions for the company. Let's thrive together!



If you're interested in learning more about my thought leadership approach, let's connect.