Profiles search
Khari Alexander
Information Security Trusted Adviser and Thought Leader
Ft. Washington, MD, United States
Details
Education:
BBA
Management
Jackson State University
2003 : 2009
CIO Pocket MBA
Boston University - School of Management
2008 : 2008
Management
Jackson State University
2003 : 2009
CIO Pocket MBA
Boston University - School of Management
2008 : 2008
Experience:
Develops and maintains security strategies, requirements, and standards for applications and platforms. Provides in-depth technical security guidance as the Security Subject Matter Expert (SME) for various technologies and project areas. Ensures company security policies, standards and industry standards are communicated to program teams during the Software Development Life Cycle (SDLC) process. Able to identify gaps and work with project teams to improve security while retaining time to market, functionality, and scalability. Reviews and approves Security Accreditation tasks during each phase of SDLC. Serves as point of escalation for security issues and risks that may arise. Has a broad knowledge in areas of Security such as Cloud Computing, Application, IAM, Cryptography, Infrastructure, DevSecOps and Risk.
2022 : Present
Marriott International
Associate Systems Architect
Khari K. Alexander, is an Independent Consultant living and working in Washington, D.C. Cyber-Law • IT Governance • IT Risk • Cloud Security • Social Networking Security •IT security
Security Architecture Management • Project/Program Management • Threat & Incident Management • Disaster
Recovery Business Continuity • Strategic Planning • IT Security Software Development • Process Optimization
Regulatory Compliance Technical Writing • Cost/Budget Control • Identity & Access Control • Change Control
Management • Forensics • E-Discovery
2014 :
Alexander Security Group
Principal Cybersecurity Consultant
• Successfully implemented the campus-wide Information Security Program, Data Governance, Operational strategy,
Vulnerability management, Awareness Program.
• Conduct Security Controls Assessments (SCA), IT auditing, vulnerability scanning, network, wireless, and web
application penetration testing.
• Based on research and industry best practices, developed Standard Operating Procedures (SOPs) on how to
identify and validate weaknesses/vulnerabilities in supporting systems (infrastructure) to include servers and
database servers.
• Configured and supported security tools, such as firewalls, anti-virus software and patch management systems.
• Configured Fortinet Firewall tool to analyze, manage, and secure all forms of unstructured data as well as URL filtering
• Developed a Cloud Security Stack as a guidance for SaaS services and map all the layer to NIST security controls
and CIS20.
• Implemented a Incident Response management and Crisis management policy.
• Provide security analysis and strategic recommendation for all internal developed applications.
• Provide contract review on security items related to RCC services and potential vendors.
• Created Data Breach forms and process for documenting all data breach potential breaches.
• Responded immediately to security incidents and provided post-incident analysis as well as process review.
2013 : 2015
Roxbury Community College
Interim Director of Network Services and Security
▪ Developed new model of service delivery by introducing ITIL Service, server provisioning, change management, and configuration management techniques
▪ Implemented disaster recovery plan and business continuity by centralizing data center
▪ Improved network stability by upgrading Core Cisco 7200 Router and Cisco 2950 at the edges
▪ Directed complete MS Exchange Migration from Exchange 5.5 to Exchange 2007 for improved email collaboration and SharePoint intranet integration
▪ Implemented Cisco ASA 5500 appliance for traffic management
▪ Leveraged Shared Service model with City of Boston to support multi-million dollar data center by leveraging VMWARE VSPHERE 5.5 and EMC Centera Storage Platform
▪ Improved Boston EMS network infrastructure with Category 6 cabling infrastructure in preparation of Cisco Systems Unified Communication Strategy featuring Call Manager
▪ Leveraged City of Boston’s fiber-optic network to eliminate T1 infrastructure yielding $150k cost savings
▪ Implemented situational analysis and business intelligence using LIVEMUM tool to improve emergency response
▪ Managed Communications Engineering unit that supported city-wide Motorola Project-25 standardized Radio Network
▪ Implemented INMOTION Mobile Gateway solution for mobile workforce data, and GIS
▪ Applied ISO 27001 and NIST 800-53 security frameworks.
2009 : 2012
Boston Emergency Medical Services
Director Of Information Technology
Provide strategic executive leadership in the areas of Cyber Security, Risk Management and Security Operations. Developed methodology for evaluating the effectiveness of security management processes and
trained both consultants and senior managers on its use. Designed and implemented citywide processes to protect,
detect, and recover from threats based on risk strategy. Established and maintained enterprise-wide security
practices to include change control and business continuity. Key member of the Information Security
Committee and participated in Global Outsourcing and Emergency Response Committees. Coordinated
cybersecurity regulatory audits and cooperated with DHS Cybersecurity team. Oversaw the troubleshooting,
protection and management of infrastructure systems such as DNS, email, VPN, wireless networks, firewalls
and enterprise authentication. Managed governance and control processes applicable to the Cybersecurity
organization, including but not limited to self-assessment, resiliency and recovery. Outstanding management,
leadership and coaching skills.
2008 : 2009
City of Jackson Mississippi
Chief Information Technology Officer
2022 : Present
Marriott International
Associate Systems Architect
Khari K. Alexander, is an Independent Consultant living and working in Washington, D.C. Cyber-Law • IT Governance • IT Risk • Cloud Security • Social Networking Security •IT security
Security Architecture Management • Project/Program Management • Threat & Incident Management • Disaster
Recovery Business Continuity • Strategic Planning • IT Security Software Development • Process Optimization
Regulatory Compliance Technical Writing • Cost/Budget Control • Identity & Access Control • Change Control
Management • Forensics • E-Discovery
2014 :
Alexander Security Group
Principal Cybersecurity Consultant
• Successfully implemented the campus-wide Information Security Program, Data Governance, Operational strategy,
Vulnerability management, Awareness Program.
• Conduct Security Controls Assessments (SCA), IT auditing, vulnerability scanning, network, wireless, and web
application penetration testing.
• Based on research and industry best practices, developed Standard Operating Procedures (SOPs) on how to
identify and validate weaknesses/vulnerabilities in supporting systems (infrastructure) to include servers and
database servers.
• Configured and supported security tools, such as firewalls, anti-virus software and patch management systems.
• Configured Fortinet Firewall tool to analyze, manage, and secure all forms of unstructured data as well as URL filtering
• Developed a Cloud Security Stack as a guidance for SaaS services and map all the layer to NIST security controls
and CIS20.
• Implemented a Incident Response management and Crisis management policy.
• Provide security analysis and strategic recommendation for all internal developed applications.
• Provide contract review on security items related to RCC services and potential vendors.
• Created Data Breach forms and process for documenting all data breach potential breaches.
• Responded immediately to security incidents and provided post-incident analysis as well as process review.
2013 : 2015
Roxbury Community College
Interim Director of Network Services and Security
▪ Developed new model of service delivery by introducing ITIL Service, server provisioning, change management, and configuration management techniques
▪ Implemented disaster recovery plan and business continuity by centralizing data center
▪ Improved network stability by upgrading Core Cisco 7200 Router and Cisco 2950 at the edges
▪ Directed complete MS Exchange Migration from Exchange 5.5 to Exchange 2007 for improved email collaboration and SharePoint intranet integration
▪ Implemented Cisco ASA 5500 appliance for traffic management
▪ Leveraged Shared Service model with City of Boston to support multi-million dollar data center by leveraging VMWARE VSPHERE 5.5 and EMC Centera Storage Platform
▪ Improved Boston EMS network infrastructure with Category 6 cabling infrastructure in preparation of Cisco Systems Unified Communication Strategy featuring Call Manager
▪ Leveraged City of Boston’s fiber-optic network to eliminate T1 infrastructure yielding $150k cost savings
▪ Implemented situational analysis and business intelligence using LIVEMUM tool to improve emergency response
▪ Managed Communications Engineering unit that supported city-wide Motorola Project-25 standardized Radio Network
▪ Implemented INMOTION Mobile Gateway solution for mobile workforce data, and GIS
▪ Applied ISO 27001 and NIST 800-53 security frameworks.
2009 : 2012
Boston Emergency Medical Services
Director Of Information Technology
Provide strategic executive leadership in the areas of Cyber Security, Risk Management and Security Operations. Developed methodology for evaluating the effectiveness of security management processes and
trained both consultants and senior managers on its use. Designed and implemented citywide processes to protect,
detect, and recover from threats based on risk strategy. Established and maintained enterprise-wide security
practices to include change control and business continuity. Key member of the Information Security
Committee and participated in Global Outsourcing and Emergency Response Committees. Coordinated
cybersecurity regulatory audits and cooperated with DHS Cybersecurity team. Oversaw the troubleshooting,
protection and management of infrastructure systems such as DNS, email, VPN, wireless networks, firewalls
and enterprise authentication. Managed governance and control processes applicable to the Cybersecurity
organization, including but not limited to self-assessment, resiliency and recovery. Outstanding management,
leadership and coaching skills.
2008 : 2009
City of Jackson Mississippi
Chief Information Technology Officer
Company:
Marriott International
Years of Experience:
20
Skills
Active Directory, Business Analysis, Business Continuity, Business Process Management, Change Management, Cisco Technologies, Cloud Computing, Computer Security, Consulting, Data Center, Disaster Recovery, Enterprise Architecture, Firewalls, HIPAA, Information Security, Information Technology, Infrastructure, Integration, ITIL, IT Management, IT Operations, IT Service Management, IT Strategy, Leadership, Management, Networking, Network Security, Program Management, Project Management, Security, Servers, Strategy, System Administration, Telecommunications, Testing, Vendor Management, Virtualization, VMware
About
Seasoned security leader with proven success in cybersecurity, risk management and compliance. Strong
ability to lead a security organization to meet and exceed designated goals and expectations. Extensive
background in developing and implementing security solutions that enhance business objective and mission.
Profile Photo
