Profiles search
Mark Eichholz
Sr. Director, Information Security
Lake Saint Louis, MO, United States
Details
Experience:
In this role reporting to the CIO, I am responsible for operating and monitoring the information security and compliance initiatives established across the business unit to enable the company to meet its legal, contractual and business-related requirements for data confidentiality, integrity and availability through the effective use of technology controls, procedural controls, policies and information security awareness objectives.
2022 : Present
Maritz
Sr. Director, Information Security
During my time as CIO, I spearheaded risk management, information security and assurance, governance, compliance, and external audits/assessments to ensure the utmost transparency and improve process efficiency. I worked closely with App Dev and DevOps teams to incorporate a DevSecOps function and helped push the company away from on-site data centers and focused more on a cloud based infrastructure and footprint. This increased organizational effectiveness and transformed the company in a “re-startup” improving end-to-end processes and operations across the IT Spectrum.
My accomplishments within this role are following :
• Delivered exceptional performance in managing multiple teams, efficiently utilizing resources, forecasting budgets for information security, streamlining operations, and overseeing Security, Systems, and Development, and Operations teams.
• Ensured seamless workflow by defining an updated IT roadmap for the company and delivered directly to the CEO and ownership.
2017 : 2022
Financial Network, Inc.
Chief Information Officer
Serving as the CISO, I led and directed the Information Security team to manage all facets of IT security, physical security, compliance, privacy, and firm awareness. During this time, I led our security teams through the transformation of information security from an audit-driven , customer response exercise to a mature, well-orchestrated program focused on continuous improvement.
Below listed are some of my achievements within this role :
• Oversaw design and engineering processes of company firewalls, IDS, Anti-virus, multi-factor authentication, physical, and logical security of the office and three data centers to optimize end-to-end security and prevent breaches.
• Determined loopholes by executing vendor security/vulnerabilities assessments, conducting penetration testing, and devised robust mitigation solutions.
• Maximized protection of information assets and sensitive information in collaboration with applications and operations groups.
• Optimized protective measures by managing and configuring encryption keys and SSL certificates, while ensuring utilization of best practices and up-to-date standards.
2012 : 2017
Financial Network, Inc.
Chief Information Security Officer | Director, Information Security
In this role, I superintended activities in multiple areas within the organization, including, PeopleSoft Security, IdM, roles and provisioning, patching, HIPAA audit compliance, enterprise SFTP, vulnerability assessment, physical security, Incident management, CERT, and the emergency incident response process, as well as cross functional security and system wide safety updates.
Some of my key contributions are as follows :
• Spearheaded security operations, engineering processes, and compliance of ERP system implementation within healthcare sector, while performing duties as Security Program Lead on the Symphony Project.
• Transformed workflows and devised new processes to accomplish day-to-day duties related to human resources, finance, and supply chain business functions by integrating Oracle, AHIS deployed PeopleSoft security environments.
• Delivered impeccable service by helping to architect and deploy security infrastructure in AH hospital system as part of the Symphony Project to optimize daily operations and processes.
• Executed threat hunting drive in health ministries and corporate offices to efficiently determine vulnerabilities and deliver actionable recommendations.
• Collaborated with internal counsel and audit support to facilitate in maintaining system wide compliance with HIPAA guidelines and framework.
2010 : 2012
Ascension Health Information Services
Symphony Security Program Lead
2008 : 2010
Monsanto
Sr. Security Engineer
2022 : Present
Maritz
Sr. Director, Information Security
During my time as CIO, I spearheaded risk management, information security and assurance, governance, compliance, and external audits/assessments to ensure the utmost transparency and improve process efficiency. I worked closely with App Dev and DevOps teams to incorporate a DevSecOps function and helped push the company away from on-site data centers and focused more on a cloud based infrastructure and footprint. This increased organizational effectiveness and transformed the company in a “re-startup” improving end-to-end processes and operations across the IT Spectrum.
My accomplishments within this role are following :
• Delivered exceptional performance in managing multiple teams, efficiently utilizing resources, forecasting budgets for information security, streamlining operations, and overseeing Security, Systems, and Development, and Operations teams.
• Ensured seamless workflow by defining an updated IT roadmap for the company and delivered directly to the CEO and ownership.
2017 : 2022
Financial Network, Inc.
Chief Information Officer
Serving as the CISO, I led and directed the Information Security team to manage all facets of IT security, physical security, compliance, privacy, and firm awareness. During this time, I led our security teams through the transformation of information security from an audit-driven , customer response exercise to a mature, well-orchestrated program focused on continuous improvement.
Below listed are some of my achievements within this role :
• Oversaw design and engineering processes of company firewalls, IDS, Anti-virus, multi-factor authentication, physical, and logical security of the office and three data centers to optimize end-to-end security and prevent breaches.
• Determined loopholes by executing vendor security/vulnerabilities assessments, conducting penetration testing, and devised robust mitigation solutions.
• Maximized protection of information assets and sensitive information in collaboration with applications and operations groups.
• Optimized protective measures by managing and configuring encryption keys and SSL certificates, while ensuring utilization of best practices and up-to-date standards.
2012 : 2017
Financial Network, Inc.
Chief Information Security Officer | Director, Information Security
In this role, I superintended activities in multiple areas within the organization, including, PeopleSoft Security, IdM, roles and provisioning, patching, HIPAA audit compliance, enterprise SFTP, vulnerability assessment, physical security, Incident management, CERT, and the emergency incident response process, as well as cross functional security and system wide safety updates.
Some of my key contributions are as follows :
• Spearheaded security operations, engineering processes, and compliance of ERP system implementation within healthcare sector, while performing duties as Security Program Lead on the Symphony Project.
• Transformed workflows and devised new processes to accomplish day-to-day duties related to human resources, finance, and supply chain business functions by integrating Oracle, AHIS deployed PeopleSoft security environments.
• Delivered impeccable service by helping to architect and deploy security infrastructure in AH hospital system as part of the Symphony Project to optimize daily operations and processes.
• Executed threat hunting drive in health ministries and corporate offices to efficiently determine vulnerabilities and deliver actionable recommendations.
• Collaborated with internal counsel and audit support to facilitate in maintaining system wide compliance with HIPAA guidelines and framework.
2010 : 2012
Ascension Health Information Services
Symphony Security Program Lead
2008 : 2010
Monsanto
Sr. Security Engineer
Company:
Maritz
About
A security-focused and technically astute professional with extensive experience in conducting risk analysis, determining vulnerabilities, and implementing vigorous measures to prevent security breaches. Recent experience includes re-architecting organizational infrastructure, improving daily operations, and optimizing productivity.
Experienced in leading multiple information security teams to manage all facets of IT and security operations. My key expertise lies in leading numerous audit support frameworks, threat-hunting campaigns, identifying vulnerabilities, devising robust mitigation strategies, and implementing efficient security processes to optimize protection of sensitive information.
I have a track record of success in analyzing business requirements, devising technological solutions, and leveraging cutting-edge tech-stack to design and deploy customized security and infrastructure solutions. Recognized for my out-of-box thinking ability and my exceptional problem-solving, risk-analysis, strategic planning, and analytical skills.
Profile Photo
