Mike Otto, CISSP, CCSP
Details
Western Governors University
2022 : 2024
Health Care District of Palm Beach County
Manager, Information Security
- Developed, implemented, and managed a comprehensive information security program, including policies, standards, procedures, and technical controls.
- Conducted regular risk assessments and vulnerability assessments to identify and mitigate potential security threats and vulnerabilities.
- Oversee the implementation and monitoring of security measures, such as firewalls, intrusion detection systems, data encryption, and access controls.
- Served as the organization's HIPAA Security Officer, responsible for ensuring compliance with the HIPAA Security Rule.
- Interpret HIPAA regulations and provide guidance to the organization to ensure adherence to the required standards.
- Conduct regular audits and assessments to monitor compliance with HIPAA requirements and address any identified deficiencies.
- Develop and implement an incident response plan to effectively detect, respond to, and recover from security incidents or breaches.
- Lead investigations into security incidents, coordinating with internal teams, external vendors, and law enforcement, as necessary.
- Conduct post-incident analysis to identify lessons learned and recommend improvements to prevent future incidents.
- Develop and deliver security awareness training programs to educate employees on information security policies, procedures, and best practices.
- Collaborate with cross-functional teams, including IT, legal, compliance, and business units, to align security initiatives with organizational goals.
- Serve as a subject matter expert on IT security and HIPAA compliance, providing guidance and support to internal stakeholders.
- Stay informed about regulatory changes and industry standards related to information security and healthcare data privacy.
2020 : 2023
Vail Health
Information Security Officer, Manager Information Security
2018 : 2021
Vail Resorts
Mountain Safety
• Administration of the Public Safety Network for Adams County.
• Managing and configuring Cisco network equipment for network changes and new build-outs.
• NextGen Firewalls and Security
• Monitor computer networks for security issues.
• Investigate security breaches and other cyber security incidents.
• Work with security team to perform tests and uncover network vulnerabilities.
• Fix detected vulnerabilities to maintain a high-security standard.
• Cisco Call Manager and Phone System Administration.
• Network Design and build-outs.
• Monitoring activity and outages.
• Working with member agencies to troubleshoot connectivity problems or to set up new links and access privileges between users and hosted applications.
• Deploy resources for mobile units to connect to the dispatch applications.
• Developing policies for mobile units and access to applications and agency resources.
• Maintaining configurations and software upgrades.
• Working with hardware and software vendors to establish connectivity between hardware and software at remote tower locations back to the local system core.
• Troubleshooting physical layer connectivity on copper and fiber infrastructure.
• Configuring point-to-point and remote access VPN solutions.
• Documenting topology and procedures for software and hardware.
2015 : 2020
Adams County Communications
Network Engineer
Supporting Customer Issues, including :
• Windows 2008/2012 Server
• Red Hat, CentOS, FreeBSD or Debian Linux
• Virtualization platforms (Citrix XenServer, VMware, Hyper-V)
• Web Server (Apache, IIS, and nginx)
• Domain Name System (DNS)
• Email and Mail Servers (Qmail, Exim, Postfix)
• Remote Access Tools (SSH, Remote Desktop, and IPMI/KVM)
• Database Servers (MySQL, MSSQL, Big Data Solutions)
• Network Connectivity and Troubleshooting
2014 : 2015
SoftLayer, an IBM Company
Customer Support Technician
Skills
Active Directory, Application Security, CentOS, Cisco ASA, Cisco Firewall Security, Cisco IOS, Cisco Technologies, Cloud Computing, Customer Support, Cybersecurity, Data Privacy, Domain Name System (DNS), Firewalls, Identity & Access Management (IAM), Information Security, Information Technology, Infrastructure, Internet Protocol (IP), Internet Protocol Suite (TCP/IP), LAN-WAN, Linux, Linux Server, Linux System Administration, Microsoft Azure, Microsoft Exchange, Network Administration, Network Architecture, Network Design, Network Engineering, Network Infrastructure, Network Infrastructure Architecture, Networking, Network Security, PC & Mac platforms, Red Hat Linux, Server Administration, Solarwinds, Switches, System Administration, Troubleshooting, Virtualization, Virtual Private Network (VPN), VMware, VMware Certified Professional, VMware ESX, VMware vCenter, VMware vSphere, Wide Area Network (WAN), Windows, Windows Server
About
Results-oriented Information Security Leader with a proven track record in safeguarding sensitive data and ensuring regulatory compliance. Experienced in managing comprehensive security programs, risk assessments, and incident response plans. Exceptional ability to develop and implement robust security policies, procedures, and technical controls to protect confidential information. Strong leadership skills with a demonstrated capacity to collaborate with cross-functional teams and executive stakeholders to align security initiatives with business objectives. As the organization's HIPAA Security Officer, adept at interpreting and applying HIPAA regulations, ensuring data privacy, and mitigating security risks within healthcare environments. Committed to maintaining the highest standards of information security and driving continuous improvement in cybersecurity practices.
Profile Photo
