Orion C.

SecOps Leadership, Team Transformation, & Cyber Defense Operations Excellence

Pittsburgh, PA, United States

Details

Experience: Enterprise-grade cyber security consulting, direct, and advisory roles and information security services with various companies and clients, including PNC Financial Services (as SOC and Fusion Center lead), Giant Eagle, and others in both direct and pre/post-breach recovery and team-building roles. My focus over the past several years has been the rugged deployment of cybersecurity platforms, teams, and programs -- as well as GRC and Audit oversight, and the deployment of mission-critical Insider Threat Services and Detections in alignment with Insider Risk Mitigation Program Evaluation (IRMPE) practices.

For more visit https : //mniO.io

2014 : Present

Confidential Employer

CyberSecurity Service and Program Deployment / Proactive Breach & Insider Threat Consulting

I managed global teams of security engineers and analysts for BNY Mellon's CyberSecurity Analytics & Cyber Operations divisions. My focus was on rugged administration with some of the world's largest SIEM security implementations : My team's efforts redefined operational fluency, and met long-term objectives throughout our Information Security Division, as we transformed client delivery through proven excellence in platform, team, collaboration, and stakeholder frameworks.

I had the privilege to work with key stakeholders throughout the bank's financial and tech structures to create and rollout Insider Theat & Insider Services groups, and I overhauled stagnant programs related to Security Logging & Monitoring overhauls, and longstanding SOAR rollout targets.

I created disaster/capacity planning & recovery exercises as I oversaw several SecEng platforms, and took point on concept-to-delivery strategies in all phases of IR and SecOps case lifecycles.

My mission was to direct and stabilize critical operations, and promote excellence : I built global and SME-based teams that achieved results in areas such as SOC efforts (and by extension, Security Monitoring), Incident Response Workflows, Automation Playbooks, and Root Cause Analysis.

I created scalable, modified agile methodologies to promote rapport between team members and to deliver best-in-class service to customers.

Over the final two years, I led the Security Operations Center through a next-generation uplift by building current leaders in the program, and I progressed collaboration frameworks for threat hunting in multiple teams by designing Threat Hunting coursework, and assisted the buildout of GRC functions to support.

I personally led these groups : SIEM Platform Strategy, Log Onboarding, Threat Detection, Insider Threat, Cyber Audit, and took point on the buildout of the bank's New York City Fusion Center, CyberSecurity Analytics, O365, and Zero Trust rollouts.

2017 : 2021

BNY Mellon

Cyber Operations, SOC, Cyber Audit, & SOAR

My primary role at Giant Eagle's corporate campus was to build multi-disciplinary systems to promote operational excellence within the Information Security Architecture/Governance group, and by extension, many teams throughout the organization in order to process, discover, and remediate insider and external threat activity, security analytics, and to develop, train, and execute analyst workflow related to the processing of potential threats.

My day-to-day consisted of working with network infrastructure, architecture, governance, digital commerce, and security groups throughout the enterprise on a multitude of projects which developed, documented, and directed custom workflows for the investigation and remediation with regard to security and SIEM data. In addition to managing the rapidly growing SIEM environment, my role also included the daily management of projects with external security vendors, analysts, and engineering teams.

2016 : 2017

Giant Eagle, Inc.

InfoSec Analysis & SIEM Platform Management (Contract)

SRA is an incredible company that was putting together its first SOC team for 24x7 enterprise clients. My role was to successfully build and manage this around-the-clock team on mission-critical security projects while driving growth and client strategy from leadership.

I oversaw the implementation of response and teamwork procedures for rapid growth in client deliverables, processes, and security operations.

I also served a secondary role as technical account manager, traveling extensively to meet with security leadership and board members of Fortune 50-100 enterprises in the Financial, Pharmaceutical, Tech/Media, Consumer Products, Healthcare, and Industrial sectors to drive outsourced security initiatives and rugged account management.

2015 : 2016

Security Risk Advisors

CSOC Founder / Security Operations Manager / Technical Account Manager (Temp)

Beginning in a fast-paced contract role, I worked with an outstanding team of Pittsburgh-based cyber security analysts to formulate enriched strategies to identify, assess, analyze, and respond to critical security events with regard to worldwide intrusion attempts and incident response for PNC Financial Services.

I later served in roles including Technical Lead, SOC Training Coordinator, and well as Subject Matter Expert related to SOC Leadership Strategies, NOC, Malware Analysis, and DDoS Response. My efforts were fundamental to the company's revamped DDoS Mitigation strategies across the bank's networks.

2014 : 2015

PNC

Assistant Vice President / Intrusion Analysis / DDoS Mitigation (Contract)

Company: Confidential Employer

About

An enthusiast of all things digital. From leadership concepts to team strategy and growth, I am motivated to find entrepreneurial solutions to the digital world's curiosities.

I have diverse experience in driving agile solutions within the realms of team building, program management, and security operations among all phases of IR and DevOps lifecycles: I enjoy training the pilot as I work to deliver the airline.

Whether with clients among the Fortune 500 or as a team leader, my singular aim is to simplify the complexities of tech chaos for those that rely on me. I believe in the power and posture of a unified team: Made more whole than by the sum of its parts; moving with high velocity, engagement, pipeline, and purpose.

I carry a strong track record in program management within IT and InfoSec realms, with more of a passion for the latter. I can automate the delivery of CyberSecurity Services in alignment with world-class GRC and InfoSec teams.

I've implemented multi-year improvement plans for enterprise clients and carry over a decade of deploying and reworking existing security teams. I am familiar with the implementation of audit and compliance, security architecture, and threat-based controls and frameworks (ITIL, NIST 800-53, SABSA, SANS CSC, ISO 27001, Mitre Att&ck, among others).

I've managed teams both local and global, as well through individual projects and mission-critical security environments including the forensic analysis and triage of malware, hacking events, APT, federal law enforcement, and organized criminal activity across various Internet protocols.

I try to find myself among a landscape when travel opportunity permits. I'd call the Canadian Rockies home if I could. I am the founding member of The Nexus Project, a collective ranging from members of the PSO to other orchestral, jazz, and rock acts.