Profiles search

Prentis Brooks, MBA, CISSP/ISSMP

Head Of Information Security at Lincare Holdings, Inc
Clearwater, FL, United States

Details

Education: BS

Information Technology

University of Phoenix



Master of Business Administration (M.B.A.)

Information Technology

University of Phoenix
Experience: Responsible for design and implementation of the Information Security Program, including governance of information security controls and operations, Security Incident Handling, Information Security Policy and Awareness, and Information Security Program Roadmap.

2020 : Present

Lincare Holdings, Inc

Head Of Information Security

I built and managed a team of security professionals to ensure information security processes and technology functioned as expected.

Setting the corporate information security vision, I planned and led the implementation of endpoint security, network security, encryption services, vulnerability management, penetration testing, and risk assessments. I optimized processes and removed redundant technology to improve operational efficiency. I also negotiated in coordination with supply chain stakeholders to reduce the spend on critical network security technology while increasing coverage of solutions.

• Achieved reduction of 75% in operational outages resulting from failing security infrastructure through improvements to system stability.

• Gained 6% increase in employee satisfaction through focused maturation discussions with each team member, goal-focused planning, and regular information-sharing sessions with entire team.

• Realized 10% reduction of security operational spend by identifying redundant technology purchases and working with supply chain stakeholders to negotiate enterprise contracts.

• Reduced vulnerability reporting from once per month to once per week by collaborating with business line leaders to address concerns associated with heightened scanning and more frequent reporting.

2017 : 2020

Royal Caribbean Cruises Ltd.

Director, Information Security

I transferred to Time Warner Cable from America Online to establish and lead the internal Cyber-Security Incident Response team. I directed all aspects of cybersecurity, from annual penetration testing for PCI compliance to risk assessments and digital forensics. Leading the technical direction and strategy for security product selections, I developed a five-year roadmap to implement an Identity and Access Management Solution (Aveksa). I boosted systems performance, reliability, security event visibility, and proactive security controls by successfully directing the implementation of many enterprise-wide security solutions across a diverse environment supporting more than 100k internal users and 10m customers. I reduced the number of security incidents discovered externally from two or three monthly to that same number per year.

• Achieved 40% reduction in average time to recover from instruction by improving visibility of events across environment and establishing Cyber-Security Incident Response team and program supporting geographically dispersed locations.

• Realized 50% time savings in access requests through centralization and standardization of Identity Access Management and process improvements.

• Obtained 25% reduction of operational budget through cost-effective enterprise-level contract negotiations with security vendors.

• Produced 60% reduction in annual PCI spend by internalizing annual penetration testing for PCI compliance in 2010.

2006 : 2017

Time Warner Cable

Director of Cyber Security

Recruited to America Online as a Windows Web Server Administrator, due to my rapidly growing expertise and capability, I became part of the Internet Services Infrastructure and Security team in 2000 following several high profile intrusions. I improved the operational efficiency for Windows system administration by developing automation technology for Windows-based servers, integrated with existing UNIX-based systems. I was promoted to Team Lead in 2004, charged with providing incident response to all America Online and Time Warner divisions.

• Co-developed log collection system that retrieved more than 70GB of compressed data across 20,000 systems and web servers, providing content analysis and reporting within four hours.

• Designed, developed, and implemented web content delivery system in collaboration with internal stakeholders, reducing labor requirement by 120 hours weekly and deploying content within one hour across more than 3,000 systems.

• Performed technical security assessments of development projects and technology deployments within America Online (recognized as most efficient assessor across team

Led security detection initiatives, co-developing intrusion alerting systems to detect custom developed intrusions targeting America Online internal systems.

1999 : 2005

America Online

Principal Technical Security Engineer
Company: Lincare Holdings, Inc
Years of Experience: 25

Skills

Building Strong Teams, Business, Business Continuity, CISSP, Communicating Technical Issues in Business Context, Communication, Computer Incident Response, Computer Security, Cross-functional Team Leadership, Data Center, Department Budgeting, Disaster Recovery, Enterprise Risk Management, Enterprise Software, Firewalls, High Performance Teams, HIPAA Security, Identity & Access Management (IAM), Identity Management, Incident Handling, Incident Management, Information Risk Assessment, Information Security, Information Security Awareness, Information Security Governance, Information Security Management, Information Technology, Infrastructure, Internet Protocol Suite (TCP/IP), Item Writing for (ISC)2, IT Operations, Network Engineering, Networking, Network Security, Penetration Testing, Risk Assessment, Security, Security Incident Response, Security Management, Solaris, SOX Compliance, TCP/IP, Team Leadership, Vendor Management, Vulnerability Assessment, Vulnerability Management, Vulnerability Scanning, Information Risk, Computer Incident, Communicating Technical, Security Incident, Cross-functional Team

About

As a director of information security, I am known for my expertise ensuring the security of information systems and equipment, leveraging business acumen to generate solutions for complex issues. I specialize in championing strategic initiatives to deliver effective results, participating in critical decision-making processes while working proactively with cross-functional teams to manage computer incident responses. With a strategic mindset, I am committed to cultivating exceptional stakeholders relationships, meeting their needs and expectations at every step. As an experienced and goal-oriented professional, business owners know they can rely on my ability to provide exceptional service, resources, and methods to meet ever-changing objectives and ensure compliance with all regulatory requirements, based on my expertise in the following areas:



Information Security Management

IT Operations Management

Disaster Recovery

Business Continuity

Security Incident Response



Connect with me today to find out how I can apply my skills and knowledge to help you reach your company objectives!