Profiles search
Ryan Breedlove
Lead Analyst Information Security at Lowe's
Brandon, MS, United States
Details
Experience:
2021 : Present
Lowe's Companies, Inc.
Lead Analyst, Information Security
2021 : 2021
Hudson's Bay Company
Senior Information Technology Auditor
Senior IT Security Analyst, (2016-Current) Currently in a Governance, Risk and Compliance role. Primary duties include firewall and compliance auditing.
Implement and manage a firewall auditing process that meets PCI v3.2.1 including DESV requirements in a complex multinational retail organization with store, data center, co-location and cloud environments.
Administer and manage the firewall auditing tool, ensuring proper completion of all necessary tasks. Perform regular network scoping reviews, ensuring that proper assets are being ingested and identified correctly.
Develop and prioritize metrics that are used to ensure the security of the environment.
Support other teams as needed. Work remotely with resources across multiple countries and timezones.
Work as a representative of the company with both internal and external stakeholders to facilitate audits ranging from PCI, Financial IT General Controls, and 3rd party assessments.
Translate compliance requirements and findings of the audit between business and technical teams, communicating results to leadership
Work with stakeholders to remediate any deficiencies found during penetration tests, audits, scans and daily activities. Following up to resolution.
Familiar with all PCI Requirements, processes and related systems in a large retail environment.
Implement and maintain a PCI Cadence that meets PCI DESV Requirements for Business as Usual processes.
Ensure new environments and systems are compliant and secure as they are brought online.
Experience in SOC operations
Performed access reviews for Active Directory and other stand alone systems.
2016 : 2021
Hudson's Bay Company
Senior Information Security Analyst
Performing annual SOX Testing.
Developed audit work programs based off of industry standards and in compliance with regulatory requirements.
Experience auditing multiple specialized systems including : VOIP, Virtualization(system and storage), and patch management along with general IT control sections covering vendor management, operational, hardware, change management, software, server security and business continuity.
Performed audit fieldwork by gathering system evidence, reviewing logs, process observations, creating questionnaires, interviews and reviewing system permissions.
Developed streamlined procedures for performing audit work that was adopted by the entire division. Determined risk ratings for audit findings and assembled official audit reports. All while learning new systems across multiple business functions.
Experience auditing the following areas; Active Directory, RACF Mainframe Security, Google Apps, Computer Operations, Data Communications, Network Services, Systems Infrastructure, Information Systems Security Administration, Enterprise Software Development, Production Control, along with multiple other financial and banking systems.
2013 : 2016
BancorpSouth
IT Auditor
Administering, overseeing, and deployment of Symantec Endpoint Protection in a small business environment in two locations.
Installation of software (general and business specific custom applications)
Troubleshooting problems with office computers and network issues as they arose as a help desk/support role.
2012 : 2013
Premier Radiology
PC Tech
Lowe's Companies, Inc.
Lead Analyst, Information Security
2021 : 2021
Hudson's Bay Company
Senior Information Technology Auditor
Senior IT Security Analyst, (2016-Current) Currently in a Governance, Risk and Compliance role. Primary duties include firewall and compliance auditing.
Implement and manage a firewall auditing process that meets PCI v3.2.1 including DESV requirements in a complex multinational retail organization with store, data center, co-location and cloud environments.
Administer and manage the firewall auditing tool, ensuring proper completion of all necessary tasks. Perform regular network scoping reviews, ensuring that proper assets are being ingested and identified correctly.
Develop and prioritize metrics that are used to ensure the security of the environment.
Support other teams as needed. Work remotely with resources across multiple countries and timezones.
Work as a representative of the company with both internal and external stakeholders to facilitate audits ranging from PCI, Financial IT General Controls, and 3rd party assessments.
Translate compliance requirements and findings of the audit between business and technical teams, communicating results to leadership
Work with stakeholders to remediate any deficiencies found during penetration tests, audits, scans and daily activities. Following up to resolution.
Familiar with all PCI Requirements, processes and related systems in a large retail environment.
Implement and maintain a PCI Cadence that meets PCI DESV Requirements for Business as Usual processes.
Ensure new environments and systems are compliant and secure as they are brought online.
Experience in SOC operations
Performed access reviews for Active Directory and other stand alone systems.
2016 : 2021
Hudson's Bay Company
Senior Information Security Analyst
Performing annual SOX Testing.
Developed audit work programs based off of industry standards and in compliance with regulatory requirements.
Experience auditing multiple specialized systems including : VOIP, Virtualization(system and storage), and patch management along with general IT control sections covering vendor management, operational, hardware, change management, software, server security and business continuity.
Performed audit fieldwork by gathering system evidence, reviewing logs, process observations, creating questionnaires, interviews and reviewing system permissions.
Developed streamlined procedures for performing audit work that was adopted by the entire division. Determined risk ratings for audit findings and assembled official audit reports. All while learning new systems across multiple business functions.
Experience auditing the following areas; Active Directory, RACF Mainframe Security, Google Apps, Computer Operations, Data Communications, Network Services, Systems Infrastructure, Information Systems Security Administration, Enterprise Software Development, Production Control, along with multiple other financial and banking systems.
2013 : 2016
BancorpSouth
IT Auditor
Administering, overseeing, and deployment of Symantec Endpoint Protection in a small business environment in two locations.
Installation of software (general and business specific custom applications)
Troubleshooting problems with office computers and network issues as they arose as a help desk/support role.
2012 : 2013
Premier Radiology
PC Tech
Company:
Lowe's Companies, Inc.
Profile Photo
