Profiles search

Steve Bonek

Manager, Information Security, Compliance and Disaster Recovery at TRIMEDX
Indianapolis, IN, United States

Details

Education: Bachelor of Science (B.S.)

Economics

Ball State University - College of Business

1991 : 1994
Experience: Built and managed the Information Security Program for all business units.  Implemented, monitored and managed multiple technology solutions, created policies and procedures to increase the security posture of the organization.

Managed the team responsible for implementing, managing, and monitoring :

·       Proofpoint Email Security including Targeted Attack Protection to monitor all incoming and outgoing email messages.

·       LogRhythm Security Information and Event Management (SIEM) and LogRhythm Network Monitor solutions to provide visibility for all critical networks, network, and server infrastructure devices.

·       Sophos Intercept X Endpoint Protection Suite including EDR / XDR

for approximately 400 VMware Virtual Servers and approximately 3,000 workstations with the appropriate policies.

·       Rapid7 InsightVM Vulnerability Management solution for approximately 4,500 devices, including generating reports for remediation of all applicable findings.

·       Varonis DatAdvantage for shared file servers and Microsoft Office 365 tenant to determine stale data and security controls in place for all shared directories.

·       Zscaler Private Access to increase visibility and management of approximately 3,000 remote workstations.

·       Zscaler Internet Access to ensure the security of approximately 3,000 remote workstations.

·       Okta Cloud Identity solution for approximately 3,600 associates including automating the onboarding and offboarding process.

·       Hoxhunt Phishing Simulation and Awareness training solution for approximately 3,600 associates.

Implemented the NIST Cybersecurity Framework to measure and determine areas to be strengthened within the organization.

Managed the process to complete a yearly SOC2 Type II audit and report.

Critical team member in the process to obtain ISO 27001 certification including yearly surveillance audits.

2015 : Present

TRIMEDX

Manager, Information Security, Compliance and Disaster Recovery

Managed the Information Security Operations team responsible for operational support of Check Point Firewalls, Cisco ASA Firewalls, HP TippingPoint and SourceFire Intrusion Detection/Intrusion Prevention system (IDS/IPS), BlueCoat Proxy servers and Juniper SSL VPN devices. Responsible for working with Business Unit stakeholders to ensure compliance with Service Level Objectives (SLO) and Corporate Compliance Team to ensure compliance with Payment Card Industry Data Security Standard (PCI DSS).

2013 : 2015

Wyndham Worldwide

Manager, Information Security Operations

Managed the functions of the corporate IT Infrastructure group. Emphasis on Information Security, customer service and budgeting including cost containment and cost reduction. Appointed the Information Security Officer by the Board of Directors.

IT Infrastructure group involved :

• Helpdesk function for over 200 employees

• Desktop, Laptop, Server and LAN/WAN support for over 25 locations

• Information Security support, including report generation

• Virtualization technology support

• IP Telephony support

2007 : 2012

Salin Bank and Trust

IT Officer

Key team member for the IT group supporting conversion of Sky Bank and the Huntington Bank network infrastructure, including servers, network switches and routers.

• Partnered with several functional teams performing all tasks converting customer data and installation of all hardware and software systems supporting both banking systems and over 40 banking centers.

2006 : 2007

Huntington National Bank

Network Analyst

Key member of management team; responsible for IT group that installed, maintained and upgraded the Bank’s Information Technology assets including PCs, servers, switches, routers and firewalls.

• Successfully managed several large IT related projects including Information Security initiatives to satisfy GLBA requirements.

2001 : 2006

Union Federal Bank

Assistant Vice President
Company: TRIMEDX
Years of Experience: 24

Skills

banking, Business Analysis, Call Centers, Change Management, Customer Service, Firewalls, Information Security, ITIL, IT Management, Leadership, Management, Process Improvement, Program Management, Project Management, Risk Management, Software Documentation, Strategic Planning, Team Building, Team Management

About

An accomplished IT Management professional with a diverse background in multiple disciplines of Information Technology. Steve has over 20 years of managing dynamic, customer service oriented IT support teams. Experienced project manager leading technology support teams with emphasis on information security, endpoint protection, data recovery and report generation. Steve is an effective communicator with demonstrated success in adopting new technologies, managing and resolving critical issues with focus on achieving business efficiency and quality results. Steve is also very adept at achieving positive results while maintaining and reducing costs.



Specialties:



• Information Security including compliance with Gramm-Leach Bliley Act (GLBA), SOC2 Type II audits and ISO 27001

• Risk Assessments

• Vulnerability Assessments and Social Engineering

• Managed Intrusion Detection / Intrusion Prevention System (IDS/IPS)

• Building, maintaining and reporting on a Security Information and Event Management (SIEM) system

• Endpoint protection technologies including Data Loss Prevention (DLP)

• E-mail and Web filtering technologies

• Virtualization technologies

• IP Telephony (IPT)



You may contact me at steve.bonek@comcast.net