Timothy R. Campo, CISSP, CISM, CDPSE
Details
Computer Science
The Citadel
Master’s Degree
Information Technology
University of Maryland Global Campus
Responsibilities include :
• Security Cloud Engineering for AWS and MS Azure.
• Managing Risk and Compliance including risk register.
• Hiring and managing security and IT professionals.
• Collaborating across multiple departments to develop and maintain a secure IT infrastructure and VOIP.
• Working with executive teams to create strategic IT security plans.
• Leading the development of information security solutions across multiple integrated systems.
• Managing cybersecurity incidents from the initial response to resolution including tabletop exercises.
• Leading employee education programs for security awareness.
• Planning, monitoring, and forecasting security budgets.
• Overseeing software launches and upgrades across four technology stacks including full DevSecOps pipeline.
• Establishing a process for onboarding remote workers and contractors including SLA monitoring.
• Ensuring network upgrades and significant IT projects proceed without disabling or compromising security. High availability.
2018 : Present
ISC2
Director - Cybersecurity and Information Technology
CoreSite, an American Tower company delivers secure, reliable, high-performance data center and interconnection solutions to a growing customer ecosystem across eight key North American markets.
Cloud and SaaS enabled organization. AWS and MS Azure.
Led a risk-based management strategy with direct reporting to the Board of Directors to integrate and fully optimize information security across all CoreSite business units. Leads Information Security, Network, Systems and Help Desk teams providing operational solutions to some of the most demanding and globally recognized clients in government, civil defense, public safety, intelligence, infrastructure management, energy, navigation technology, environmental, et al with a 99.999% uptime reliability.
• Established Information Security team bringing CoreSite to a rating of “best in class”. This was accomplished through 10 detailed projects specifically targeted at the SANS20 and instilled a culture of security in the company. Completed one year ahead of schedule and significantly under budget.
• Enabled an open communication atmosphere fostering trust, boosted morale and empowerment for the development of a new security defined culture across all departments.
• Planned, led, and executed the successful completion of SOC2 and ISO 27001 certifications exemplifying the corporate brand name. This transformed information security into a positive measure providing business value through reliable security and compliance required in data centers.
• Led the continuous improvement to provide more robust solutions while driving down costs. Evaluated and implemented Artificial Intelligence (AI) and Machine Learning (ML) solutions to further enable defense in depth.
2013 : 2018
CoreSite
Vice President Information Security & Technology
Led the information security department, overseeing the development and implementation of security policies, procedures, and controls.
Developed and executed a risk management program, including risk assessments, vulnerability management, and incident response planning.
Collaborated with executive management and key stakeholders to align security strategies with business objectives.
Managed the selection and deployment of security technologies, including SIEM, DLP, encryption, and endpoint protection solutions.
Conducted security awareness training sessions and promoted a culture of security throughout the organization.
Implemented incident response procedures and led investigations into security incidents, ensuring timely resolution and recovery.
Maintained and enhanced the organization's disaster recovery and business continuity plans.
Stayed abreast of emerging security threats, industry trends, and regulatory changes to continuously enhance security posture
2009 : 2013
US Navy
Director Information Security & Technology / Executive Officer
2002 : 2009
US Navy
Head Of Department / Division Officer
Led the IT operations team, overseeing the delivery and maintenance of IT infrastructure and systems.
Developed and implemented ITIL-based processes and procedures to improve service delivery and ensure high system availability.
Managed the deployment of enterprise-wide technology projects, including network upgrades, data center migration, and disaster recovery planning.
Collaborated with cross-functional teams to define and implement IT security controls, policies, and practices.
Implemented IT service management tools to streamline incident management, problem management, and change management processes.
Led the development and execution of IT governance frameworks, ensuring adherence to policies and procedures.
Conducted technology assessments and recommended solutions to optimize IT operations and improve efficiency.
Managed vendor relationships and negotiated service level agreements to ensure quality service delivery.
2000 : 2002
U.S. Fleet Forces Command
Information Services Officer
Skills
Analytical Skills, Business Continuity, Cloud Computing, Cloud Security, Contract Management, Contract Negotiation, Cybersecurity, Data Security, Financial Analysis, General Data Protection Regulation (GDPR), Hacking Labs, Information Architecture, Information Assurance, Information Security, Information Security Management, Information Technology, Intelligence Analysis, ISO 27001, ITIL, IT Management, IT Strategy, Leadership, Linux, Management, Microsoft Office, Microsoft SQL Server, Network Security, NIST 800-53, Organizational Leadership, Payment Card Industry Data Security Standard (PCI DSS), Penetration Testing, Process Improvement, Program Management, Project Management, Project Planning, Requirements Management, Reverse Engineering, Risk Management, Security, Security Operations Center, Software Development Life Cycle (SDLC), Strategic Planning, Systems Engineering, Team Building, Team Leadership, Team Management, Training, Vendor Management, Vulnerability Management, Windows Server
About
Senior Information Security & Technology Executive with over twenty-five years of cybersecurity, information security, information technology, physical security, software development, and business experience in large and small companies. Experience spans from the deck plate up to executive levels defining strategy, innovation, integration, and automation with a core tenant of security by design.
Skilled in managing complex security initiatives, building resilient security frameworks, and leading multidisciplinary teams. Demonstrated success in aligning security initiatives with business objectives and ensuring regulatory compliance. Proactive and strategic thinker with a deep understanding of emerging cybersecurity threats and technologies.
The experience in the United States Navy enabled me to engage in multiple disciplines for worldwide operations with both military and civilian counterparts. Led numerous worldwide initiatives while in the US Navy before leading Security at CoreSite. While at CoreSite, I was responsible for critical aspects of information security, physical security, IT infrastructure, and software development enabling unprecedented uptime and security posture with a defense-in-depth approach. Currently leading a world class Security and Technical Operations Department at (ISC)².
Core Competencies: IT Strategy & Governance | Amazon Web Services (AWS) | Microsoft Azure | Security Architecture & Development Frameworks | Identity & Access Management | Security Engineering | Threats Assessment | Vulnerability Management | Enterprise IT & Cybersecurity Operations | Regulatory Management | Cloud Security | Salesforce | DevOps & Security Integration | Servant Leadership | Project Management | Compliance/Frameworks: NIST CSF, PCI DSS, GDPR, ISO 27001, SOC-2 | VM Ware | Azure | AWS | ServiceNow | Salesforce | Marketing Cloud | D2L
Profile Photo
