|
Alan Cochran 404.558.7694 | cochran.infosec@charter.net Consultant, Information Security Strengthening Organizations Through Tailored, Comprehensive Security Programs |
|
| Expertise
Managing the “Business of Information Security” Information Security Risk Management and Assessment Certified Information Systems Security Professional (CISSP) Compliance Regulatory Expertise FFIEC, NYDFS, PCI, FBI LEO Information Security Mandates Enterprise Security Strategy Security Operations Center Startup and Performance Executive and Mid-Level Leadership and Management Restructuring Security programs to Meet/Exceed Challenging Requirements
|
Executive Summary |
| A leader in strategic information security planning and execution with experience delivering reliable programs/systems, running enterprise security operations, and consulting for financial institutions, payment processors, health care providers, a managed security services company, startups and as an entrepreneur.
Expertise with requirements for managing the “business of information security” including IS strategy, security engineering, operations, incident management & response, managed security service delivery, industry/government regulatory compliance, and multi-company / multi-country security program management. Worked professionally in 26 countries. |
|
| Top Executive Talents | |
| Applies a synthesis of multiple industry security program knowledge, operations, and people skills
Executes advisory services and operations as a trusted advisor and information security expert Builds secure information handling environments that continuously mature toward excellence Boost security effectiveness at every level (protection, compliance, financial, confidence) |
|
| Highlights of Career History | |
| Motivated staff and larger teams / organizations of 150 to 175 multi-disciplined people and protected information for up to 16,000 staff and 660 branches for a financial services organization.
Implemented the continuous improvement model (CIM) comprised of security assessment, risk analysis / evaluation, gap remediation and maturity improvement at payment processors and banks. Performed security / risk assessments and implemented improvements for businesses worldwide. Served as a trusted information security advisor to corporations, IT divisions, and IS departments improving IS operational posture, and delivering business value security services. Developed three-year security strategies emphasizing core / worldwide security and secure products and services while providing updates to the board of directors and corporate leadership. |
|
| Significant Professional Contributions | |
| Managed a major information security breach event from identification, through containment, and recovery while designing a tailored service / security restoration program.
Provided information security leadership and program coordination for multiple worldwide corporate subsidiaries performing a wide range of commercial business services in 25+ countries.
Developed an information security program assessment process that incorporated security governance and operations maturity modeling. |
|
| Professional Development | |
| Bachelor of Science in Accounting & Finance | Fordham University
Leadership and Management Courses, University of North Carolina Certified Information Systems Security Professional (CISSP) Membership with FS-ISAC, InfraGARD, ISSA, ISACA |
|