Carl Almond
Tampa, Florida
carl@carl.net | carl.net
| LinkedIn |
4nfo.net
SUMMARY
Global security leader enabling the secure strategic transformation of the world's top companies. Through consistently executing global initiatives across thousands of clients that drive security and privacy, enabling secure organizational growth and profitability, realizing significant measurable improvements to security and privacy, leading global teams to top performance, achieving technological innovation, and producing industry-leading secure client experiences. Leveraging my 20+ years of experience to drive the implementation of initiatives across two billion dollars yearly in direct customer projects in 28 countries, verticals including financial, insurance, banking, medical, health and life sciences, utilities, oil and gas, retail, manufacturing, electronics, satellite, service providers, payroll, legal, and government.
SKILLS
Security Frameworks and government regulations, including NIST 800.53 CSF, ISO 27001, PCI-DSS, GDPR, HIPAA, HITRUST, SOC 2, SOX, CIS, COBIT, OWASP (20+ yrs) | Incident Response (12+ yrs)| Secure Software Development (10 yrs)| PaaS, SaaS, IaaS (15+yrs) | Data Breach Remediation (15+yrs) | Risk Analysis and Risk Management (15+yrs) | Threat Intelligence (15+yrs) | Vendor / Client Portfolio Management (8yrs)| Security Architecture (20+yrs)| Cloud Migration Security (15+yrs) | AI Security (5yrs) | Cybersecurity (30+yrs)| Audit and Assessment (15+yrs) | Business Continuity (10yrs) | Strategic & Operational Planning (15+yrs) |Mergers, Acquisitions, and Integration (10yrs) | Business Process Reengineering (15+yrs) | Automation (15+yrs) | Organizational Change Leadership (15+yrs) | Collaborative Business Relationships (20+yrs)
SELECTED ACHIEVEMENTS
PROFESSIONAL EXPERIENCE
Avanade, Tampa, Florida 07/2011 - Current
Sr. Director Global Information Security
Lead a 59-person global security team operating in 28 countries, protecting the organization's 50,000 employees and 2 billion in client revenue. Strategic programs I lead include:
Avanade, Tampa, Florida 03/2010 - 06/2011
Sr. Director ASR
Determine the issues surrounding Avanade's Short-Term Resources (ASR) workforce and redesign the service in response to strategic business objectives and in partnership with Human Resources (HR). Develop hiring processes and procedures (resource management / resource allocation / performance evaluations) to allow the organization to fulfill the North American consulting practices' need for short-term consultants. Manage/supervise 50 direct reports and from 150 to 300 contractors. Oversee the recruiting function to provide short-term workers to the business as needed.
Avanade, Tampa, Florida 11/2001 - 02/2010
Sr. Director Americas Security Practice
Provide direction for the Americas Avanade security organization. Activities include determining the client's need for security solutions and then working to create and communicate those solutions, securing client information assets based on the organization's requirements, IT governance, and providing internal and external security training. Projects include working with client executive leadership to understand how IT can facilitate their business goals, mentoring client's teams, acting as the Chief Security Officer (CSO/CISO) for organizations in transition, helping clients understand and implement security governance, perform risk assessments, creating organizational security best practices, develop security policies, assess and enhance IT operations, secure system architecture design, assessment of Information Technology infrastructures and network security, network infrastructure redesign, design/implementation of new secure infrastructures, policy design and compliance, operations management improvements to increase the overall security stance, Identity and Access Management (IAM) projects, and vulnerability and security assessments. Management duties include mentoring technologists, developing the careers of direct reports, client satisfaction, developing and managing vendor relationships, assisting sales through the acquisition of clients, and creating statements of work.
Thrupoint, Tampa, Florida / Brussels, Belgium / Edinburgh, Scotland 03/2000 - 10/2001
Senior Internetwork Solutions Engineer
Design, secure, and install clients' Internetwork infrastructure projects. Including the roles of Lead Designer/Technician, Lead Security Engineer, project manager, and educator.
EDUCATION
Master of Science in Information
Technology
American Public University, Charles Town, West Virginia
graduated 2017
Bachelor of Science in Information
Technology
Capella University, Minneapolis, MN
graduated 2009
CERTIFICATIONS
C|CISO - Certified Chief Information Security
officer
CISM - Certified Information Security Manager
CISSP - Certified Information Systems Security Professional
CEH - Certified Ethical Hacker
CISA - Certified Information Systems Auditor
CRISC - Certified in Risk and Information Systems Control
CCFE - Certified Computer Forensics Examiner
GCFE - GIAC Certified Forensics Examiner
CHFI - Computer Hacking Forensics Investigator
CASP+ - CompTIA Advanced Security Practitioner
SSCP - Systems Security Certified Practitioner
CCSP - Certified Cloud Security Professional
PECB ISO 27001 Lead Auditor
PECB ISO 27001 Lead Implementer
PECB ISO 27005 Lead Risk Manager
CAISP - Certified AI Security Practitioner
MEMBERSHIPS
FBI InfraGard
Information Systems Audit and Control Association (ISACA)
International Information System Security Certification Consortium (ISC2)
International Association of Computer Investigative Specialists (IACIS)
Information System Security Association (ISSA)
American Society for Industrial Security (ASIS)
Florida Association of Licensed Investigators (FALI)
PATENTS
US20060041516 - Dynamic auditing of
electronic elections
US20060041514 - Secure internet transactions on unsecured computers
US20060031116 - Fully electronic identity authentication