Summary
Overview
Work History
Education
Skills
Certification
Languages
Vendor Management Experience
Languages
References
Timeline
Generic

ALEX BAXTER

Summary

Accomplished and growth-focused Senior Executive, globally recognized for establishing top-notch standards in information security, technology excellence and digital infrastructure across healthcare, finance, manufacturing, insurance and start-ups. Over 25 years of proven leadership experience in driving the advancement of security programs, overseeing complex technology environments and assets while spearheading the development and modernization of scalable corporate legacy systems. Spotlighted success in assessing vulnerabilities, developing incident response plans and orchestrating continuous cloud transformations to proactively mitigate risks, foster security-aware culture and enhance organizational resilience. C-level influencer and consultant, adept at delivering profound insights to industry giants in enterprise cybersecurity, innovative security strategies and cutting-edge technology to transition companies to a comprehensive security framework. Proven track record of fostering seamless collaboration with board of directors, Senior leadership, integrated IT, cybersecurity and system engineering teams to drive organizational change, and enabling the business using data driven decisions to promote operational readiness to deliver on the company mission with effective technology, security and regulatory compliance.

Overview

26
26
years of professional experience
1
1
Certification

Work History

IT Director (Infrastructure & Information Security)

Mount Sinai Health System
Remote
10.2022 - Current
  • Drive strategic formulation of advanced security frameworks, deploy cutting-edge cloud infrastructure and security solutions, propel security agenda, and ensure the highest standards of protection for critical information assets in dynamic healthcare landscape.
  • Developed a Zero Trust architecture, implementing IAM, MFA, DLP, and SIEM solutions to fortify security posture.
  • Led large-scale projects, wearing multiple hats from EHR server infrastructure system support, system integration, engineering to security, architecture, and project leadership.
  • Spearheaded securing one of the world’s largest Epic cloud implementations, migrating thousands of users to a scalable, secure cloud environment that improved system performance and downtime resiliency.
  • Contributed to the massive health system acquisition merger systems integration projects.
  • Led cross-functional IT teams of security and infrastructure including consultants, direct reports, driving process improvement and fostering a high-performance culture.
  • Managed a multi-million-dollar IT budget, negotiating vendor contracts and reducing costs while maximizing value.
  • Developed and implemented robust security architecture aligned with organizational goals and industry best practices.
  • Directed information security incident response efforts, ensuring a swift and effective response to various security threats.
  • Fostered cordial relations with key business and technology stakeholders to influence policy and manage digital risk effectively.

Director – Information Security

Yale University
07.2020 - 08.2022
  • Championed hands-on leadership, optimizing information security and data privacy for organizational fortification.
  • Spearheaded strategic guidance for security operations center, leveraging SOAR automation tools like Google SIEMPLIFY.
  • Initiated 30+ strategic projects, reshaping the information security program for adaptability in the dynamic security landscape (EDR, MFA, IAM, Cloud Security, Compliance).
  • Revitalized security operations center, improving detection, analysis and response capabilities, transforming it into a cyber fusion center with advanced SOAR automation tools.
  • Achieved $600K+ in cost savings through vendor contract renegotiation and quarterly business reviews, ensuring optimal ROI for the university.
  • Directed implementation of a zero-trust model and deployed various security tools, optimizing defense against DDoS, DLP, Firewall IDS/IPS, NextGen AV, SIEM, Vulnerability Management, Web Proxy and EDR.
  • Innovated technology procurement, saving $330K by eliminating redundancy and consolidating the security technology stack for optimal vendor and product selection.
  • Formulated corporate information security and risk policies alongside comprehensive training and education programs.
  • Defined security protection goals, objectives and KPI metrics aligned with corporate strategic planning, overseeing technical incident response planning and leading investigations.

Global Head, Infrastructure & Security (CISO)

LPQ
01.2016 - 07.2020
  • Engineered, executed, and maintained a comprehensive global information security program, ensuring peak levels of confidentiality, integrity, availability, and privacy of LPQ's information assets.
  • Strengthened relationships with the board of directors by crafting short and long-term roadmaps (1yr, 3yr, 5yr) for IT and Information Security program, providing regular quarterly updates on progress and challenges.
  • Implemented the company’s first data warehouse, empowering strategic decision-making based on data statistics, trends and projections.
  • Prepared global organization for compliance with European GDPR regulation by collaborating with external legal resources.
  • Established a cross-departmental governing body to ensure adoption of information security policies and risk management procedures before operational changes or implementations.
  • Steered significant CAPEX and OPEX budgets, employing cost-saving strategies by renegotiating a multi-million-dollar contract with the managed network services provider, resulting in a 35% savings on contract renewal while acquiring additional services.
  • Accomplished migration of company systems to multi-cloud and SaaS platforms (Azure, AWS, O365) and instigated disaster recovery and business continuity plans, reducing RPOs and RTOs by 90%.
  • Executed DevOps and DevSecOps practices, fostering automation (CI/CD) processes within organization.
  • Acted as a Subject Matter Expert (SME), introducing a comprehensive layered security approach covering tools, processes, awareness, controls and audits in areas such as Perimeter and Cloud Security, DLP, MFA, IDS, IPS, NAC, Web Filtering and IAM.

Principal IT Consultant & Leader (Infrastructure, Security, Compliance)

Jefferson University Health Systems | Temple University Health Systems | Children’s Hospital of Philadelphia CHOP | KPMG | Prudential Financial | United Nations | Moody’s Analytics | Wyeth & Pfizer Pharmaceuticals | Allstate Insurance | Pep Boys | Akin Gump LLP | TD Bank | GAF Manufacturing | 40 North Financial | Philadelphia Gas Works (PGW) | Penske Trucking | Allied Mortgage Group | EPA Environmental Protection Agency | Penn State University | Walmart (Jet.com)
01.1999 - 01.2016
  • Helmed as principal consultant for a spectrum of companies, ranging from small startups to large enterprises, for managing a multitude of expansive, intricate global projects.
  • Oversaw all facets of delivering and supporting information security needs for multiple client businesses, including design, development and implementation of cloud infrastructure and security.
  • Directed large-scale security incident response and remediation engagements for ransomware, APTs and phishing.
  • Supervised and mentored a team of 30 engineers responsible for security architecture, engineering, and operations.
  • Achieved maximum client satisfaction by enhancing client security teams’ practices through proven security engineering and GRC concepts, focusing on availability to fortify client business goals.
  • Conducted penetration testing and assessments of security infrastructure and programs.
  • Executed several complex data center migrations to the cloud (Azure, AWS) to consolidate the global data center footprint.
  • Led global on-premise active directory domain and exchange migrations, including migrations to Azure AD and Office 365 cloud.
  • Rolled out global mobile device management platforms using MobileIron and AirWatch.
  • Rebuilt a global network, transitioning from leveraging MPLS to SD-WAN.
  • Developed a security awareness program focusing on assessing risk and enabling a shared security responsibility model between users and the organization.

Education

CISSP -

08.2025

Information Technology Bachelor’s -

University of Maine
07.2025

Skills

  • SIEM
  • DLP
  • Endpoint Security
  • Zero Trust
  • Cloud Security
  • EDR
  • IT Strategy
  • Leadership
  • System Integrations
  • M&A
  • Enterprise IT Infrastructure Modernization
  • Digital Transformations
  • IT Resiliency
  • Downtime Planning
  • Cloud Transformation
  • System Harmonization
  • Multi-Million Dollar CAPEX/OPEX Budget Oversight
  • Vendor Management
  • Stakeholder Management
  • Vendor Risk Management
  • Third-party Risk Management
  • Governance
  • Policy Development
  • GRC
  • Information Security Architecture
  • Engineering
  • Operations
  • Threat Intelligence
  • Analysis
  • KPI Metrics Measurement
  • Process Improvement
  • Change Management
  • Large-Scale IT Project Execution
  • Compliance Frameworks
  • NIST
  • HIPAA
  • PCI DSS
  • GDPR
  • CIS – Critical Security Controls
  • CCPA
  • ISO-27001
  • FedRamp
  • HiTrust
  • Clinical Systems
  • Imprivata
  • EPIC Systems
  • Fairwarning
  • Cerner
  • Pyxis
  • Meditech
  • Epic MyChart
  • Epic CareLink
  • Radiant
  • Clarity
  • Allscripts
  • Powershell
  • Bash
  • Python
  • Java
  • C
  • React Framework
  • MySQL
  • Postgres SQL
  • Windows Server
  • Linux Server
  • Mac OS
  • Android
  • Apple iOS
  • Amazon AWS
  • Microsoft Azure
  • Google Cloud Platform
  • Office 365
  • VMWare
  • Hyper-V
  • Nutanix
  • Citrix
  • Remote Desktop
  • Terminal Services
  • Kubernetes
  • Docker
  • Active Directory
  • DNS
  • Microsoft Exchange
  • InfoBlox
  • Radius
  • Microsoft Intune
  • System Center
  • Commvault
  • Veeam
  • Acronis
  • Zerto
  • Nakivo
  • Bacula
  • Fortinet
  • Palo Alto
  • Cisco
  • Juniper
  • Arista
  • Meraki
  • Sonicwall
  • Checkpoint
  • Ubiquiti
  • Cato Networks
  • SD-WAN
  • MPLS
  • 5G
  • 4G
  • LTE
  • Software-Defined-Networking
  • NSX
  • VPN
  • WAF
  • IDS
  • Sailpoint Identity
  • Ping Identity
  • Okta
  • Microsoft Entra ID
  • Azure Active Directory
  • Google Cloud Identity
  • Oracle Identity Manager
  • ForgeRock Identity Platform
  • ADMT
  • Microsoft Authenticator
  • Google Authenticator
  • Symantec VIP
  • Duo
  • OAuth
  • SAML
  • OpenID Connect
  • BeyondTrust PAM
  • CyberArk
  • Delinea
  • Thycotic
  • Risk assessment
  • Cloud infrastructure
  • Project management
  • Data privacy

Certification

CISSP, 08/25

Languages

  • English
  • Spanish
  • Latin

Vendor Management Experience

Imprivata, Microsoft, Amazon AWS, IBM Cloud, OVH Cloud, Google, Redhat, Rackspace, QTS Datacenters, Switch Datacenters, CyrusOne, Equinix, GTT Communications, Verizon, AT&T, Windstream Communications, NTT Data, CrowdStrike, Zscaler, DarkTrace, IBM, TrendMicro, ProofPoint, Mimecast, Tenable, Rapid7, Sophos, RSA, Splunk, McAfee, Trellix, Akamai, Imperva, Broadcom Symantec, Qualys, OneTrust, Exabeam, LogRythm, Netskope, Solarwinds, Accenture, InfoSys, mPhasis, TekSystems, Insight Global, Robert Half, Deloitte

Languages

English
Native/ Bilingual
Spanish
Professional
Latin
Professional
French
Elementary

References

References available upon request.

Timeline

IT Director (Infrastructure & Information Security)

Mount Sinai Health System
10.2022 - Current

Director – Information Security

Yale University
07.2020 - 08.2022

Global Head, Infrastructure & Security (CISO)

LPQ
01.2016 - 07.2020

Principal IT Consultant & Leader (Infrastructure, Security, Compliance)

Jefferson University Health Systems | Temple University Health Systems | Children’s Hospital of Philadelphia CHOP | KPMG | Prudential Financial | United Nations | Moody’s Analytics | Wyeth & Pfizer Pharmaceuticals | Allstate Insurance | Pep Boys | Akin Gump LLP | TD Bank | GAF Manufacturing | 40 North Financial | Philadelphia Gas Works (PGW) | Penske Trucking | Allied Mortgage Group | EPA Environmental Protection Agency | Penn State University | Walmart (Jet.com)
01.1999 - 01.2016

CISSP -

Information Technology Bachelor’s -

University of Maine

Similar Profiles

  • Cynthia John-Ogam

    Cynthia John-OgamCynthia John-Ogam

    Registered Nurse- Operating Room at Mount Sinai Health System: The Mount Sinai HospitalRegistered Nurse- Operating Room at Mount Sinai Health System: The Mount Sinai Hospital

  • Osvaldo Meza

    Osvaldo MezaOsvaldo Meza

    Revenue Cycle Reimbursement Analyst at Sinai Health System, Mount Sinai HospitalRevenue Cycle Reimbursement Analyst at Sinai Health System, Mount Sinai Hospital

  • Unnati Chokhani

    Unnati ChokhaniUnnati Chokhani

    Occupational Therapist at Mount Sinai Health SystemOccupational Therapist at Mount Sinai Health System

  • Briseis Mendez

    Briseis MendezBriseis Mendez

    Volunteer at Mount Sinai Health SystemVolunteer at Mount Sinai Health System

  • Aneesh T

    Aneesh TAneesh T

    Director-Infrastructure & Information Security at Imerit TechnologiesDirector-Infrastructure & Information Security at Imerit Technologies

CREATE PROFILE
ALEX BAXTER