Aram Taleporos
Schenectady,NY
Summary
An Information Security Leader with a passion for aligning security architecture plans and processes with security standards and business goals. A passion derrises from the transformation that can be seen in an organization and in the team that has realized not only the immediate result of a project, but the underlying processes and thinking that needs to go into on going operations and the next project. I have thirty years of Information Technology experience. Twenty of it dedicated tp Information Security. I bring a strong technical background as well as strong leadership skills.
Overview
24
24
years of professional experience
Work History
Information Security Leader
Gainwell Technologies
11.2022 - Current
- Gamewell Technologies is a Divestiture of DXC Technologies
- Responsible for all security and compliance activities for multiple states simultaneously.
- Managed staff and deliverables for multi million dollar accounts for states across the US.
- Worked with other teams to enforce security of applications and systems.
- Investigated and resolved incidents of unauthorized access to sensitive information.
- Responsible for ensuring that System Security Plans are created and meet NIST 800-53 standards.
- Worked with Internal and External Auditors to ensure that SOC reports are completed as thoroughly and accurately.
Security Delivery Leader
DXC Technologies
03.2020 - 11.2022
- Acted as the CISO and Chief Compliance Officer for accounts that I was assigned two.
- Aligned with the CISO of a multi million dollar health care client, a global fortune 100 consumer retail, and a major automotive manufacture to ensure that DXC was implementing services as expected and consult with the CISOs and their staffs on strategy, solutions, and gaps.
- Fully responsible for the security P&L and forecasting on all accounts which added up to over 10 million dollars at times.
- Ensured that DXC employees on accounts were adhering to security standards
- Managed the DXC security Ransomware response for a multi million dollar account.
Principal
K-Lex Associates
05.2011 - 03.2020
- K-Lex Associates was a small business in which I look short - mid term contracts as either a Corp-Corp or through W2 employment.
- Worked for a large Systems Integrator on a State's Medicaid SI module. Migrating it from its legacy platform to a cloud based solution.
- Responsible for managing the team that audited the Splunk test cases for ORR. Managed the development of the DRP and BCP for this solution. Created a table top exercise for acceptance from the client.
- Worked with a large SI to perform a risk assessment for NYS' critical applications and their data center policies.
- Consulted with a Mid-Sized mutual insurance company in Vermont performed a security assessment based on HIPAA, and ISO as well as a penetration test.
- Have acted as a vCIO for a mid size logistics company headquartered in Albany NY.
- Worked with a mid-sized Health Insurance Company to architect and manage their Identity and Access Management process (Sailpoint). Prepared and ensured processes were in place for their SOC, MAR and DFS audits.
- Consulted with several large NYS state agencies, authorities and commercial clients on various risk management, IT control and compliance projects.
- Consulted with clients to develop, implement and monitor security policies and compliance with policies.
- Developed, implemented, and tested Business Continuity/Disaster Recovery plans for K-Lex clients.
- Worked with a large NYS authority to assess architect, and implement an Identity and Access Management solution
- Responsible for leadership in assisting NYS agencies conducting evaluation of security, server, storage, and network infrastructure usage utilizing various tools.
- Assisted K-Lex clients in developing Incident Response plans.
- Provided K-Lex clients with threat analysis and vulnerability mitigation strategies.
- Worked as a consultant on a short-term contract to TJX Corporation to augment their internal Security Group to enhance their process and procedures regarding IT Governance, Risk, and Compliance.
- Worked with their Identity and Access Management group to scope their upcoming IAM consolidation project to Sailpoint and how to integrate their TIM/TAM, Sailpoint and Active Directory Environment
- Contracted to the NYS Office of Information Technology Services, Public Safety Cluster for a one year + contract
- Performed a NIST gap remediation project.
- Developed and published NIST policies in response to GAP audits findings
- Assisted with incident response and remediation
- Performed Secure Development Life Cycle process during application implementation. These include Identity Assurance Assessments, Data Classification Risk Assessments, and an overall Risk Assessment.
- Managed all HIPAA and Hitech related issues for the cluster.
- Analyzed and acted on vulnerability assessment reports.
- Performed application vulnerability scanning.
- SUNY Empire State College - Information Security Officer.
- Performed a security assessment based on the NIST Cybersecurity Framework.
- Assisted in the development and implementation Information Security Policies and Procedures and the Incident Response Plan.
- Served as the Incident Commander.
- Assisted as a subject matter expert in the created a security awareness program.
- Served as the internal resource to validate infrastructures and applications for security concerns.
- Implemented logging and event retention and alerting standards.
- Created internal investigation process.
- Led team to replace threat deterrent packages.
Director of US Delivery Services
GSSInfotech
05.2013 - 03.2014
- Rendered hands-on supervision to 20 technical consultants
- Attended staff and client meetings and served as liaison to manage operations for account.
- Evaluated personnel workloads to support capacity planning, adjusting service call scheduling according to available staff.
- Maintained proper staffing levels to guarantee timely and quality project deliverables.
Solutions Consultant
Hitachi Data Systems
12.2009 - 05.2011
- Rendered pre-sales technical support to enterprise networks across upstate New York and New England area, while overseeing channel partner education and deal assistance
- Performed proof of concept demonstrations, instructing potential customers on benefits of [Product or Service].
- Drafted integration plans to ease assimilation of products into customers' business infrastructure.
Director of Professional Services & Sr. Solutions Director
DYNTEK SERVICES, INC.
05.2005 - 12.2008
- Provided hands-on supervision to 50 technical consultants.
- Directed nationwide security risk and HIPAA/HITECH assessment team based in Tallahassee, Florida.
- Managed several multi-million-dollar projects simultaneously.
- Provided Pre-Sales support for the sales organization throughout the US, while building an Executive level consulting practice.
- Responsible for writing proposals, scoping projects, and writing Statements of Work, client presentations, change orders, SLA's and final client deliverables.
- Developed and delivered identity management presentations for GTC East and TCTC.
- Performed identity and access management projects.
- Provided in-depth technical knowledge, drove vendor technical relationships management, and efficiently served as project lead nationwide for various technologies, such as VMware, Citrix, Identity & Access Management, Microsoft, Novell, MacAfee, Symantec, RSA, SecurID, Envision, Network Management, Q1 Labs, SharePoint Server, Storage, EqualLogic, FalconStor, and Backup Exec.
- Introduced the Virtualization and Shared Storage Practice for DynTek's School District clients in the Northeast Worked with multiple clients to develop cross platform BCP/DR plans.
- Invited as featured speaker at The Conference That C o unts conference (Conference is an Albany based joint venture for Auditors, IT Auditors, and Internal Controls Specialists).
Director of Technical Services
Tailwind Associates
01.2004 - 05.2005
- Provided strategic technical direction to the company operation as well as efficiently managed 40 consultants.
- Provided strategic technical direction to the company operation as well as efficiently managed 40 consultants.
- Provided managerial and technical guidance to technical staff in the execution of high-volume IT projects.
- Provided Pre-Sales support for the sales organization while building the systems integration business.
- Worked on Identity and Access Management projects
- Invited as featured speaker at Computer Associates World Conference
Principal
Business Technology Solutions Consulting, LLC
01.2000 - 12.2003
- Established the company's vision and developed business plan.
- Assumed the role of a chief technical project leader for all systems integration, hardware, and software migration projects.
- Partnered with Capital Area businesses to streamline business processes and execute technologies that would boost revenue and cash flow.
- Implemented a PKI, SSO project for a large NYS agency.
- Invited as featured speaker at Computer Associates World Conference
LAN Group Manager
New York State Unified Court System
11.2002 - 06.2003
- Supervised staff of twelve system administrators in multiple locations
- Developed and implemented technology standards for the enterprise that consisted of .over 200 servers and 20,000 servers throughout New York State.
- Responsible for coordinating the Enterprise D/R plan
- Member of the Security Committee.
- Supervised and was hands on responsible for the enterprise messaging application.
Adjunct Professor
The Sage Evening College
01.2020 - 05.2022
- Developed and taught ITSM Course. A requirement for graduation with a BS in Information Technology.
- Demonstrated strong interpersonal and communication skills, resulting in clear subject matter discussion with students.
- Encouraged class discussions by building discussions into lessons, actively soliciting input, asking open-ended questions and using techniques to track student participation.
- Used different learning modes and types of technology to engage students in achieving learning outcomes.
- Researched and selected course texts and supplemental learning materials.
Systems Engineer
Dell Computers
02.2008 - 05.2009
Education
Certifications Achieved
Albany,NYBachelor of Arts - Information Science And Policy
University At Albany
Albany, NY05.1997
Skills
- Information Security Governance, Risk, and Compliance
- NIST, ISO2700X, SOC, PCI, SOX, HIPAA, & HITECH, MARS-E 20, GDPR, NYS DFS, ITIL, COBIT
- Project & Portfolio Management
- Identity and Access Management- Design, Architecture and Implementation Management
- Information security policy design, implementation, compliance monitoring and education
- Risk Assessment Strategy, Program Implementation, and Delivery
- Cloud Security, AWS, Azure, and IBM
- Security Solution Design/Architecture
- Security Monitoring, Intrusion Detection/Prevention, Application Firewalls, and Data Loss Prevention
- Penetration Testing
- Threat & Vulnerability Management
- Data Analytics
- IT Operational Processes and Control
- Business Continuity/DR Recovery
- Public Key Infrastructure
- Data Center physical security design and monitoring
- SEIM Tools
- Splunk, IBM, NVISION, SolarWinds
- Active Directory/ADFS/AZURE
- Microsoft Project, Project, Visio, Excel, & PowerPoint/
- LAN/WAN, Wireless Protocols, and Architecture
- VOIP
- Office 365/ Exchange
- ORACLE – PSSQL
- Oracle Datavault
Affiliations
- International Information Systems Security Certification Consortium, Inc. (ISC2)
- Information Systems Audit and Control Association (ISACA)
- Information Security Association (ISSA)
Timeline
Information Security Leader
Gainwell Technologies
11.2022 - Current
Security Delivery Leader
DXC Technologies
03.2020 - 11.2022
Adjunct Professor
The Sage Evening College
01.2020 - 05.2022
Director of US Delivery Services
GSSInfotech
05.2013 - 03.2014
Principal
K-Lex Associates
05.2011 - 03.2020
Solutions Consultant
Hitachi Data Systems
12.2009 - 05.2011
Systems Engineer
Dell Computers
02.2008 - 05.2009
Director of Professional Services & Sr. Solutions Director
DYNTEK SERVICES, INC.
05.2005 - 12.2008
Director of Technical Services
Tailwind Associates
01.2004 - 05.2005
LAN Group Manager
New York State Unified Court System
11.2002 - 06.2003
Principal
Business Technology Solutions Consulting, LLC
01.2000 - 12.2003
Certifications Achieved
Bachelor of Arts - Information Science And Policy
University At Albany