Donald Sardano
Murrieta,CA
Summary
Information Security executive with 20+ years' experience leading large multi-functional cybersecurity teams in diverse organizations and business sectors. Proven global leadership with experience in Healthcare, Financial, Banking\Lending, Telecommunications, and Federal & Managed Services sectors with a wide array of transferable skills. A strong background in information technology and information security with a focus on Privacy, Governance, Risk Management, Compliance, Security Architecture & Engineering, Security Operations & Identity & Access Management. Excellent communication, interpersonal and leadership skills with experience and success in building, implementing & mentoring information security programs that align to the organization's strategic goals, risk appetite to enable and protect the business.
Overview
14
14
years of professional experience
Work History
Adjunct Instructor: Cyber Security
CIAT: California Institute of Applied Technology
11.2023 - Current
- Provide Oversight & Leadership: Policy Strategy & Management, Enterprise Security Framework, Data Governance, Risk Management Framework
Sr. Director Information Security: Governance-Privacy-Risk-Compliance
Magellan HealthCare | Centene
Murrieta, CA
04.2021 - 03.2024
- Provide Oversight & Leadership: Policy Strategy & Management, Enterprise Security Framework, Data Governance, Risk Management Framework (NIST 800-37), Risk Register, Risk Acceptance & Policy Exceptions, Risk Quantification/Prioritization for Projects, Vendor security assessments, SecArch Risk Assessments, Enterprise and Product Risk Assessments, Control & Regulatory Compliance, Audits & Assessments [NIST 800-53/171, SOC1, SOC2, SOX, HIPAA, HITRUST, FISMA FedRAMP, MARS-E, CMMC readiness]
vCISO: Cyber Security Operations, SecEng\Arch, GRC, Business Resilience
SCYBER Technology, llc
Henderson, NV
01.2021 - 04.2021
- Providing leadership and direction responsible for leading the organization's security posture, establishing, and maintaining compliance while mitigating IT risk, and advising on how to align IT security with business goals.
Sr. Director: Security Operations Program Delivery
deepwatch
Murrieta, CA
11.2019 - 12.2020
- Acting primarily as a vCISO Collaborating with the Senior Leadership Team to improve Business Development, Define and detail Sales Strategy/Customer Relationship & Engagement
- Provide deepwatch thought leadership and direction to deliver excellence in Security Operations, SOAR enriched Managed Detection & Response capabilities that function across all verticals.
DCISO: Director Information Security
CGI FEDERAL: Enterprise Technology Group
Murrieta, CA
01.2017 - 10.2017
- Deliver security-consulting, advisory, and managed security services across U.S
- Federal and non-Federal business units at United States Security Operations Centers
- Manage a team in excess of 50 members compromised of Security Engineers, Security Architecture, Security Analysts, Security Operations Center, Incident Responders, GRC ISSO's with a budget exceeding $9.5M
DCISO: Director of Information Cyber Security
BLACK STONE GROUP: Incenter Technology
Murrieta, CA
02.2016 - 01.2017
- Responsible for building, directing and managing the core pillars of Information Security: SecOP's, SecArch, SecEng, GRC, BCP\DR: Threats & Vulnerability Management, Cyber Hunting, Corporate Investigations, Forensics and Physical Security.
VP: Business Information Security Officer (BISO) NA Major Initiatives Group (MIG)
MORGAN STANLEY
New York, NY
04.2010 - 02.2016
- Provide Information Technology & Information Security direction, management, coordination and escalation support as the Business Unit Information Security Officer (BUISO)
- Business units included five divisions: Administration (Human Resources, Government Relations, Corporate Communications, and Corporate Services), Finance, Legal & Compliance, Risk Management and Internal Audit.
Education
Bachelor of Science - Cyber Security & Information Assurance
Western Governors University
Salt Lake City, UT06-2023
Some College (No Degree) - Advanced Program Management
Stanford University CPD
Stanford, CASkills
- In-class lectures
- Student performance evaluation
- Online Class Discussion
- Academic advisement
- Faculty communication
- Online Teaching
- Individualized support
- Lesson development
- Team Building and Motivation
- Administrative Oversight
- Key Performance Indicators
- Organizational Development
- Stakeholder Relations
- Policy Development
- Team Management
- Policy Implementation
- Data Analytics
- Staff Management
- Reporting expertise
- Project Coordination
- Operations Management
- Business Development
- Budget Control
- Project Management
- Contract Negotiation
- Business Planning
- Staff Development
- Contract Management
- Government relations
- Cross-functional team leadership
- Contract and Vendor Management
- Hiring and Retention
- Financial Reporting
- Program Management
- Charismatic Leader
- Negotiation
- Corporate Communications
- Financial Management
- Issues Resolution
- Verbal and written communication
- Budget Management
- Talent Acquisition
- Legal and Regulatory Compliance
- Company guidelines
- People Management
- Information Technology Management
- Rules and regulations
- Risk management expertise
- Penetration Testing
- Business continuity planning
- Patch management
- Compliance Management
- Disaster Recovery Planning
- Incident Response
- Application security
- Network Security
- Team Collaboration
- Security Needs Assessment
- Continuous Improvement
- Security Planning
- Disaster Recovery
- Data Security
- Encryption
- Analytical Skills
- Interpersonal Communication
- Excellent Communication
- Interpersonal Skills
- Multitasking
- Team building
- Risk Assessment
- Reporting and documentation
- Professionalism
- Written Communication
- Organizational Skills
- Data Encryption
- Managing security breaches
- Problem-solving abilities
- Relationship Building
- Effective Communication
- Task Prioritization
- Teamwork and Collaboration
- Professional Demeanor
- Adaptability and Flexibility
- Goal Setting
Education Certifications Professional Memberships
- Bachelor of Science, Cyber Security & Information Assurance, Western Governors University
- Advanced Program Management, Stanford University: Center for Professional Development, 2 Years
- C|CISO, EC-Council
- CISSP, International Information System Security Certification Consortium [ISC2]
- CISM, Certified Information System Manager
- CRISC, Certified in Risk and Information System Control
- CDPSE, Certified Data Privacy Solutions Engineer
- Information Systems Audit and Control [ISACA]
- A+, CompTIA
- Network+, CompTIA
- Security+, CompTIA
- CIOS, CompTIA
- CSIS, CompTIA
- CySA+, CompTIA
- PenTest+, CompTIA
- PMP, Project Management Institute [PMI]
- ITIL Foundation Certificate, ITSM PeopleCert Group
Timeline
Adjunct Instructor: Cyber Security
CIAT: California Institute of Applied Technology
11.2023 - Current
Sr. Director Information Security: Governance-Privacy-Risk-Compliance
Magellan HealthCare | Centene
04.2021 - 03.2024
vCISO: Cyber Security Operations, SecEng\Arch, GRC, Business Resilience
SCYBER Technology, llc
01.2021 - 04.2021
Sr. Director: Security Operations Program Delivery
deepwatch
11.2019 - 12.2020
DCISO: Director Information Security
CGI FEDERAL: Enterprise Technology Group
01.2017 - 10.2017
DCISO: Director of Information Cyber Security
BLACK STONE GROUP: Incenter Technology
02.2016 - 01.2017
VP: Business Information Security Officer (BISO) NA Major Initiatives Group (MIG)
MORGAN STANLEY
04.2010 - 02.2016
Bachelor of Science - Cyber Security & Information Assurance
Western Governors University
Some College (No Degree) - Advanced Program Management
Stanford University CPD