Chris Sorensen
Sun City,AZ
Summary
Strategic Information Security Manager skilled in guiding navigation of modern technology. Demonstrated skill in translating technical requirements to business solutions. Successful twenty-three year record of building positive relationships with internal and external stakeholders. Robust background in managing information security frameworks. Successfully led initiatives to enhance data protection policies and mitigate security risks. Demonstrated expertise in threat analysis and incident response. Proven ability to implement comprehensive security measures and ensure compliance with industry standards. Known for fostering team collaboration and achieving high-impact results, while effectively adapting to changing requirements.
Overview
21
21
years of professional experience
1
1
Certification
Work History
Information Security Manager
Pulte Mortgage
08.2024 - Current
- Managed risk assessments to evaluate organization's exposure to information security threats.
- Actively participated in cross-functional meetings to provide expert guidance on information security matters during project development phases.
- Enhanced information security by developing and implementing comprehensive policies, procedures, and training programs.
- Fostered strong cybersecurity culture throughout organization by promoting best practices and open communication channels between departments regarding information security concerns.
- Mentored junior security staff members to develop strong and skilled information security team within organization.
- Implemented multi-factor authentication solutions to strengthen access control for critical systems.
- Increased employee awareness of cyber threats with regular security trainings and informative presentations.
- Conducted penetration tests regularly to identify vulnerabilities before they could be exploited by malicious actors.
Security Operations Engineer
Pulte Mortgage
08.2021 - 08.2024
- Enhanced operational efficiency by optimizing system workflows and processes.
- Developed technical documentation for improving operational understanding and user compliance.
- Identified key areas for process improvement, streamlining operations to reduce downtime.
- Collaborated with cross-functional teams to ensure seamless integration of new technologies.
- Enhanced system performance, executing regular maintenance and updates.
- Improved customer satisfaction by addressing technical issues promptly and effectively.
- Enhanced operational knowledge base, creating detailed process documentation.
- Developed training materials to enhance team skills and operational expertise.
- Maintained technical fluency in required equipment and networking hardware for assigned jobs and facilities.
- Designed and implemented annual disaster recovery table tops and adjusted plans, minimizing business impact during critical events.
- Managed relationships with 80+ external vendors and contractors, ensuring timely delivery of services while maintaining quality standards expected by organization.
IT Security Engineer II
PulteGroup
04.2019 - 08.2021
- Primary focus: Preventing malicious attacks, both internal and external in nature, utilizing multiple system tools
- Level II Security Engineer
- Responsibilities:
- Network Intrusion Detection, including; firewall and SIEM monitoring, maintain policy/access requirements, reporting/analyzing unauthorized change
- Improved SIEM alerts and tuning
- Initiative to implement CCPA project
- Vendor Risk Management Project
- ISO to NIST mapping
- Project to roll-out ProofPoint suite for entire organization
- Research and assess security review on Microsoft O365 applications
- 2019
- Develop relationship for IBM X-Force/IRIS and implement Organizational Tabletops
- Update Computer Security Incident Response Plan (CSIRP) and Incident Playbooks
- Participated in Gartner panels and Insights program
Information Security Engineer
Pulte Financial Services
08.2003 - 04.2019
- Primary focus: Preventing malicious attacks, both internal and external in nature, utilizing multiple system tools
- Level III technical support for network related issues
- Responsibilities:
- Administration of network security systems including; VPN for employee remote access, Application Firewalls, AV, and End Point Control
- Administrator for network e-mail encryption and policy control around safeguarding PII (Personal and Private Information)
- Network Intrusion Detection, including; firewall administration, SIEM monitoring, maintain policy/access requirements, reporting/analyzing unauthorized change
- Key contact for Sarbanes Oxley audit process for all Information Systems Departments
- Direct liaison between business and external/internal audit
- Physical security architect responsible for design and implementation of physical security systems in four campus locations covering two states
- Disaster Recovery Coordinator for Information Technology department and operations
- Job functions include managing DR exercises, formal review, and remediation with executives
- Business Continuity Coordinator responsible for reviewing all business plans, meetings with departments, creating annual table top sessions, and reporting results to executive team
- Security Awareness Training for new hires
- SME for Legal and Litigation Holds pertaining to incident response and privacy breaches
- Acted is interim CISO six months, from Dec 2013 to May 2014, taking on management, reporting, and maintaining existing program
- Accomplishments:
- Lead initiative to monitor, report and track all server application changes in accordance with best practices and policies for Sarbanes Oxley audits
- Authored policy and procedures for quarterly self-audits
- Review audits with executive level
- Drafted and implemented companywide Security Awareness Program to educate all new and existing employees
- Introduced, tested and recommended new security technology to include web monitoring tools, VPN access and server monitoring
- Team member responsible for drafting and reviewing company security policy and procedures
Education
Four years of studies - Political Science, Central European Eastern Studies
University of Colorado
Boulder, COSkills
- Cybersecurity strategy
- Identity and Access management
- SIEM management
- Threat intelligence
- Mobile device security
- Security awareness training
- Physical security
- Social engineering defense
- Two-factor authentication
- Incident response
- Endpoint protection
- Encryption technologies
- Penetration testing
- Disaster recovery planning
- Firewall configuration
- Teamwork and collaboration
- Problem-solving
- Excellent communication
Accomplishments
- Collaborated with team of Infrastructure and Security engineers to build, move, and upgrade Data Centers in multiple locations, across three states.
- Supervised team of three Security engineers Twice as interim CISO.
- Supervised and mentored Security Engineering interns.
- Achieved Data Security Initiative by introducing Corporate File Share standard for locking down and secure access for all internal departments.
- Documented, Designed, and Implemented Physical Security and Access Control Systems for multi-campus organization.
- Supervised team of two and managed annual Sox audits. Participant and primary contact for State and Federal Audits directly reporting to Executive Officers and General Counsel. .
- Responsible to managing, reporting, and supervising Cyber Security Compliance program.
Associations
- Information Systems Security Association (ISSA)
- Infragard
- SANS
Certification
- CompTIA Security+ - Computing Technology Industry Association (CompTIA).
- GIAC Security Essentials Certification (GSEC) – Global Information Assurance Certification.
Languages
English
Native or Bilingual
Timeline
Information Security Manager
Pulte Mortgage
08.2024 - Current
Security Operations Engineer
Pulte Mortgage
08.2021 - 08.2024
IT Security Engineer II
PulteGroup
04.2019 - 08.2021
Information Security Engineer
Pulte Financial Services
08.2003 - 04.2019
- CompTIA Security+ - Computing Technology Industry Association (CompTIA).
- GIAC Security Essentials Certification (GSEC) – Global Information Assurance Certification.
Four years of studies - Political Science, Central European Eastern Studies
University of Colorado
Similar Profiles
Morgan FoxMorgan Fox
Mortgage Financing Advisor /Branch Manager at Pulte MortgageMortgage Financing Advisor /Branch Manager at Pulte Mortgage
Blake BarrickBlake Barrick
Loan Consultant at Pulte MortgageLoan Consultant at Pulte Mortgage
David ChangDavid Chang
Vice President, Branch Manager at Pulte Mortgage LLCVice President, Branch Manager at Pulte Mortgage LLC