Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

GERALD RAINS

Lehi,UT

Summary

Director of Information Security with and eye for detail and successful track record. Proven talent for leading by example, building relationships, and inspiring continued performance. Precise communication skills with the ability to connect with people from all backgrounds. Successful in supporting users and customers in varied environments. Established performance in conceptualizing, orchestrating, and executing projects that require collaborative relationship building and facilitative management at all levels. Possesses a solid understanding of security and privacy standards, best practices, and procedures.

Overview

24
24
years of professional experience
1
1
Certification

Work History

Director of Information Security

Awardco
Lindon, UT
01.2019 - Current
  • Managed the daily operations of the Information Security team including hiring, training and performance reviews.
  • Developed, maintained, and improved Awardco's Information Security Program.
  • Analyzed system risk to identify and implement appropriate security countermeasures.
  • Responded quickly to address any identified vulnerabilities in order to prevent exploitation by malicious actors.
  • Investigated any reported incidents of security violations or policy breaches by employees or third-party vendors.
  • Ensured compliance with applicable laws and regulations related to information security.
  • Obtained SSAE 18 SOC2 Type I and II attestations of compliance.
  • Created and ran the compliance efforts to obtain GDPR and CCPA/CPRA compliance.
  • Reviewed DPAs to assure compliance and security standards within contractual obligations.
  • Coordinated efforts between various teams within the organization to ensure compliance with relevant standards.
  • Performed security reviews for potential customers.
  • Managed, monitored, and deployed the physical security controls for Awardco.
  • Created and maintained files and documentation supporting company policies and procedures.
  • Conducted risk assessments to identify potential threats to the organization's IT infrastructure.
  • Liaised with external vendors such as cloud providers regarding their data protection policies.
  • Developed and implemented security policies, procedures, and protocols to ensure the confidentiality, integrity, and availability of all information systems.
  • Developed and maintained vulnerability management program which led to a significant reduction in vulnerabilities across the corporate and production environments.
  • Implemented measures to protect against data loss or theft from malicious actors or natural disasters.
  • Maintained up-to-date knowledge of industry trends, best practices, and emerging technologies related to information security.
  • Monitored network traffic for suspicious activity and unauthorized access attempts.
  • Created comprehensive incident response plans in case of a security breach or other attack on the system.
  • Created and maintained disaster recovery and business continuity policies.
  • Reviewed audit logs regularly for anomalies that may indicate malicious activity.
  • Assisted in developing budgets for personnel, hardware and software purchases, and implementation costs associated with new initiatives.
  • Arranged and initiated regular penetration testing to assess the effectiveness of existing security measures and oversaw the remediation of any findings.

SYSTEMS ENGINEER

PrinterLogic
St. George, UT
05.2018 - 01.2019
  • Responsible for presales system engineering for PrinterCloud customers.
  • Provide customer support and drive problem resolution.
  • Introduce and support PrinterCloud SaaS solution for Customers and Channel Partners.
  • Work with Channel Partners to enhance customer experience with PrinterLogic Managed Services.
  • Developed and delivered technical presentations to prospects, customers, and internal teams.
  • Provided product demonstrations to potential customers in order to showcase features and benefits.
  • Served as a liaison between engineering staff and sales team members throughout the development process.

SECURITY ADMINISTRATOR

Ancestry.com Operations, Inc.
Lehi, UT
03.2012 - 01.2018
  • Responsible for all aspects of endpoint security and protection.
  • Developed, maintained and owned Ancestry Vulnerability Management Program.
  • Audited networks and security systems to identify vulnerabilities.
  • Performed vulnerability scans on networks, systems and applications to identify potential threats.
  • Successfully designed, deployed, and maintained McAfee ePO and McAfee products on global production and corporate environments.
  • Updated virus protection systems based on computer virus reports.
  • Deployed Cylance to key figures and groups in the company.
  • Actively audited security processes for projects.
  • Researched applicable vulnerabilities, threats, and risks.
  • Recommend improvements for hardware, software, and company processes.
  • Successfully initiated a project to encrypt all endpoints.
  • Investigated and performed system forensics on compromised systems.
  • Regularly scanned PCI environment to find vulnerabilities.
  • Ensured PCI compliance.
  • Responded promptly to security alerts generated by intrusion detection systems or SIEM tools.
  • Provided technical support to end users regarding computer security issues.
  • Researched new trends in cyber-security threats and vulnerabilities.
  • Assisted with internal penetration testing exercises to assess the effectiveness of existing security controls.
  • Coordinated with external auditors during annual compliance audits.
  • Met with stakeholders to collaborate and resolve problems.

SENIOR WEB OPERATIONS ADMINISTRATOR

Ancestry.com Operations, Inc.
Provo, UT
04.2007 - 03.2012
  • Managed Data Center Operations for Ancestry.com website and corporate functions.
  • Successfully managed and grew server count from 3000 to 9000 servers.
  • Coordinated and implemented site wide updates and patches utilizing BifFix BES server (now IBM Endpoint Management). This resulted in less vulnerable servers and a more protected environment.
  • Actively plan for growth and continual expansion of servers and data center needs thereby ensuring effective management of data center operations.
  • Provided 24/7 data center support.
  • Managed power balancing of all hardware within the data center. Provided a plan to equalize power distribution and server re-allocation to prevent outage and reduce power costs for data center.
  • Support Ancestry PCI environment backend ensuring Ancestry's ability to accept credit card payments.
  • Responsible for purchasing and acquisition of servers and data center needs. Negotiated pricing and terms to obtain best pricing for Ancestry.
  • Initiate and maintain vendor relations to allow Ancestry to maintain a current and competitive infrastructure and services.

SENIOR TECHNICAL SUPPORT SPECIALIST

Echopass
Cottonwood Heights, UT
11.2006 - 04.2007
  • Provided customer support for national virtual call centers.
  • Successfully supported and maintained SLA for customers.
  • Troubleshot AD and Citrix to resolve customer issues with accounts.
  • Maintained highest ticket closing ratio on the team.
  • Held position of liaison between tier two and tier three support.

CONSULTANT

Owner
Phoenix, AZ
01.2006 - 11.2006
  • Provided technical support for small business needs and growth.
  • Successfully supported small business IT needs of three companies.
  • Successfully demonstrated cost savings through streamlining IT spending, procedures, purchasing processes, and employee time savings.
  • Implemented upgrades on network bandwidth, servers, and local desktops/laptops.
  • Automated backup of servers.
  • Implemented AV software on all systems.
  • Wrote instructions for users clarifying best practices and procedures.

NETWORK APPLICATION ANALYST/ADMINISTRATOR

KnowledgeNet\Thompson NETg
Scottsdale, AZ
02.2000 - 01.2006
  • Provided lead technical support for desktop and server environments.
  • Develop, implement, and maintain procedures for backup and recovery of servers and network drives.
  • Successfully implemented and deployed Microsoft SMS server.
  • Managed user rights, privileges and security access.
  • Responsible for all levels of repairs on servers and end user systems.
  • Initiated and completed site wide upgrade of system hardware and OS.
  • Successfully implemented and ran product receipt and input of systems into Asset Control System.
  • Created and maintained user accounts within Active Directory and Exchange.
  • Successfully deployed and maintained Symantec Anti-Virus.

Education

Associate of Applied Science - Information Technology

Academy of Business College
Phoenix
10-1998

Skills

  • Business Continuity and Disaster Recovery
  • Compliance Management
  • Incident Response
  • Vulnerability and Patch Management
  • Project Leadership
  • Infrastructure Development
  • Reliability
  • Adaptability and Flexibility
  • Security Planning
  • Team Building and Collaboration

Certification

  • GIAC GSEC
  • Microsoft MCSE
  • ASE, Accredited Systems Engineer HP ProLiant Servers
  • ASE, Accredited Systems Engineer for HP ProLiant Servers with specialty in HP Blades
  • ASE, Accredited Systems Engineer HP Blades
  • AIS, Accredited Integration Specialist for HP

Languages

Spanish
Professional

Timeline

Director of Information Security

Awardco
01.2019 - Current

SYSTEMS ENGINEER

PrinterLogic
05.2018 - 01.2019

SECURITY ADMINISTRATOR

Ancestry.com Operations, Inc.
03.2012 - 01.2018

SENIOR WEB OPERATIONS ADMINISTRATOR

Ancestry.com Operations, Inc.
04.2007 - 03.2012

SENIOR TECHNICAL SUPPORT SPECIALIST

Echopass
11.2006 - 04.2007

CONSULTANT

Owner
01.2006 - 11.2006

NETWORK APPLICATION ANALYST/ADMINISTRATOR

KnowledgeNet\Thompson NETg
02.2000 - 01.2006

Associate of Applied Science - Information Technology

Academy of Business College

Similar Profiles

CREATE PROFILE
GERALD RAINS