LINTON HARRIS
Cyber Security Leader
Tampa,FL
Summary
I am a Security Operations Manager at Veritext Legal Solutions, a leading provider of litigation support services, with 18+ years of experience in cybersecurity. I hold several industry-recognized certifications, including CISSP, CISM, CEH, CISA, and CDPSE, and I have a master's degree in cyber security from EC-Council University.
My mission is to ensure the security and compliance of Veritext's data, systems, and network and to protect our clients' and partners' trust and privacy. I oversee the security operations team, governance risk compliance (GRC), and the incident response process, using advanced tools and techniques to monitor, prevent, detect, and remediate security threats. I also develop and document security policies, procedures, and best practices and collaborate with senior leadership and stakeholders to align security strategy with business objectives. Additionally, I have established a robust vulnerability management program that covers the entire attack surface and prioritizes risk-based mitigation. I am passionate about staying updated on the latest trends and innovations in cybersecurity, and I aspire to become a CISO in the future.
Overview
18
18
years of professional experience
Work History
Security Operations Manager
Veritext Legal Solutions
01.2023 - Current
- Sit on Security Committee with the CEO, CTO, VP of Infra, and Security Council
- Build, train, mentor, and lead the security operations team
- Assess, classify, and prioritize security events and establish processes to remediate and reduce the likelihood of further occurrences.
- Develop and document security operations processes, procedures, and playbooks.
- Deploy security and optimize existing tools to strengthen monitoring, prevention, detection, and response capabilities.
- Established a vulnerability management program focusing on complete attack surface coverage, risk-based mitigation/remediation, and overall program effectiveness.
- Evaluate existing security controls to identify gaps and areas for improvement.
- Implement automated and intelligent remediation controls to safeguard our environments.
- Lead incident response activities while involving all pertinent internal and external stakeholders
- Work with leadership and stakeholders to define, collect, and report operational metrics and reporting approaches that smartly tailor the presentation of critical risk and performance indicators.
- Provide regular documented security briefings, including status, severity levels, action plans, root cause analysis, and corrective action plans.
- Must have business sense and view as well as day-to-day operations
- Work with the development team to roll out security within new products
- SOC2 compliance projects
- Determined security budgets and identify opportunities to optimize resource utilization.
- Analyzed security threats and risks and developed mitigation strategies to reduce potential losses.
Director Security Operations
Greenlight Guru
01.2022 - 12.2022
- Establish mission, vision, and strategy for security operations Practice that aligns with business objectives.
- Develop technical and process-driven solutions to execute security operations strategy.
- Manage to recruit and staffing responsibilities for security operations practice.
- Work closely with Product Engineering Leadership to propagate secure-by-design principles and cultivate security mindset.
- Provide leadership and advocacy for modern security technologies and techniques.
- Develop, implement, document, and monitor comprehensive cybersecurity risk management program for SaaS offerings.
- Develop and maintain a Security-Focused Configuration Management.
- Work closely with business stakeholders across organization to facilitate compliance and accreditation initiatives such as SOC2, ISO 27001, FedRAMP,GDPR, etc
- Coordinate with business stakeholders to support pre-sales and post-sales needs related to security operations.
- Define and refine policy and procedure documentation in areas of ownership such as access control, data encryption, network design and security, and vulnerability management.
- Led Security Incident Response Team.
- Foster relationships with outside firms and vendors to perform such functions as external audits, penetration testing, and legal guidance.
- Delivered regular security awareness programs to educate personnel on security measures and protocols.
- Established measures, metrics, thresholds and targets to drive performance in alignment with security and other business strategies.
Security Operations Manager
Deloitte
04.2020 - 01.2022
- Led and managed security operations for multiple projects.
- Managed, coached, and mentored team of ten information security analysts and engineers.
- Manage utilization of cybersecurity, firewalls, network security, virtualization, cloud services information assurance, Security Information and event management (SIEM), application security, security engineering, and security architecture.
- Guide project teams, application owners, and other information security teams on information security controls.
- Conduct real-time assessments of current operating systems to determine areas susceptible to compromise.
- Provide actionable recommendations to critical stakeholders based on data analysis and findings.
- Develop policies and standard operating procedures (SOP) that minimize security risk to company's systems.
- Monitors and maintains security documents, policy, protocol, and controls, including information security governance.
- Enforcement and adherence to frameworks (ISO 27001, ISO 27002, SOC 1, SOC 2, NIST 800-53)
- Analyze and investigate threats and security incidents impacting employees' Incident Response plan.
- Enhance and maintain technology operations, including Intrusion Detection/Prevention System (IDS/IPS), Identity and Access Management (IAM),
- Vulnerability and Threat Management (VTM), Endpoint Detection and
- Response (EDR), Advanced Threat Protection (ATP), messaging gateway, and application security services.
- Determined security budgets and identify opportunities to optimize resource utilization.
- Outlined and maintained security patching schedule to efficiently address ongoing system issues.
Vulnerability Manager
Lakeland Regional Health
08.2019 - 04.2020
- Work directly with CISO and other senior leaders across business to set strategy for security monitoring, response, vulnerability management, penetration testing, IT business continuity, disaster recovery, patching, and IT's ITIL processes.
- Create and lead security professionals through vulnerability life-cycle processes such as detection, analysis, prioritization, and reporting.
- Establish relationships with cross-functional teams for practical oversight remediation efforts and to understand and help solve challenges.
- Manage vulnerability system that includes scanning and reporting vulnerabilities.
- Review and analyze critical patch update advisories and security alerts/bulletins available from software vendors.
- Maintain up-to-date understanding of emerging trends in information security threats and risks; apply new techniques and trends in-line with overall information security objectives and risk appetite.
- Establish clear priorities for vulnerability management team and execute strategies for successful fulfillment of projects based on risk, benefits, and alignment with organizational strategy and objectives.
- Developed platforms to enable IAM users to access SharePoint Online and multi-factor authentication.
- Develop and manage timely metrics, KRIs, and KPIs for information security and risk management.
- Established open and professional relationships with team members, which facilitated communication, quickly resolving issues, and conflicts.
- Established team priorities, maintained schedules and monitored performance.
Senior Associate IS Security Engineer
Amgen
08.2017 - 07.2019
- Provide recommendations and limited administration of security products and services, including firewalls, encryption technologies, patching, certificate management, antivirus, email security controls, intrusion detection/prevention, identity, access management, and security scanning and assessment tools for both traditional on-prem and AWS environments.
- Monitored and maintained compliance with Information Security policies, standards, and applicable government regulations
- Conduct security audits and assessments, analyze results, identify remediation activities and compensating controls, and track remediation efforts to completion.
- Performed product evaluations and made recommendations for performance improvement tools and error-reducing procedures
- Identify, assess, measure, and monitor information risk by performing and overseeing risk assessments, vulnerability assessments, application security assessments, penetration tests, and 3rd party information security risk assessments.
- Conducted feasibility studies for proposed projects using potential ROI and risk management.
- Developed planning criteria for integrating and enabling new technologies.
- Resolved architecture, design or verification problems.
Education
Master of Science - Cyber Security
EC-Council University
Albuquerque, NM01.2021
Skills
- Investigate Breaches
- Risk Management
- Threat & Vulnerability Management
- Develop Security Standards
- Security Best Practices
- Security Team Management
- Tracking Metrics
- Network Security Management
- Security Improvements
- Cybersecurity
Certification
(CCISO)(CISSP)(CISM)(CISA)(CEH)(CDPSE)(SSCP)(Security+)
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Quote
I feel that luck is preparation meeting opportunity.
Oprah Winfrey
Timeline
Security Operations Manager
Veritext Legal Solutions
01.2023 - Current
Director Security Operations
Greenlight Guru
01.2022 - 12.2022
Security Operations Manager
Deloitte
04.2020 - 01.2022
Vulnerability Manager
Lakeland Regional Health
08.2019 - 04.2020
Senior Associate IS Security Engineer
Amgen
08.2017 - 07.2019
Master of Science - Cyber Security
EC-Council University
Similar Profiles
Diego IglesiasDiego Iglesias
Digital Court Reporter at Veritext Legal SolutionsDigital Court Reporter at Veritext Legal Solutions
Ericka FullerEricka Fuller
Account Specialist - at Veritext Legal SolutionsAccount Specialist - at Veritext Legal Solutions
Tyler StoneTyler Stone
Digital Court Reporter at Veritext Legal SolutionsDigital Court Reporter at Veritext Legal Solutions
Chris WilliamsChris Williams
Sales Development Representative at sticky.ioSales Development Representative at sticky.io
Holly HowardHolly Howard
Office Manager at Dealer Network TradeOffice Manager at Dealer Network Trade