Summary
Overview
Work History
Education
Skills
Timeline
Hi, I’m

Maggie Byers

White River Junction,VT
Maggie Byers

Summary

Over the past two years, I have created an Information Security Department focusing on requiring controls to mitigate risk and stay compliant with required contracts/regulations in the financial industry (PCI, GLBA and Privacy, etc). I align strategy with management, build frameworks for tactical work, and work with staff to implement operational aspects. I have hands on experience building teams to manage cybersecurity and information security programs as well. More importantly, I love being able to de-mystify the world of technology into risk terminology for upper management and operations teams.

I led the InfoSec team to create an IT asset management policy, a new vulnerability management program, establish a formal security awareness program, and create a framework of identifying IT controls to work towards automation with a feedback loop. Our greatest achievement has been maturing the IT department security culture from a compliance driven mindset to risk informed (NIST CSF Tier 2 maturity) in the span of 2 years. We set maturity goals based off risk assessments using CIS v8.0 and NIST 800-53 control frameworks and track effectiveness with our IT audit program.

Overview

16
years of professional experience

Work History

Mascoma Bank

Director of Information Security
01.2022 - Current

Job overview

  • Established an IT GRC framework
  • Implement and lead efforts managing IT Security Awareness and Training program and reduced phish clicking from 10% to under industry standard
  • Coordinate with management teams to plan, develop, align and execute strategies that would meet organization's vision, mission and purpose
  • Increased efficiency of IT Audit Program by centralizing control evidence to effectively map to any required control framework (NIST publications, CIS, PCI, FFIEC CAT, etc)
  • Created executive level reporting to effectively communicate technology risks and governance efforts; Chair IT Governance Committee and co-chair of IT steering committee
  • Increased maturity of Information Security Program using CIS control framework for measurement and NIST CSF for categorization.

Mascoma Bank

Information Security Administrator
01.2019 - 01.2022

Job overview

  • Created Information Security Department; created roles & responsibilities with strategic objectives, hired staff
  • Developed IT GRC efforts such as IT audit function, IT risk assessments & security assessments, IT policy management and Board reporting
  • Oversight of Business Continuity Plan and facilitation during COVID-19 threat escalation to declared Disaster
  • Oversight and development of Cybersecurity review for Vendor Due Diligence
  • Development of Information Security considerations within Development CI/CD pipeline process

Mascoma Bank

Information Security Specialist
01.2018 - 01.2019

Job overview

  • Configured/Tuned alerts from Intrusion Prevention/Detection System
  • Drafted detailed security policy to govern and support technology decisions
  • Managed information system regulatory compliance to meet updated guidelines including privacy laws
  • Directed processes to choose, deploy and manage security software implementations

Education

Southern New Hampshire University

Bachelor of Science from Cybersecurity With Focus in Secure Programming
12.2025

University Overview

  • Relevant Coursework: 8/13 Cybersecurity Major Courses and 6/6 Core Computing Courses
  • 3.8 GPA

University of New Hampshire
Durham, NH

Leadership Certificate from Next Level Leadership Consortium
11.2021

University Overview

The SANS Technology Institute
Bethesda, MD

GIAC Security Essentials Certification (GSEC) from Information Security
07.2019

University Overview

Skills

  • Team Building
  • Risk Management Assessments & Mitigation Plans
  • Cybersecurity and Info Security Strategy
  • Analyzing System Security (Infrastructure & Development)
  • Third Party Risk Management & Vendor Management
  • NIST & CIS Security Standards
  • IT Audit Function
  • Security Awareness & Training Programs
  • Proficient with Microsoft 365, Atlassian Stack, AWS, Security Tools (SIEM, IDS/IPS, DLP, etc), GRC platforms, and many more

Timeline

Director of Information Security
Mascoma Bank
01.2022 - Current
Information Security Administrator
Mascoma Bank
01.2019 - 01.2022
Information Security Specialist
Mascoma Bank
01.2018 - 01.2019
Southern New Hampshire University
Bachelor of Science from Cybersecurity With Focus in Secure Programming
University of New Hampshire
Leadership Certificate from Next Level Leadership Consortium
The SANS Technology Institute
GIAC Security Essentials Certification (GSEC) from Information Security

Similar Profiles

CREATE PROFILE
Maggie Byers