Summary
Overview
Work History
Education
Skills
Certification
Publications
Affiliations
Languages
Interests
Work Preference
Timeline
Generic
Mark Spivey
Open To Work

Mark Spivey

Waller,TX

Summary

IT Security Director and hands‑on cyber leader with 20+ years of experience scaling cybersecurity capabilities in mid‑ to large‑scale, hybrid (on‑prem and cloud) environments. Proven track record building and executing multi‑year security roadmaps, aligning cyber risk reduction with business priorities, and advising executive leadership on emerging threats and regulatory trends. Hands‑on expertise in incident response, vulnerability management, and SOC operations, including a managed SIEM service, EDR platforms, and team‑owned IAM capabilities, with a strong focus on metrics‑driven improvement and automation. Recognized as a hands‑on security leader who builds high‑performing teams, strengthens governance and controls with hands‑on exposure to NIST, ISO 27001, PCI DSS, FedRAMP, SOX/JSOX, and data privacy frameworks, serves as a technical SME during internal and external audits, and successfully integrates M&A targets into secure, resilient enterprise environments.

Overview

14
14
years of professional experience
1
1
Certification

Work History

Director, IT Security

Daikin Comfort
Waller, TX
01.2020 - 01.2026
  • Directed a transformative security strategy overhaul, strengthening defenses across enterprise and OT environments.
  • Managed a team of security professionals, fostering a culture of continuous improvement and collaboration with IT, legal, and business leaders.
  • Implemented advanced security controls and formalized governance processes to enhance compliance posture.
  • Directed major incident response efforts, boosting organizational resilience and executive awareness.
  • Conducted in-depth security assessments, developing prioritized remediation strategies to address critical vulnerabilities.
  • Led all IT Security efforts for mergers and acquisitions

IT Security Consultant

Goodman Manufacturing
Waller, TX
01.2019 - 01.2020
  • Conducted in-depth security assessments, identified critical vulnerabilities, and developed prioritized remediation and defense strategies.
  • Contributed to security policy development and governance improvements that set higher standards for corporate security practice.

Senior Security Compliance Engineer

Cisco
Spring, TX
01.2017 - 01.2019
  • Enhanced security frameworks and controls supporting major compliance initiatives, including FedRAMP, and other international standards.
  • Standardized cybersecurity practices across multiple regions, improving consistency, visibility, and control effectiveness.
  • Via BroadSoft Acquisition

Senior IT Enterprise Security Analyst

Harris County
Houston, TX
01.2015 - 01.2017
  • Performed comprehensive security assessments and audits, driving remediation plans to mitigate risk and improve compliance.
  • Worked closely with law enforcement and the Computer Security Incident Response Team (CSIRT) to refine incident response procedures and respond to emerging threats.

Senior Security Engineer / Interim CSIRT Manager

ADT LLC
Jacksonville, FL
01.2012 - 01.2015
  • Served as acting CSIRT manager, coordinating responses to cyber incidents and improving processes and tooling.
  • Implemented and managed IDS/IPS and other security technologies, strengthening detection and response capabilities.
  • Helped maintain system integrity and security posture during the ADT-Tyco separation with no major security disruptions.

Education

A.A.S. -

Texas State Technical College
Waco, TX
01.1994

Skills

  • Team Leadership
  • Strategic Planning
  • Security Framework Development
  • Advanced Security Controls
  • Cross-Functional Collaboration
  • Cybersecurity Strategy & Governance
  • Enterprise Risk Management
  • Security Architecture & Engineering
  • Incident Response & Crisis Management
  • Regulatory Compliance
  • Vendor & Budget Management
  • Executive Communication
  • Security Awareness & Training
  • M&A / Organizational Change Support
  • Risk Assessment
  • Vulnerability Management
  • Data Protection and Privacy

Certification

Certified Information Systems Security Professional (CISSP), 01/01/03

Publications

Practical Hacking Techniques and Countermeasures, Published author, 11/01/06

Affiliations

  • Infragard

Languages

English
Native language

Interests

Woodworking

IT Security R&D

Photography

Work Preference

Work Type

Full Time

Location Preference

On-SiteRemoteHybrid

Timeline

Director, IT Security

Daikin Comfort
01.2020 - 01.2026

IT Security Consultant

Goodman Manufacturing
01.2019 - 01.2020

Senior Security Compliance Engineer

Cisco
01.2017 - 01.2019

Senior IT Enterprise Security Analyst

Harris County
01.2015 - 01.2017

Senior Security Engineer / Interim CSIRT Manager

ADT LLC
01.2012 - 01.2015

A.A.S. -

Texas State Technical College

Similar Profiles

  • Mark FerraioloMark Ferraiolo

    Director, Special Security and Technical Security Division at National Nuclear Security Administration (NNSA)Director, Special Security and Technical Security Division at National Nuclear Security Administration (NNSA)

  • DENIS BAKERDENIS BAKER

    Corporate Director, EHS & Security at Blue Bird Bus ManufacturingCorporate Director, EHS & Security at Blue Bird Bus Manufacturing

  • EDWIN GATLINEDWIN GATLIN

    Security Director at Downtown Grand Hotel and CasinoSecurity Director at Downtown Grand Hotel and Casino

  • Joel BlackerbyJoel Blackerby

    Global Security Director at Brown FormanGlobal Security Director at Brown Forman

CREATE PROFILE
Mark Spivey