Summary
Overview
Work History
Skills
Timeline
Generic
Martin McCall CISSP

Martin McCall CISSP

Information Security Director

Summary

Information Security Leader with 20 years of experience, adept at evaluating and optimizing cybersecurity infrastructure, providing strategic security risk-based guidance, and directing teams for successful execution of security consulting services. Proven success in developing, implementing, and managing comprehensive enterprise-level security standards, policies, and procedures. Excels in optimizing security programs to align with IT strategy and business goals, crisis management for large enterprise customers' IT security incidents, and driving revenue growth. Eagerly seeking to leverage these skills, experiences, and accomplishments in a new leadership role.

Overview

20
20
years of professional experience

Work History

Cyber Risk Advisor

Cyber Risk Analysis Group
Jacksonville, Florida
04.2023 - Current
  • Drove value of CRAG's cybersecurity platform in alignment to business needs of middle market commercial clients
  • Provided strategic security risk-based guidance for IT projects, including evaluation & recommendation of technical controls
  • Advised security programs across multiple verticals aligning risk, compliance, and cost to IT strategy and business goals
  • Assisted in contract negotiation and closing strategies ensuring adherence to guidelines, terms, and pricing

Director

Lumen Technologies, Security Consulting Services
Jacksonville, Florida
05.2012 - 11.2022
  • Led team of senior security consultants responsible for organizational security posture improvement across multiple verticals such as healthcare, retail, media, banking, and finance
  • Identified and mitigated security risks within corporate functions, enabling design and implementation of top-down security architecture programs
  • Directed and managed team of Senior Managers and Senior IT Security consultants, architects, engineers, and analysts overseeing growth exceeding $20 million in annual IT Security services
  • Led security consulting component on large bids from pre-sales positioning, contract negotiations, and finalized Statements of Work in collaboration with client leadership teams
  • Provided crisis management for large enterprise customers' IT security incidents, including data breaches, DDoS attacks, business continuity, and disaster recovery
  • Developed and managed high-visibility customer experience teams, focusing on hiring, rewarding, retaining, and developing diverse teams
  • Analyzed critical IT risk issues and prepared information packages for executive management, and successfully led data gathering and market analysis activities

Security Solutions Architect

Softchoice
Atlanta, Georgia
04.2011 - 05.2012
  • Developed and expanded security practice in East Coast region, aligning business and compliance needs with architecture solutions across multiple verticals
  • Achieved 5% increase in security category revenue and 18% increase in gross profit margin
  • Provided sales training on security technologies and assessment led selling techniques
  • Established, positioned, and presented range of security solutions to customers and led technical discussions for potential and proposed security solutions
  • Architected perimeter security solutions and services, Including Firewall, IPS, Web security, Web application security, Email security, and Mobile management
  • Positioned leading network/host security solutions and services, including NAC, DLP, SIEM, Encryption, virtualization, and endpoint security

Senior Information Risk Management Consultant

Axis Capital
Atlanta, Georgia
02.2009 - 04.2011
  • Established and promoted comprehensive enterprise-level security standards, policies, and procedures by advocating for security integration with senior management, IT staff, and end users
  • Enforced security standards, policies, and procedures through routine system audits, scans, penetration testing, and active security monitoring
  • Developed and implemented security incident response program for IT systems, including monitoring for intrusions and collaborating with external vendors and business partners

Security Lead

Citigroup, Primerica Financial Services
Atlanta, Georgia
03.2008 - 02.2009
  • Created and managed PCI DSS based B2B Risk Assessment program
  • Led Vulnerability Management program weighing impact of each risk, and establishing prioritization of risks based on severity
  • Analyzed and investigated incidents alongside functional management and security supervisors
  • Recorded incident reports with detailed accounts of occurrences

Senior Security Consultant

KPMG LLP
Atlanta, Georgia
10.2006 - 03.2008
  • Established and assessed operating effectiveness of SAS70 IT controls for prominent financial service provider
  • Managed team of security professionals in conducting one of the largest penetration tests in firm history for a major Credit Agency, spanning multiple countries
  • Planned, budgeted, and executed multiple security projects for various verticals and governmental agencies
  • Conducted wireless infrastructure assessments at multiple sites using geo-location technology to analyze wireless coverage and performed security testing of encryption and protection schemes
  • Developed and delivered executive-level, middle management, and technical reports to effectively communicate assessment findings to all levels of client organization

Security Analyst

Matria Healthcare
01.2005 - 10.2006
  • Conducted network security audits and risk assessments to ensure compliance with Information Security Policy and regulatory requirements
  • Investigated network intrusions and access control violations
  • Identified and implemented tools and techniques resulting in measurable reduction of attack vectors and overall threat landscape

Skills

Project Management

Vulnerability Management

Program Creation

MITRE ATT&CK frameworkIT Project Security Guidance

AWS

Vulnerability Assessment

EDR/MDR/XDR

Risk Assessment

DDOS

Team Leadership and Development

Security Program Advisory

Cybersecurity Platforms

SIEM

GRC

CMMC

Contract Negotiation

SQL

DLP

Kali Linux

Database Security

Client Communication

Relationship ManagementFortiGateTcpdump

Palo Alto

Regulatory Compliance

NIST 800-53Checkpoint

Disaster Recovery

Threat Hunting

Burp SuiteNetwork/Host Intrusion Detection

Intrusion Prevention

PCI

Linux

Penetration Testing

Network Security

Security Management Policies

Application Security

Strategic Security PlanningHIPAA

Time Management

Timeline

Cyber Risk Advisor

Cyber Risk Analysis Group
04.2023 - Current

Director

Lumen Technologies, Security Consulting Services
05.2012 - 11.2022

Security Solutions Architect

Softchoice
04.2011 - 05.2012

Senior Information Risk Management Consultant

Axis Capital
02.2009 - 04.2011

Security Lead

Citigroup, Primerica Financial Services
03.2008 - 02.2009

Senior Security Consultant

KPMG LLP
10.2006 - 03.2008

Security Analyst

Matria Healthcare
01.2005 - 10.2006

Similar Profiles

  • Muhammad ZainMuhammad Zain

    Cyber Risk Advisor at Ethan ProjectsCyber Risk Advisor at Ethan Projects

  • Michael DowdingMichael Dowding

    Senior Risk Advisor, Cyber at PeratonSenior Risk Advisor, Cyber at Peraton

  • Shaniah HeadleyShaniah Headley

    Cyber & Strategic Risk Analyst - Cyber Strategy at DeloitteCyber & Strategic Risk Analyst - Cyber Strategy at Deloitte

  • Sarah SaiedSarah Saied

    Analyst, Risk and Financial Advisory (Cyber and Strategic Risk in Extended Enterprise) at Deloitte and Touche LLPAnalyst, Risk and Financial Advisory (Cyber and Strategic Risk in Extended Enterprise) at Deloitte and Touche LLP

CREATE PROFILE
Martin McCall CISSPInformation Security Director