Richard Erisman

Manage multi talented cyber security team responsible for:
- Cloud Security
- Application Security
- Vulnerability Management
- Logging/SIEM
- Cyber Security Incident Response
- Endpoint Protection (AV/EDR)
- Web Proxy and Firewall Rules
- Cyber Security Investigations
- GRC
- Vendor Risk
- Business Continuity
- Security Architecture
- Privacy Rights
- Policy and Standards

• Managed teams responsible for:
• Cyber Security investigations - developing investigation SOPs and manage team responsible for investigating events from third parties, legal requests, threat hunting results, third party phishing and customer security inquiries.
• Employee Investigations - internal threat investigations, working with Legal and HR to identify and investigate employee threats and outside counsel and third party inquiries.
• Cyber Security Incident Response Program - developing and maintaining enterprise incident response program, organizing and running cyber security incidents and related resources.
• Vulnerability Management - developing vulnerability management program, out of band vulnerability remediation and tracking, working with patch management and systems owners and providing metrics.
• Developing and Managing Security Operations Center - identifying and defining responsibilities, resource requirements and standard operating procedures. Identifying technologies, security logging and automation, monitoring and alerting requirements.
• Security Logging Management – managing logging program and related technologies, working with practice areas identifying logging requirements, ingestion and standards.

• Managed teams responsible for:
• Security Operations - Firewall implementation, support, and oversight including alert response, policy/rule management and remediation.
• Identity and Access Management - privileged and standard access management, provisioning and termination process and oversight.
• Security policy, risk and compliance - developing security policies, standards and procedures.
• Vulnerability Management - EDR selection and implementation including managing and maintenance.
• Application Security - utilizing tools to scan applications for vulnerabilities, working with application owners to validate and tracking remediation activities.

• Managed team responsible for:
• NIST Cybersecurity Framework Implementation - Working with business units and Information Security team to modify and update NIST Cybersecurity Framework, identify owners, activities, deliverables and metrics.
• Vulnerability Management - Creating process for working with 3rd party partners regarding critical vendor and third party vulnerabilities. Worked with Info Sec team to identify and remediate critical system and application vulnerabilities.
• Enterprise Training and Awareness - Developing phishing awareness and training program, and program effectiveness assessment process.

• Team lead for Customer Security Management focusing on internal customers related to security, controls and compliance.
• IT Security Controls - Created and managed IT General Controls based on ISO 27001 and mapped framework to SOX, PCI, HIPAA, CCM. Performed self-assessments and security control verification.
• PCI Compliance Program - Developed and managed enterprise PCI Compliance program, credit card processing, training, and scope. Managed PCI scans, vulnerability remediation, ASV sign off and Self-Assessment Questionnaires.
• Vulnerability/Risk Assessments - Provided management responses and action plans to risk assessment findings and critical vulnerabilities. Owned action plans and worked with business and technical resources to remediate/mitigate findings. Identified areas for self-assessment, conduct reviews and remediated findings.
• Technical Project Management - Managed PCI compliance, segmenting networks, developing processes and cleaning legacy data. Developed and implemented document archiving solution, retention rules and security requirements.
• Access and Identity Management - Implemented and administered privileged access management solution for system administrators and service accounts. Developed and managed provisioning and de-provisioning process for employees and contractors. Managed review and defined standards and enforcement.
• Corporate Records Management - Developed records retention policy and schedule and worked with M&A to ensure compliance. Maintained and administered records management solution and offsite storage.
• Incident Response - Developed incident response reporting and communication processes. Conducted IR meetings, work streams, owners and action plans and tracked adoption/remediation/mitigation. Conducted post-mortems and incorporated improvements, for example organized and tracked global password refresh for all user privileged access, system and application accounts over single weekend.

• Developed and implemented automated process for capturing and processing over 50,000 medical documents daily.
• Administered and supported scanners, servers, workstations and capture and workflow software.
• Managed technical projects, including resources and budgets. Projects included implementation of new technologies, process improvements, corporate acquisitions system integration and separation during corporate sell off.