Steven Divine

• Developed and implemented security awareness training programs for all employees to promote best practices.
• Conducted thorough risk assessments to identify vulnerabilities in information systems and applications.
• Directed the deployment of network and computer security solutions, ensuring full compliance with corporate cybersecurity policies and regulatory standards.
• Monitored and enforced cybersecurity requirements across LANs, WANs, VPNs, routers, firewalls, and other critical infrastructure, maintaining seamless protection across platforms.
• Conducted vulnerability assessments and risk analyses to proactively identify and remediate system weaknesses.
  Led rapid incident response efforts, delivering thorough post-event analyses and implementing corrective measures to prevent recurrence.
• Investigated intrusion attempts and executed forensic investigations to trace root causes and strengthen system resilience.
• Partnered with business leaders to align security priorities with organizational needs, safeguarding critical systems and data assets.
• Collaborated with Network Infrastructure, Applications, and Legal teams to establish and enforce robust information security policies.
• Provided expert support to Network Administration and operations, ensuring secure and efficient technology performance.

As part of Mozarc Medical's IT Leadership team, I was responsible for all cybersecurity effort planning, execution, monitoring, and response globally for Mozarc Medical across the globe.

• Developed and implemented comprehensive information security policies aligned with organizational objectives.
• Migrated sites from a legacy WAN technology to an SD-WAN technology, reducing overhead in some sites by 70% due to the cost of the legacy WAN technology worldwide.
• Managed the Global Security Organization to comply with IT policies and external regulatory requirements.
• Adopted a data-first approach across Security Architecture to address the risk that the data being processed, transmitted, or stored presents to the organization.
• Collaboratively worked with IT Engineering to plan, design, and build secure IT architectures.
• Monitors the network for configuration variances from Standards, non-compliant infrastructure, and other indicators of compromise that may lead to a cyber event.
• Performs security assessments of Solutions (IaaS, PaaS, XaaS) and on-premises systems using OSINT, vulnerability scanning, and risk analysis.
• Manages cyber defense operations, specialized penetration testing, threat intel, cyber forensics, and advanced IT management controls.
• Development expertise in cybersecurity considerations to meet evolving cloud computing, web development, and mobile device requirements.
• Led risk assessment initiatives to identify vulnerabilities and drive mitigation strategies across systems.

• As part of Rapid7's Advisory Services organization, I work with companies worldwide to evaluate their security posture, implement control measures, and prioritize security initiatives.
  
  • Travel as needed to perform the various engagements related to the role’s tasks and held in person meetings with executives and board members.
  • Provide consultation and real-world experience mentorship to companies across industries, from food production to startups.
  • Collaborate with the Advisory Services team on a strategic approach, standardize our process, and create a scalable methodology for implementing new frameworks as new external governance sources emerge.
  • Collaborate to create new service offerings for various markets.
  • Review architectural approaches to security controls and suggest increased elegance, integration, and defense in depth.
  • Quickly learned new governance frameworks such as Japan’s Protection Law and cross-walked the framework with GDPR based on the two governing entities agreeing to value the laws equally.
  • Conducted repeatable research to provide intelligence on the degree of effort for solution adoption for enterprises of diverse sizes. Provided this information internally to the Strategic Advisory Services team.
• Facilitated client workshops to gather requirements and align project goals with business objectives.

Consultant that performed IAC development compliant with various security frameworks. Advised companies on security principals, best practices, and with program maturity gap assessments.

• Leader of the information security organization and its efforts to enterprise's efforts to shift left in security. Accountable for a team of engineers that handled enterprise information security efforts and reported directly to the CISO with board deliverable presentations and reports.
  
  • Lead an effort to review the technology stack used to provide security services to the enterprise and rate its security maturity, implementation, and subject matter level of expertise.
  • Created and executed a three-year plan to redesign the technology stack to practice defense depth principles, automated response, and reach a self-assessed goal to an industry framework.
  • Met with project leaders and stakeholders to offer tasks to a team of engineers aligned with other business efforts. Performed all reporting of these tasks and their efforts.
  • Pushed for a security service adoption that empowers developers to make secure coding decisions through centralized IDE security policy enforcement to ensure security personnel availability is not a single source of failure when needed for consultation.
  • Created a rotation schedule to ensure that the team of engineers cross-trained each other to ensure redundancy of subject matter expertise.
  • Created new trusted partnerships with solutions that augmented our security stack and complimented our defense-in-depth strategy.
  • Accountable for information security program proof of concepts, implementations, and changes related to network and cyber security technologies that served the enterprise.
  • Onboarded a vulnerability scanning solution and created a Risk Management program.
  • Founded technical third-party vendor risk management program.
  • Responsible for security services coverage and capacity planning for a team of engineers.
  • Onboarded email security solution with UBA common security issues.
  • Responsible for mentorship, reviews, and career growth of multiple engineers.

Recruited to be the sole information security person for a clinical genomics startup. I wore multiple hats, including engineering, architecture, and GRC. Created security standards and requirements for procurement of modern technologies and solutions. Proposed a data, system, and application ownership methodology to ensure a RACI method was applied and all applicable personnel were leveraged in procurement, change control, and sun setting processes.

• Implemented a scalable, measurable, and empowering Learning Management Solution (LMS) for GRC efforts.
• Wrote Policy and Procedures to reflect program maturity more accurately.
• Managed all aspects of incident response workflows and ensured SIRT tabletop exercises were performed.
• Implemented Cloud Authentication Boundary concept to manage decentralized cloud solutions, CASB, on a budget
• Network flow visualization extraordinaire utilizing SIM/SIEM solution.
• Collaborate with architects and developers to foster a DevSecOps relationship through adherence to security policies and compliance guidelines.
• Performed security design analysis and vulnerability management duties.

• Recruited to rebuild Charter’s risk management program post-merger with Time Warner Cable and Bright House Networks. Assess modern technologies, integrations, and system changes for potential risk. Lead the team in initiatives and high-priority issues. Develop new program tools, processes, and metrics to guide operations and evaluate performance.
  
  • Reduced ingestion time for more than 5TB of data by 75% by writing script and reworking process.
  • Developed risk management program documentation from scratch, aligning new practices with the NIST hierarchy.
  • Streamlined multiple security frameworks into a 130-question risk assessment tool based on NIST's CSF.
  • Partnered with colleagues to assemble and launch a data governance steering committee, creating crucial guidelines on data classification and handling and eliminating duplicate work and data.
  • Partnered with software security review board and architecture to provide an intake and audit process for new applications, strengthening network security and ensuring consistency across departments.
  • Volunteered to lead offensive security contingency planning group.
  • Established Cloud (SaaS, IaaS, PaaS) Risk Assessment criteria based on independent research.

• Designed and deployed multiple tools to strengthen network security. Audited security policies and procedures, making recommendations to enhance PCI and SOX compliance. Provided guidance and mentoring to the security operations team and served as the primary escalation point.
  
  • Championed replacement of legacy firewalls with next-generation firewalling technology.
  • Deployed privileged access management tool across the enterprise.
  • Deployed next-generation endpoint protection solution and responsibly disclosed vulnerabilities to vendor.
  • Designed darknet solutions for high-value assets.
  • Deployed an open-source honeypot solution to detect and deter unauthorized scanning and access.
  • Identified and resolved issues with digital forensics solutions within the VDI.
  • Performed threat hunting and monitoring of perimeter and cross-network segment traffic.
  • Deployed open-source SIEM to rapidly ingest system log data for threat analytics and user behavior analysis.

Performed testing for all endpoint protection products, including antivirus software, application virtualization, and automated threat response. Partnered with international team and application vendors to troubleshoot and address issues during testing and deployment. Team lead for a group of contractors.

• Identified issues with new endpoint protection products, coordinating with vendors to resolve bugs before going live.
• Saved 40 hours per event by scripting and automating client endpoint protection product patching.
• Authored comprehensive guides documenting all team processes and procedures to boost communication among a geographically dispersed group of contractors.