Summary
Overview
Work History
Education
Skills
Certifications
Timeline
Generic

STEVEN MICHAEL HELWIG

Helena,Montana

Summary

IT professional with over 25 years of experience developing and implementing security solutions in fast-paced environments. Skilled in GRC, Business Continuity / Diaster Recovery / Incident Response, Policy and Procedure, BC/DR planning and Interpersonal Skills with proven history of delivering exceptional risk management support.

Overview

30
30
years of professional experience
12
12
years of post-secondary education

Work History

Sr. Cybersecurity Analyst

Health Care Service Corporation, Blue Cross Blue Shield of Montana
Helena, Montana
10.2014 - Current
  • Responsible for Information Security and Compliance
  • Information Security Risk Management
  • Startup of Governance, Risk Management, Compliance (GRC) Program
  • Professional Development Trainer for IS teams
  • Developed / Reviewed documentation and policies
  • IT Security project management
  • Responsible for Information Security GRC Tooling (Rsam and HighBond)
  • Information Security consultancy to business units to include development of business continuity and disaster recovery
  • Business Continuity and Disaster Recovery Practice

Security Official

Blue Cross Blue Shield of Montana
Helena, Montana
08.2013 - 10.2014
  • Responsible for Information Security and Compliance
  • Information Technology Risk Management
  • IT forensics and e-Discovery
  • Perform Risk Assessments
  • Analyze controls and made recommendations
  • Perform Vulnerability Assessments and other security testing
  • Maintain security compliance for many regulations such as HIPAA, PCI, SOX, and GLBA
  • Incident response and monitoring of third-party monitoring activities
  • Business Continuity and Diaster Recovery Process Development
  • Information Security consultancy to business units to include development of business continuity and disaster recovery
  • Developed / Reviewed documentation and policies
  • IT Security project management
  • Responsible for Physical Security

Senior Security Specialist

Software Solutions
Bellevue, Nebraska
02.2013 - 08.2013
  • Responsible for compliance and compliance application support long with the following duties:
  • Subject Matter Expert for RSA Archer GRC Application and provided tailoring of modules
  • Designs and defines system architecture for new or existing computer systems
  • Develops documentation on new or existing systems
  • Determines system specifications, input/output processes, and working parameters for hardware/software compatibility
  • Provides guidance and work leadership to less-experienced systems engineers and may have supervisory responsibility
  • Served as a technical team or task lead
  • Serves as liaison with clients, participating in meetings to ensure client needs are met
  • Maintains current knowledge of relevant technology as assigned
  • Participates in special projects as required

Security Engineer

Volt Technologies, AVISTA Corp
Spokane, Washington
10.2012 - 01.2013
  • Responsible for various Information Security projects as assigned by the Project Manager
  • Projects related to but not limited to the following:
  • Risk Management
  • Security Monitoring
  • Operating System hardening
  • Application vulnerabilities
  • Information Security metrics

Security Analyst

Blue Cross Blue Shield of Montana
Helena, Montana
11.2011 - 10.2012
  • Responsible for Information Security and Compliance
  • Information Technology Risk Management
  • IT forensics and e-Discovery
  • Performed Risk Assessments
  • Analyzed controls and made recommendations
  • Performed Vulnerability Assessments and other security testing
  • Maintained security compliance for many regulations such as HIPAA, PCI, SOX, and GLBA
  • Incident response and monitoring of third-party monitoring activities
  • Information Security consultancy to business units to include development of business continuity and disaster recovery
  • Developed / Reviewed documentation and policies
  • IT Security project management

Senior IT Security Administrator

Citizens Property Insurance Corporation
Tallahassee, Florida
12.2010 - 11.2011
  • Responsible for Information Security Risk Assessments
  • Standardized Information Security documentation and Risk Management processes
  • Risk Management Team Lead
  • Team Lead and primary for IT forensics and e-Discovery
  • Performed Risk Assessments
  • Analyzed controls and made recommendations
  • Performed Vulnerability Assessments
  • Assisted management in developing and compiling Information Security metrics
  • Information Security consultancy to business units
  • Review documentation and policies
  • Worked many projects supplying security direction, risk assessments, other security consultancy as required
  • Developed Business continuity and Diaster Recovery Process

Adjunct Professor

Capella University
Minneapolis, MN.
01.2004 - 03.2023
  • Teaching on-line courses in Information Technology and Information Security:
  • Developed courses in Network Administration and Advanced Network Administration
  • Teach courses in Information Security, Risk Management and Network Engineering
  • Unemployed /

Education

Ph.D. - Information Assurance

University of Fairfax
Fairfax, VA
02.2004 - 02.2011

MBA -

Salem International University
Salem, WV
02.2004 - 12.2006

MS - Information Systems, Information Security

Capella University
02.2002 - 02.2004

Skills

Critical thinking skills

Deductive reasoning skills

Designing security controls

Data security

Developing security plans

PCI Compliance

Incident Response Management

Risk Management

Governance, Risk and Compliance

Business Continuity

Disaster Recovery

Developing Policies, Procedures, Security, BC/DR Plans

Project Management

Certifications

 Certified Information Systems Security Professional (CISSP) #51998 

 Certified in the Governance of Enterprise Information Technology (CGEIT) #0800538 

 Certified in Risk and Information Systems Control (CRISC) #1110009

Timeline

Sr. Cybersecurity Analyst

Health Care Service Corporation, Blue Cross Blue Shield of Montana
10.2014 - Current

Security Official

Blue Cross Blue Shield of Montana
08.2013 - 10.2014

Senior Security Specialist

Software Solutions
02.2013 - 08.2013

Security Engineer

Volt Technologies, AVISTA Corp
10.2012 - 01.2013

Security Analyst

Blue Cross Blue Shield of Montana
11.2011 - 10.2012

Senior IT Security Administrator

Citizens Property Insurance Corporation
12.2010 - 11.2011

Ph.D. - Information Assurance

University of Fairfax
02.2004 - 02.2011

MBA -

Salem International University
02.2004 - 12.2006

Adjunct Professor

Capella University
01.2004 - 03.2023

MS - Information Systems, Information Security

Capella University
02.2002 - 02.2004

Similar Profiles

CREATE PROFILE
STEVEN MICHAEL HELWIG