THOMAS MORAN
MIDDLETOWN,NJ
Summary
Dynamic Director oversees every facet of production with strong project management and decision-making skills. Brings comprehensive knowledge of Cyber Security planning and technical operations. Skilled at fostering robust relationships with key team members, business stakeholders and manage service providers/partners within the enterprise to respond to business’ needs and feedback, identifying areas for improvement efforts with clear KPI, SLO and SLAs for measuring program effectiveness.
Overview
24
24
years of professional experience
Work History
Director - Identity Access Management & Governance
Cenlar FSB
09.2022 - Current
- Develop and maintain a comprehensive vision and strategy for enterprise wide IAM security engineering initiatives to support the organization effectively and securely in meeting specific business technology.
Senior Director - IAM Engineering & Operations | Network Security Engineering & Operations | Cyber Security
Wyndham Hotels & Resorts, Inc.
06.2018 - 09.2022
- Provide Strategic Leadership of the Identity Management, Network and Cyber Security Programs.
Director - Global Cyber Security Operations
Wyndham Worldwide
05.2016 - 06.2018
- Provide Leadership in Strategic direction and the build out of a Cyber Security Operations Center using a hybrid Cloud/On-Prem capability resulting in effective Security Operations Cost.
Senior Manager - Cyber Security & Threat Operations
Wyndham Worldwide
12.2015 - 05.2016
- Responsible for managing the end-to-end processes, and developing policies, standards and Standard Operating Procedures (SOPs) in the areas of cyber data governance, risk and verification, cyber awareness and training, and cyber policy/standards/standard operating procedures.
Manager - Cyber Security Operations
Wyndham Worldwide
10.2011 - 12.2015
- Manage a team of Cybersecurity Engineers with a primary mission to proactively Manage Security Events that are escalated from our Managed Services Provider/SOC.
Manager - Security Engineer & Operations
TD Ameritrade
03.2008 - 10.2011
- Responsible for managing the day-to-day multi-tier SIEM system collecting over 2 million events per day from a variety of log sources across the enterprise.
Manager - Information Security Operations
TD Ameritrade
01.2006 - 03.2008
- Manage and develop the Security Operations program, strategy, policies and processes; assist in creating and maintaining appropriate security policies and procedures governing data, networks, and application systems.
Senior Security Engineer
TD Waterhouse
08.2001 - 07.2006
- Operational support of Security infrastructure including intrusion detection monitoring, new incident tracking, documentation, analytical investigation, problem closure and future security configuration threat countermeasures.
IAM Engineer
TD Waterhouse
05.2000 - 08.2001
- Provide access to all designated systems and applications supported by TD Waterhouse's Technology Solutions Division, reviewing all existing access to ensure it remains compliant with security policy and all exceptions have been properly documented and authorized/approved.
Education
High School Diploma -
Sharon Springs Central
Sharon Springs, NY06.1994
Skills
- Identity & Access Management
- Identity Governance (SOC, SOC2, PCI)
- Governance, Risk & Compliance (GRC)
- Security Program Management
- Security Information Event Management
- Strategic Planning/Budgeting
- IDS/IPS, Firewall, Content Filtering
- Data loss prevention (DLP)
- Creativity and Innovation
- Program Management
- Contract and Vendor Management
- Crisis Management
- Information Technology Management
- Financial Management
- Disaster Recovery planning
- Vulnerability management
- Access Automation
- Cloud Identity Management, Security
- Strategic Planning
- People Management
- Operations Management
- Organizational Development
Leadership Experience
- Led a Team of IAM Engineers to move ~9,000 users off the legacy SSO platform and onto the new standard platform for a cost savings of $1.3 million dollars.
- Collaborated with Business Leaders to establish enterprise SSO and automated account provisioning from legacy platform to Salesforce Communities.
- Led the IAM Engineering efforts in deploying Universal Directories, SSO, Advanced MFA, Advanced Life Cycle Management for ~10,000 users
- Over 100 apps deployed with Okta. Currently working on moving O365 and deploying AMFA for all employees. Using workflows to automate processes throughout existing footprint.
- Led the IAM Engineering and Operations Team in deploying over 100 + Applications to our SSO Platform in 1 year.
- Designed and Implemented a Cyber Security Threat Operations Center on-prem to allow Incident Responders and Threat Hunters with a designated space to conduct analysis and manage Security Events and Incidents securely.
- Isolated Network Segments with full Security Stacks in place
- Dev environment for Malware Analysis/Reverse Engineering
- Designed solution to automate Account Provisioning for Multiple Acquisitions (current and future state)
- Led IAM Engineering Team in development of a Self-Service Portal for Identity Management
Accomplishments
- Certified Information Systems Security Professional (CISSP)
- Microsoft Security, Compliance & Identity
- Certified Identity and Access Manager
- Certified Identity Protection Advisor
- Certified Ethical Hacker (CEH)
- Six Sigma Green Belt
Strategy Planning
- Managed IT Certification & Accreditation (C&A) program implementing automated tools to realize efficiencies and significant cost savings for C&A process, including developing IT security plans and processes.
- Developed 3-year Road Map with reporting to provide continuous improvement transparency to Executive Leadership
- Developed Identity Council with Business and IT Leaders to align strategic plans to allow better collaboration and visibility across critical Business initiatives.
Project Management
Earned Six Sigma Green-Belt by designing a process to validate Security Builds (including endpoint installations) are in place prior to server promotion to Production.
Career Overview
Multidisciplinary Leader in Information Security Management, Cyber Security, Identity & Access Management, Enterprise Security Engineering and Operations. Demonstrated expertise in establishing and implementing large Information Security and Cyber Security programs. Highly skilled, dedicated and enthusiastic team player with excellent Leadership and communication skills.
Timeline
Director - Identity Access Management & Governance
Cenlar FSB
09.2022 - Current
Senior Director - IAM Engineering & Operations | Network Security Engineering & Operations | Cyber Security
Wyndham Hotels & Resorts, Inc.
06.2018 - 09.2022
Director - Global Cyber Security Operations
Wyndham Worldwide
05.2016 - 06.2018
Senior Manager - Cyber Security & Threat Operations
Wyndham Worldwide
12.2015 - 05.2016
Manager - Cyber Security Operations
Wyndham Worldwide
10.2011 - 12.2015
Manager - Security Engineer & Operations
TD Ameritrade
03.2008 - 10.2011
Manager - Information Security Operations
TD Ameritrade
01.2006 - 03.2008
Senior Security Engineer
TD Waterhouse
08.2001 - 07.2006
IAM Engineer
TD Waterhouse
05.2000 - 08.2001
High School Diploma -
Sharon Springs Central
Similar Profiles
Marcus HandleyMarcus Handley
Foreclosure Specialist Senior at Cenlar FSBForeclosure Specialist Senior at Cenlar FSB
Rosemary L. GibsonRosemary L. Gibson
Quality Testing Analyst Sr (Internal Company Change) at Cenlar FSBQuality Testing Analyst Sr (Internal Company Change) at Cenlar FSB
Robert J. OrcuttRobert J. Orcutt
Manager, Mortgage Default & Collections at CENLAR FSBManager, Mortgage Default & Collections at CENLAR FSB
Brian P. KaneBrian P. Kane
Software Developer at Cenlar FSBSoftware Developer at Cenlar FSB
Melissa CourtneyMelissa Courtney
Paraprofessional at Middletown Township Board of EducationParaprofessional at Middletown Township Board of Education