Techstars

Intro

Techstars is a global investment and mentorship network that helps early-stage startups grow through funding, mentorship, and access to a vast network of resources and accelerator programs.

I have had the amazing opportunity to lead the development of a comprehensive physical, data, & privacy security program, aligning with NIST CSF and achieving the company's first unqualified SOC2 report.

Experience

Security Analyst:

Design and Maintain a comprehensive Vendor Risk Management program covering 200+ vendors.

Design and Maintain a Threat, Configuration, and Vulnerability Management scoped for applications hosted in EKS (Kubernetes), IaC, container images, and employee endpoints utilizing CIS, OWASP, and CVE. 

Design and Maintain Physical Security policies and procedures for two office locations

Design and Maintain Network Security programs regularly monitoring and improving firewall rules for ingress, egress, and local traffic for Cloud Service Providers and two office locations.

Design and Maintain a Logging, Monitoring, Data Loss Prevention, and Incident Response program including quarterly incident response tests, event actioning, incident handling, alert, and automation building.

Design and Maintain a Business Continuity, Disaster Recovery, and Risk Management program working closely with all departments to create, update regularly, and test continuity of operations and disaster recovery plans. Work closely with all departments to identify, prioritize, and address risks. 

Design and Maintain an Identity and Access Management program to complete quarterly access audits in SAAS, CSP, and IdP to ensure least privilege access across the organization. 

Design and Maintain a Security Awareness program creating custom technical/non-technical training, implementing fun cyber security awareness month events, and launching regular social engineering attacks.

Prepare and Obtain the company's first SOC2 covering Security & Privacy controls.