User:Owaspalvin

From OWASP
Jump to: navigation, search

I am an Information Security Professional with over 10 years experience in the Information Technology field. As a security professional, I have supported companies and agencies in the Government, Healthcare, and Defense industries. I have a Masters in Information Systems Management from Carnegie Mellon University and was awarded my Certified Information Systems Security Professional (CISSP) certification in November of 2014.

Formerly, I led penetration tests and vulnerability assessments for multiple federal agencies including the Department of Health and Human Services, Center for Medicare and Medicaid services, and Federal Aviation Administration. I worked as a senior security engineer at MITRE to develop and maintain secure web applications portals. As part of their security operations center, I helped conduct malware analysis and enhance their intrusion detection/prevention systems.

In the healthcare realm, I supported the Information Security Officer at Montefiore Medical Center on setting the security strategy, policy, and risk management process. I interfaced with the organizations' Infrastructure, Network, and Clinical Application teams to ensure HIPAA/HITECH compliance across the enterprise. I helped Montefiore Health Systems achieve their SSAE 16 SOC2 attestation. I led application and mobile security testing and was tasked to develop the Security Operations Center for Incident Response and Vulnerability Management.

Today, I am at Travelers as a Business Information Security Officer. My goal is to help identify areas of critical risk and bring my technical security background to bear within the organization.

I am the Co-lead for the Hartford chapter of OWASP (Open Web Application Security Project) and have been involved with their application hacking challenges since 2010.