User:Anthony Francone

From OWASP
Revision as of 09:46, 12 October 2012 by KateHartmann (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

INFORMATION SECURITY STRATEGIST LEGAL GOVERNANCE, RISK MANAGEMENT, & COMPLIANCE

Leader with professional experience providing information security consulting and services to corporations, law firms, and government agencies. Expert in protecting company assets, operations, and infrastructure in the highly fluid cyberlaw movement encompassing business transactions critical to management, customer, supplier, and service expectations.

PROFILE & VALUE Strategic Infosec Expert – Dynamic consultant with extensive experience in proactive and reactive stages of information security assurance. Employ a dynamically created methodology consisting of best practice approaches to electronically stored information; ensuring handling is defensible, systematic, proven, repeatable, scalable, explainable, and documented from cradle to grave.

Cyberlaw Corporate Strategy & Development Strategist – Bold, innovative business strategies to comply with cyberlaw while streamlining information processes to efficiently lower cost and add value to increase profitability.

Defense in Depth Specialist – Baking in secure layers to offset APTs using a combination of specialized technology such as WAF, IDS, rule sets, and extensive testing with manual and automated OWASP wares.

Extraordinary Personal Characteristics – Dynamic and results-oriented consultant with proven ability to undertake and lead any project scope through all stages of project life cycle while surpassing quality standards and exceeding deadline expectations. Engaged in attention to detail, adaptability, and flexibility to deliver strong bottom line contributions. Adept in identifying and addressing customer needs to drive revenues through customer satisfaction. Persistent and ambitious to succeed in highly competitive environment, combining strong technical capacity and outstanding customer service to thrive on challenges with a problem solving approach.

QUALIFICATIONS & EXPERTISE Creative Problem Identification, Avoidance, & Innovative Solution Confidentiality, Integrity, & Availability Cyberlaw Requirements Ethics Web App Penetration Testing & Ethical Hacking Defending Web Applications Pen Testing In The Cloud Network Vulnerability Assessment PCI, PII, HIPPA, & NIST Requirements Cybersecurity Incident Response Digital Forensics Electronic Discovery Performing Security Audits Drafting Security Policy, Standard, & Guidelines Remediation CERT Team Formation & Duties Infosec Policy Review Forensic Lab Implementation Legal Technology (All Stages of EDRM) Data Mapping Legal Hold & Early Case Assessment Strategy Custom Implementations Pen Test Scripting (Python, SQL, RegEx, Java) Network Hardening Lateral Thinking Nonlinear Analysis

Anthony J. Francone Dallas, TX 75251 • (214) 769-4222 • afrancone@live.com linkedin.com/in/AnthonyFrancone

HIGHLIGHTS OF CAREER EXCELLENCE Executive level (V-level and C-level) customer relationship builder with a track record of personally reporting custom solutions and status to companies such as Arvest Bank, Baker Hughes, Barratt Developments PLC, Cleveland Clinic Foundation, FedEx Corporation, FlyteComm, H&R Block, Inc., Halliburton, Invensys/Foxboro, Nedbank Limited, Oklahoma Heart Hospital, Securities Exchange Commission, Singapore Technologies Engineering Ltd., Sony Gaming Network, Tyson Foods, Inc., and Wal-Mart Stores, Inc. Adept in International Business. Traveled 100% for 1.5 years, domestic and international. Principal Lead in founding, building, implementing, and maintaining the eDiscovery Center of Excellence at the 2011 #1 Fortune 500 company. Managed a team of 15 people. Principal Lead in founding, building, implementing, and maintaining the electronic Legal Hold system at the 2011 #1 Fortune 500 company. Managed a team of 5 people. Member of initial Incident Response team for the world's 5th largest media conglomerate, focusing on their compromised gaming network. Scope included acquisition, analysis, and reporting. Principal lead in implementing enterprise eDiscovery solutions at one of the largest public banks in South Africa. Trained 20 bank employees for one week on the software and risk management. Principal lead in planning and implementing 5 unique enterprise cybersecurity solutions in varying locations and providing analysis at a major technologies corporation in Singapore. Also taught a 1 week course on Cybersecurity and Web App Risk Management.

Principal Lead in writing company security policies, standards, and guidelines for government audit. Also performed network vulnerability assessments and web app pen tests to harden as necessary based on results. Passed the government audit.

Layer Cake Secure, Dallas, TX

PROFESSIONAL EXPERIENCE

PRINCIPAL Operate as an independent consultant.

Guidance Software, Inc., Pasadena, CA

2010 to 2012 CONSULTANT Performed all aspects of information security. 100% travel for assigned accounts, such as Wal-Mart Stores, Inc., FedEx Corporation, Securities Exchange Commission, Invensys/Foxboro, Tyson Foods, Inc., and more. Also flew international on a weekly basis for accounts in UK, South Africa, and Singapore.

Kiersted Systems, Houston, TX

2009 to 2010 CONSULTANT Performed consulting for electronic discovery and digital forensics in the Houston area.

Equivalent DATA, Houston, TX

2007 to 2009 PROJECT MANAGER Performed consulting for electronic discovery and digital forensics in the Dallas and Houston area.

RECOGNITION Selected by The SANS Institute to facilitate SANS AppSec 2012: Summit & Training in Las Vegas. Guidance Software, Inc. - President’s Club 2012 Guidance Software, Inc. - Customer Win Award – The Sony Team Guidance Software, Inc. - Rookie of the Quarter

Anthony J. Francone Dallas, TX 75251 • (214) 769-4222 • afrancone@live.com linkedin.com/in/AnthonyFrancone

EDUCATION & CREDENTIALS B.B.A., University of Oklahoma, Norman, OK SANS SEC542 Web App Penetration Testing and Ethical Hacking (Facilitator) SANS Application Security Summit 2012 (Facilitator) SANS DEV522 Defending Web Applications Security Essentials Certified Ethical Hacker v7 EnCase Computer Forensics I & II EnCase eDiscovery EnCase Enterprise Examinations North Texas Private Investigator's Association—Ethics

PROFESSIONAL AFFILIATIONS North Texas Private Investigator's Association (NTPIA) Associate Member; Smithsonian National Associate Program; SANS Institute