TemplateA ready-made website. Make it yours in a click.
Copy this website

Patrick Sullivan

Chief Information Security Officer at TechInnovate Inc.

Summary

Experience

Chief Information Security OfficerTechInnovate Inc.
San Francisco, CAMar 2018Present
  • Transformed security posture by implementing a Zero Trust architecture, reducing critical vulnerabilities by 45% and achieving a 99.8% compliance score for SOC 2 Type 2.
  • Built and scaled a global security team from 8 to 25 engineers and analysts, decreasing incident response times by 30% and improving threat detection capabilities by 60%.
  • Managed an annual security budget of $12M, optimizing spend by 15% through strategic vendor consolidation and automation initiatives.
  • Successfully led the company through GDPR, CCPA, and ISO 27001 certifications, enabling market expansion into 10 new international regions.
  • Developed and enforced enterprise-wide security policies, leading to a 25% reduction in security-related human errors through comprehensive training programs.
VP, Information SecurityGlobalData Solutions
San Jose, CAJun 2013Feb 2018
  • Directed a team of 15 security professionals, overseeing the security of data assets for over 50 enterprise clients and managing a $5M security budget.
  • Implemented a comprehensive security awareness program, resulting in a 70% reduction in successful phishing attempts over three years.
  • Designed and deployed a new SIEM platform, enhancing threat detection capabilities by 40% and reducing average time to detect critical incidents from 72 hours to 24 hours.
  • Orchestrated successful completion of annual penetration tests and vulnerability assessments, improving remediation rates by 35% year-over-year.
  • Led the integration of security controls for 5 M&A activities, ensuring seamless and secure onboarding of acquired assets without major security incidents.
Senior Security ArchitectNextGen Tech Solutions
Seattle, WAJun 2006May 2013
  • Designed and implemented secure application architectures for SaaS products, reducing security vulnerabilities by an average of 20% per product release cycle.
  • Developed and managed the company's incident response plan, participating in over 50 security incidents and minimizing business impact.
  • Evaluated and integrated new security technologies (e.g., IDS/IPS, WAF, DLP) that collectively saved the company an estimated $500K annually in potential breach costs.
  • Mentored junior security engineers, improving team's technical proficiency and contributing to a 20% increase in security control automation.
  • Contributed to achieving PCI DSS compliance for e-commerce platforms, securing transactions for over 1 million customers annually.

Projects

Education

Carnegie Mellon UniversityMaster of Science in Cybersecurity
Pittsburgh, PASep 2004May 2006
  • Graduated with High Honors, Thesis: 'Advanced Threat Intelligence Integration for Enterprise Security Platforms'
  • Awarded CMU CyLab Fellowship for research in secure software development
University of California, BerkeleyBachelor of Science in Computer Science
Berkeley, CASep 1999May 2003
  • GPA: 3.8/4.0
  • Member of the Computer Science Honors Society
  • Awarded Dean's List all semesters

Skills

Cybersecurity Leadership
Strategic PlanningRisk Management (NIST, ISO 27001, FAIR)Compliance & Governance (GDPR, CCPA, SOC 2, HIPAA)Incident Response & ForensicsSecurity Awareness TrainingSecurity Budget Management
Cloud Security
AWS Security (IAM, GuardDuty, Security Hub)Azure Security (Sentinel, Security Center)GCP Security (Security Command Center)Cloud Access Security Brokers (CASB)Container Security (Kubernetes, Docker)Serverless Security
Security Operations
SIEM (Splunk, QRadar)Endpoint Detection & Response (EDR)Vulnerability Management (Nessus, Qualys)Penetration Testing (OWASP Top 10)Threat IntelligenceSecurity Automation & Orchestration (SOAR)
Technical Expertise
Network Security (Firewalls, IDS/IPS, VPN)Application Security (SAST, DAST)Identity & Access Management (IAM, MFA)Data Loss Prevention (DLP)Encryption TechnologiesDevSecOps Integration