Profiles search
Bryan S.
Information Security Leadership | CISSP | USAF Veteran
Philadelphia, PA, United States
Details
Education:
Master of Science (M.S.)
Cybersecurity
Villanova University
2021
Bachelor of Science (B.S.)
Computer Information Systems
Florida Institute of Technology
2011
Cybersecurity
Villanova University
2021
Bachelor of Science (B.S.)
Computer Information Systems
Florida Institute of Technology
2011
Experience:
Within the SAP Global Security organization, multiple mandates including Head of Cybersecurity Portfolio Management and Regional Head of Cyber Threat Detection Operations (Americas). Driving global cybersecurity maturity across SAP.
Head of Cyber Threat Detection Operations (Americas) -
• Responsible for an international cybersecurity SIEM Engineering operations team and core global cyber threat detection service. Providing a centralized service for the enterprise of SAP to protect from core to cloud against cybersecurity attacks and threats.
Head of Cybersecurity Portfolio Management -
• Define the scope of the portfolio and complete an inter-dependency mapping across projects, services, and teams. Develop, document, and socialize portfolio guardrails across team operating model.
• Created structured procedures, engagement models, governance and guidelines rooted in industry best practice assuring the team operates with a consistent and repeatable approach. Always targeting accountability and transparency for objectives spanning various security domains and functions driving a deliverable success rate of ~85% across our portfolio enabling 110,000+ colleagues to support $46T in global commerce focused on a more secure, modernized, cloud-centric environment.
• Shifted reporting techniques to a dynamic platform, eliminating dependency on static slides. Transitioning to governed data-driven dashboards where executives and leadership had reliable, current, and targeted data to drive and navigate changes while reducing capacity (by over 50%) required to provide the continuous updates to multiple boards where requested data often overlapped.
• In the first year of the team, identified the business cases for growth and onboarded global talent to deliver in our high demand, fast paced portfolio. Completed hires to grow the team by 75% in the initial year. Retained 100% of talent migrated to the now centralized team, building team momentum and trust.
2022 : Present
SAP
Director Information Security Operations
Within the Chief Operations Office for SAP Global Security organization. A mandate of Cybersecurity Technical Program Manager, driving executive board prioritized cybersecurity initiatives from concept through closure.
• Designed, built, and led a global security multi-year program with executive board priority enabling the company to double its presence in public cloud environments and successfully streamlined platform use down to a defined strategic set.
• Security guardrails and guidelines provided proactive operational, compliance and legal readiness for customer facing solution-oriented data.
• Operationalized controls with a laser focus for cloud-ready and cloud-native when appropriate to avoid inefficiencies or dated practices across critical security controls throughout five (5) strategic environments.
• Designed, built, executed, and led cybersecurity risk management programs to create scope and identify risk. Analyze and evaluate risks efficiently using qualitative and quantitative methods. Adequately document risks ensuring all stakeholders maintain the risk appetite to continue respective operations.
• Define and deliver security risk reduction and security risk mitigation programs with significant complexity and cross-organizational impact spanning platforms, operations, delivery, and onboarding initiatives. Bringing depth and breadth as a cybersecurity expert across all cyber domains.
2021 : 2023
SAP
Principal Program Manager
Senior member leading a mandate focused on Enterprise Cybersecurity and TDBNA Cybersecurity requirements for Operational Risk Management, a second line of defense organization.
• Reduced cyber risk across the enterprise digital footprint of most critical assets by conducting risk assessments of active defense capabilities. Creating additional efficiencies and maturity throughout the defensive controls across the cybersecurity domains -- empowering the organization to strengthen the investment in technology, development and operations and help shape the vision for Technology, Cybersecurity, Resilience and Cloud practices toward industry best practices.
• The Insider Threat Challenge Program established operational efficiencies previously undetected due to siloed information flows, improved defense controls to strengthen the risk avoidance capabilities of the banking group through implementation of best practices and information sharing from an execution-oriented program with holistic oversight for the domain. Enabling executive leadership to pivot where necessary to meet regulatory, compliance, audit or operational requirements.
2018 : 2021
TD
Senior Manager/VP
Technical expert within the Cyber Defense and Response Center supporting Enterprise-wide Cybersecurity initiatives.
• Progressed the development and deployment of best-in-class cybersecurity defenses assuring dynamic mitigation of cyber threats applying emerging intel while managing large initiatives and wearing multiple hats to drive a culture of best practices and security awareness.
• Identified, initiated and developed an information sharing community of distributed security experts from varying lines of business security teams across the organization footprint. Highlighted current practices of mature security use cases throughout the organization, drove improved adoption of shared use cases where technologies and solutions were common and reduced inefficiencies of duplication development efforts across similar environments due to improved and aligned communication.
• Impacted response capabilities with improved spanned coverage of use cases and developed partnerships with the recurring information sharing community.
• Our organization was able to utilize the capabilities of the FBI Cyber division with appropriate information sharing, practice and partnership engagements to improve and assure security across multiple aspects of the organizational environment. Consult with expertise in the Cyber Division of the FBI when it was required for quick and confirmed resolution to aspects where our organization may require support and align with prioritized information sharing with the established relationship and previously achieved (military service) security clearances (information).
• Actively managed and progressed global partnered cybersecurity event management operations focused services.
2016 : 2018
SAP
Senior Security Engineer
Multiple technology and cybersecurity contract roles supporting the US Navy (NAVAIR & NSWCPD).
• Led multiple technology and security focused teams for customer engagement, operational requirements and corporate functions to successful delivery of defined targets and readiness of technology platforms and environments.
• Experience spanning hands-on, team leadership, and management to implement a best practice - lifecycle approach across identification, protection, detection, response and recover functions for threat detection activities from use cases, log review, control development, risk mitigation and vulnerability management.
2012 : 2016
United States Department of Defense
Senior Technology Consultant
Head of Cyber Threat Detection Operations (Americas) -
• Responsible for an international cybersecurity SIEM Engineering operations team and core global cyber threat detection service. Providing a centralized service for the enterprise of SAP to protect from core to cloud against cybersecurity attacks and threats.
Head of Cybersecurity Portfolio Management -
• Define the scope of the portfolio and complete an inter-dependency mapping across projects, services, and teams. Develop, document, and socialize portfolio guardrails across team operating model.
• Created structured procedures, engagement models, governance and guidelines rooted in industry best practice assuring the team operates with a consistent and repeatable approach. Always targeting accountability and transparency for objectives spanning various security domains and functions driving a deliverable success rate of ~85% across our portfolio enabling 110,000+ colleagues to support $46T in global commerce focused on a more secure, modernized, cloud-centric environment.
• Shifted reporting techniques to a dynamic platform, eliminating dependency on static slides. Transitioning to governed data-driven dashboards where executives and leadership had reliable, current, and targeted data to drive and navigate changes while reducing capacity (by over 50%) required to provide the continuous updates to multiple boards where requested data often overlapped.
• In the first year of the team, identified the business cases for growth and onboarded global talent to deliver in our high demand, fast paced portfolio. Completed hires to grow the team by 75% in the initial year. Retained 100% of talent migrated to the now centralized team, building team momentum and trust.
2022 : Present
SAP
Director Information Security Operations
Within the Chief Operations Office for SAP Global Security organization. A mandate of Cybersecurity Technical Program Manager, driving executive board prioritized cybersecurity initiatives from concept through closure.
• Designed, built, and led a global security multi-year program with executive board priority enabling the company to double its presence in public cloud environments and successfully streamlined platform use down to a defined strategic set.
• Security guardrails and guidelines provided proactive operational, compliance and legal readiness for customer facing solution-oriented data.
• Operationalized controls with a laser focus for cloud-ready and cloud-native when appropriate to avoid inefficiencies or dated practices across critical security controls throughout five (5) strategic environments.
• Designed, built, executed, and led cybersecurity risk management programs to create scope and identify risk. Analyze and evaluate risks efficiently using qualitative and quantitative methods. Adequately document risks ensuring all stakeholders maintain the risk appetite to continue respective operations.
• Define and deliver security risk reduction and security risk mitigation programs with significant complexity and cross-organizational impact spanning platforms, operations, delivery, and onboarding initiatives. Bringing depth and breadth as a cybersecurity expert across all cyber domains.
2021 : 2023
SAP
Principal Program Manager
Senior member leading a mandate focused on Enterprise Cybersecurity and TDBNA Cybersecurity requirements for Operational Risk Management, a second line of defense organization.
• Reduced cyber risk across the enterprise digital footprint of most critical assets by conducting risk assessments of active defense capabilities. Creating additional efficiencies and maturity throughout the defensive controls across the cybersecurity domains -- empowering the organization to strengthen the investment in technology, development and operations and help shape the vision for Technology, Cybersecurity, Resilience and Cloud practices toward industry best practices.
• The Insider Threat Challenge Program established operational efficiencies previously undetected due to siloed information flows, improved defense controls to strengthen the risk avoidance capabilities of the banking group through implementation of best practices and information sharing from an execution-oriented program with holistic oversight for the domain. Enabling executive leadership to pivot where necessary to meet regulatory, compliance, audit or operational requirements.
2018 : 2021
TD
Senior Manager/VP
Technical expert within the Cyber Defense and Response Center supporting Enterprise-wide Cybersecurity initiatives.
• Progressed the development and deployment of best-in-class cybersecurity defenses assuring dynamic mitigation of cyber threats applying emerging intel while managing large initiatives and wearing multiple hats to drive a culture of best practices and security awareness.
• Identified, initiated and developed an information sharing community of distributed security experts from varying lines of business security teams across the organization footprint. Highlighted current practices of mature security use cases throughout the organization, drove improved adoption of shared use cases where technologies and solutions were common and reduced inefficiencies of duplication development efforts across similar environments due to improved and aligned communication.
• Impacted response capabilities with improved spanned coverage of use cases and developed partnerships with the recurring information sharing community.
• Our organization was able to utilize the capabilities of the FBI Cyber division with appropriate information sharing, practice and partnership engagements to improve and assure security across multiple aspects of the organizational environment. Consult with expertise in the Cyber Division of the FBI when it was required for quick and confirmed resolution to aspects where our organization may require support and align with prioritized information sharing with the established relationship and previously achieved (military service) security clearances (information).
• Actively managed and progressed global partnered cybersecurity event management operations focused services.
2016 : 2018
SAP
Senior Security Engineer
Multiple technology and cybersecurity contract roles supporting the US Navy (NAVAIR & NSWCPD).
• Led multiple technology and security focused teams for customer engagement, operational requirements and corporate functions to successful delivery of defined targets and readiness of technology platforms and environments.
• Experience spanning hands-on, team leadership, and management to implement a best practice - lifecycle approach across identification, protection, detection, response and recover functions for threat detection activities from use cases, log review, control development, risk mitigation and vulnerability management.
2012 : 2016
United States Department of Defense
Senior Technology Consultant
Company:
SAP
Years of Experience:
17
Skills
Adaptive Leadership, Analytical Skills, Application Security, Budget Management, Business Acumen, Change Management, Communication, Continuous Improvement, Cross-functional Team Leadership, Cross-team Collaboration, Cybersecurity, Data Security, Digital Transformation, Disaster Recovery, Endpoint Security, Executive Reporting, Experienced Change Agent, Information Assurance, Information Security, Information Security Management, IT Security Operations, Leadership, Mentoring, Military Operations, Network Security, Perimeter Security, Policy Management, Problem Solving, Risk Management, Root Cause Analysis, Security Awareness, Stakeholder Management, Strategic Thinking, Team Leadership, Teamwork, Technical Documentation, Technical Program Management, Technical Project Management
About
Accomplished Technology and Cybersecurity Leader with extensive and proven success creating and driving impactful services that enable business strategies. Earned reputation for providing leadership and expertise in oversite, evolution, and inspiration of growth-oriented teams.
Profile Photo
