Profiles search
Cyrus Tibbs
Cybersecurity Leader
Los Angeles, CA, United States
Details
Education:
B.S. Management Information Systems and Decision Sciences
Business Administration and Management
George Mason
2001 : 2008
Business Administration and Management
George Mason
2001 : 2008
Experience:
2016 : Present
City National Bank
Vice President, Cybersecurity Operations
- Responsible for leading cybersecurity architecture assessment, development, maintenance and enforcement for all IT systems across grid, enterprise, cloud, and B2C networks.- Leading cybersecurity architecture maturation for grid modernization initiative to ensure the grid of the future can provide new functionality in a secure framework.- Provide cybersecurity architecture approval for all major project efforts and adjudicate cybersecurity related project disputes.- Initiated the cybersecurity governance program through the development of company-wide cybersecurity charter, policy, standards, guides, and system baselines to establish framework for reducing cybersecurity risk across the enterprise.- Perform enterprise cybersecurity risk assessments to provide business case and prioritization of cybersecurity projects and budgets.- Led multiple high-value cybersecurity risk reduction projects including but not limited to grid vulnerability remediation, PII database encryption, privileged access management, vulnerability management system implementation, cloud single sign-on, and identity and access management optimization.- Responsible for maturing and maintaining the technology architecture for physical security systems across all business and grid facilities.- Provide technical leadership for the NERC CIP compliance program assessing standards impact and providing guidance for conflicts and projects.
2011 : 2016
Southern California Edison (SCE)
Principal Advisor, Enterprise Cyber Security Architecture
- Provide consulting services and lead teams for IT infrastructure security projects related to enterprise security strategy, secure mobility services, technical writing, proposal development, wireless security, endpoint security, and policy development.- Senior Project Manager deploying Data Leakage Protection (DLP) software for the Internal Revenue Service. Will be responsible for oversight and management of DLP solution implementations for network egress points, endpoint device protection, sensitive data discovery, and data-in-use.- Led and contributed to multiple proposal efforts that resulted in multi-million dollar contract awards. On own initiative, developed common proposal baseline documentation for proposal service centers to reduce RFP response costs. - Led a project to develop a Cyber Security strategy and roadmap for a large American utility. The effort assessed the current program's functional gaps, provided guidance related to industry trends and drivers, provided for a future strategic vision addressing specific customer needs, and developed a comprehensive set of program initiatives and action plans over a five year road map. - Developed Cybersecurity model, architecture, and implementation plan for a large bank’s web portal project supporting external facing business-to-business customers. This included policy and governance analysis, threat modeling, logical security design, network security strategy, host security strategy, and secure code review guidelines. - Developed proposal for a government agency to create insider threat detection capability; including conceptual frameworks encompassing risk to networks utilizing attack graphs, insider threat data analytics, and visualization and reporting capabilities.
2010 : 2011
Accenture
Cyber Security Manager
- Served as a Technical Lead for Booz Allen IT Security team. Led multiple simultaneous technical efforts related to business development, enterprise security, secure network architecture, policy development, and endpoint security.- Provided leadership in developing team member technical, interpersonal, and consulting skills. Set team training goals, led internal training sessions, mentored junior staff career advancement, conducted firm-wide technical briefs, and provided technical leadership to proposal development.- Authored multiple white papers discussing Cybersecurity trends in the government discussing subjects such as Cybersecurity program development, Cyberwar, wireless access layer augmentation, 3G to 4G telecom transition implications for government, and Cybersecurity business process integration.- Served as technical lead for Defense Logistics Agency (DLA) enterprise wireless networking project designing : physical, logical, and security architecture; conducting RF spectrum analysis; and designing the access control schema and authentication and authorization framework.- Planned and managed implementation of multiple DLA enterprise wireless solutions and provided oversight to multiple technology implementations.- Developed wireless assessment capability for DLA to conduct campus sweeps for unauthorized or unsecure wireless activity.- Conducted business process augmentation analysis for DLA to assess how wireless technologies (WLAN, Cellular, RFID) could streamline supply depot operations.- Served as technical security SME to the Chief Information Security Officer (CISO) of the Department of Health and Human Services’ (HHS). - Conducted enterprise audits of HHS information systems using NIST 800-53 and FISMA framework.- Developed department level Plan of Actions and Milestones as part of internal and external HHS IT audits.- Provided oversight to HHS incident management capability requiring weekly audits of incident reports.
2008 : 2010
Booz Allen Hamilton
Associate
- Provide wireless consulting services to SRA clientele. Services include but are not limited to : WLAN design and implementation, site survey services, RF analysis and coverage validation, BlackBerry implementation consultation.- Market SRA’s wireless services within SRA and to potential government clients.- Respond to government RFPs for wireless services.- Provide training classes to SRA personnel in WLAN architecture, design, and deployment.- Stay abreast with changes in the Wireless industry and relay this information to SRA personnel. In particular, focused on developments in the WLAN and BlackBerry spaces.- Responsible for the deployment strategy for 3000+ BlackBerries and six BlackBerry Enterprise Servers. Created all inventory documentation, technical evaluations, deployment documentation, and project plans.- For a government client, conducted research on classified wireless solutions to implement in accordance with all DoD policy and recommendations.- Implemented one of the first high availability BlackBerry Enterprise solutions for the Missile Defense Agency including fail-over solutions that lead to zero down-time for BlackBerry users.- Responsible for the deploying 3G Wireless broadband continuity of operations laptops Washington Headquarter Service (WHS) users. Created a White Paper addressing all of the security concerns as well as the benefits it would provide WHS. Also developed the security configuration baseline for laptops with 3G broadband. Successfully deployed third party software to prevent split piping the 3G connection, in addition to encrypting the hard disks.- Kept WHS executive management abreast with wireless solutions being deployed in the DoD. Particular solutions customer was briefed about include but are not limited to, SecNet11 for classified wireless communication, Wireless IDS, Fixed mobile convergence, and Incident communicators and managers.
2004 : 2007
SRA Interna
Lead Wireless Specialist
City National Bank
Vice President, Cybersecurity Operations
- Responsible for leading cybersecurity architecture assessment, development, maintenance and enforcement for all IT systems across grid, enterprise, cloud, and B2C networks.- Leading cybersecurity architecture maturation for grid modernization initiative to ensure the grid of the future can provide new functionality in a secure framework.- Provide cybersecurity architecture approval for all major project efforts and adjudicate cybersecurity related project disputes.- Initiated the cybersecurity governance program through the development of company-wide cybersecurity charter, policy, standards, guides, and system baselines to establish framework for reducing cybersecurity risk across the enterprise.- Perform enterprise cybersecurity risk assessments to provide business case and prioritization of cybersecurity projects and budgets.- Led multiple high-value cybersecurity risk reduction projects including but not limited to grid vulnerability remediation, PII database encryption, privileged access management, vulnerability management system implementation, cloud single sign-on, and identity and access management optimization.- Responsible for maturing and maintaining the technology architecture for physical security systems across all business and grid facilities.- Provide technical leadership for the NERC CIP compliance program assessing standards impact and providing guidance for conflicts and projects.
2011 : 2016
Southern California Edison (SCE)
Principal Advisor, Enterprise Cyber Security Architecture
- Provide consulting services and lead teams for IT infrastructure security projects related to enterprise security strategy, secure mobility services, technical writing, proposal development, wireless security, endpoint security, and policy development.- Senior Project Manager deploying Data Leakage Protection (DLP) software for the Internal Revenue Service. Will be responsible for oversight and management of DLP solution implementations for network egress points, endpoint device protection, sensitive data discovery, and data-in-use.- Led and contributed to multiple proposal efforts that resulted in multi-million dollar contract awards. On own initiative, developed common proposal baseline documentation for proposal service centers to reduce RFP response costs. - Led a project to develop a Cyber Security strategy and roadmap for a large American utility. The effort assessed the current program's functional gaps, provided guidance related to industry trends and drivers, provided for a future strategic vision addressing specific customer needs, and developed a comprehensive set of program initiatives and action plans over a five year road map. - Developed Cybersecurity model, architecture, and implementation plan for a large bank’s web portal project supporting external facing business-to-business customers. This included policy and governance analysis, threat modeling, logical security design, network security strategy, host security strategy, and secure code review guidelines. - Developed proposal for a government agency to create insider threat detection capability; including conceptual frameworks encompassing risk to networks utilizing attack graphs, insider threat data analytics, and visualization and reporting capabilities.
2010 : 2011
Accenture
Cyber Security Manager
- Served as a Technical Lead for Booz Allen IT Security team. Led multiple simultaneous technical efforts related to business development, enterprise security, secure network architecture, policy development, and endpoint security.- Provided leadership in developing team member technical, interpersonal, and consulting skills. Set team training goals, led internal training sessions, mentored junior staff career advancement, conducted firm-wide technical briefs, and provided technical leadership to proposal development.- Authored multiple white papers discussing Cybersecurity trends in the government discussing subjects such as Cybersecurity program development, Cyberwar, wireless access layer augmentation, 3G to 4G telecom transition implications for government, and Cybersecurity business process integration.- Served as technical lead for Defense Logistics Agency (DLA) enterprise wireless networking project designing : physical, logical, and security architecture; conducting RF spectrum analysis; and designing the access control schema and authentication and authorization framework.- Planned and managed implementation of multiple DLA enterprise wireless solutions and provided oversight to multiple technology implementations.- Developed wireless assessment capability for DLA to conduct campus sweeps for unauthorized or unsecure wireless activity.- Conducted business process augmentation analysis for DLA to assess how wireless technologies (WLAN, Cellular, RFID) could streamline supply depot operations.- Served as technical security SME to the Chief Information Security Officer (CISO) of the Department of Health and Human Services’ (HHS). - Conducted enterprise audits of HHS information systems using NIST 800-53 and FISMA framework.- Developed department level Plan of Actions and Milestones as part of internal and external HHS IT audits.- Provided oversight to HHS incident management capability requiring weekly audits of incident reports.
2008 : 2010
Booz Allen Hamilton
Associate
- Provide wireless consulting services to SRA clientele. Services include but are not limited to : WLAN design and implementation, site survey services, RF analysis and coverage validation, BlackBerry implementation consultation.- Market SRA’s wireless services within SRA and to potential government clients.- Respond to government RFPs for wireless services.- Provide training classes to SRA personnel in WLAN architecture, design, and deployment.- Stay abreast with changes in the Wireless industry and relay this information to SRA personnel. In particular, focused on developments in the WLAN and BlackBerry spaces.- Responsible for the deployment strategy for 3000+ BlackBerries and six BlackBerry Enterprise Servers. Created all inventory documentation, technical evaluations, deployment documentation, and project plans.- For a government client, conducted research on classified wireless solutions to implement in accordance with all DoD policy and recommendations.- Implemented one of the first high availability BlackBerry Enterprise solutions for the Missile Defense Agency including fail-over solutions that lead to zero down-time for BlackBerry users.- Responsible for the deploying 3G Wireless broadband continuity of operations laptops Washington Headquarter Service (WHS) users. Created a White Paper addressing all of the security concerns as well as the benefits it would provide WHS. Also developed the security configuration baseline for laptops with 3G broadband. Successfully deployed third party software to prevent split piping the 3G connection, in addition to encrypting the hard disks.- Kept WHS executive management abreast with wireless solutions being deployed in the DoD. Particular solutions customer was briefed about include but are not limited to, SecNet11 for classified wireless communication, Wireless IDS, Fixed mobile convergence, and Incident communicators and managers.
2004 : 2007
SRA Interna
Lead Wireless Specialist
Company:
City National Bank
Years of Experience:
23
Skills
Integration, PowerPoint, Microsoft Word, Visio, Information Security, Customer Service, Microsoft Excel, Enterprise Architecture, Network Security, Computer Security, Enterprise Software, Active Directory, Disaster Recovery, Business Analysis, Linux, System Deployment, Windows Server, Program Management, Governance
About
SKILLS PROFILE- Enterprise security strategy- IT project management- Technical writing; authored two NIST special publications (800-48 r1 and 800-127)- WAN/MAN/LAN TCP/IP networking - Cybersecurity governance enforcement- Cloud solution integration (IaaS, PaaS, SaaS, IDaaS)- Risk management and analysis- Network perimeter protection- Information system and networks auditing- Regulatory compliance management (NERC CIP, DoD)- Business process analysis- Cybersecurity threat modeling- Identity and access management- Privileged identity management - SCADA systems security- Vulnerability assessment management- Proposal development- Mobile management solutions - Functional understanding of directory services, mail services, PKI, and IDM- Proficient in Microsoft Windows Desktop & Server, UNIX, LINUX, Mac OSX- Proficient in MS Office Suite
Profile Photo
