Profiles search

Dan Heitzmann; CISA, CISSP

Lead Cybersecurity Architect at TIAA
Longmont, CO, United States

Details

Experience: • Serve as a security architecture subject matter expert (SME) for the firm

• Champion new security solution initiatives for the larger Security department

• Sit on the Architecture Review Board to serve as Security’s voice in the governance of the System / Software Development Process (SDLC), as it relates to architectural elements

• Develop security-specific enterprise reference artifacts (e.g., patterns, blueprints, roadmaps, etc.)

• Assist IT Risk with security consulting, as needed, as it relates to the technology components involved in the assessment

• Participate in the selection decisions of security tools for use by various security teams

2019 : Present

TIAA

Lead Cybersecurity Architect

• Delivers strategic plans and technology roadmaps, adhering to corporate standards and architectural guidelines.

• Provides management and high-level technical oversight for the implementation and operation of cybersecurity and information security tools, technologies, solutions and methodologies.

• Leads teams to generate a vision, establish direction and motivate members, create an atmosphere of trust, leverage diverse views, coach staff, and encourage improvement and innovation.

• Manages the delivery of security controls in support of business requirements.

2017 : 2019

TIAA

Lead Information Security Manager

• Serve as the team subject matter expert on network security solutions.

• Partner with Security Architecture team on driving forward new network security solutions.

• Manage technical security policy across the various network security solutions used in the firm to ensure a consistent and effective security posture.

• Propose improvements to existing controls and opportunities to fill gaps with new network security solutions.

• Proactively and reactively tune controls to meet the requirements from threat intelligence and incident response activities.

• Provide input into the vision of future network security solutions.

2014 : 2017

TIAA-CREF

Lead Information Security Engineer

• Led a yearlong project to clean up the enterprise Firewall environment, the results of which were recognized in our CIO’s Year-End Message to IT staff.

• Designed and documented a new NSS “Annual high-risk rule review” process which in 2013 removed 43 high-risk rules across 11 Firewalls.

• Responsible for all Firewall changes during the HAWC project (2011-2012) where I engineered new Firewall application/service templates and naming standards which were deployed across four DMZ’s.

2011 : 2014

TIAA-CREF

Sr. Network Security Engineer, CISSP, CISA

Network Security Engineer - Cisco PIX/ASA - Juniper Netscreen - Fortinet

• Team lead for five new DMZ Firewall build outs with Fortinet transparent Firewalls and Cisco ASA’s.

• Led the ATT DMZ proof of concept pilot which included a comprehensive environmental shakedown test.

2010 : 2011

AT&T

NetSec, CISA, CISSP, IT Security, Risk and Compliance Management
Company: TIAA

About

INFORMATION SECURITY ANALYST - IT AUDITOR -



IT Security professional experienced in complex problem solving utilizing various technologies to protect enterprise data, strengthen security posture and enable business transactions which increase revenue.



►Ability to influence all organizational levels in driving the adoption of compliant secure solutions which reduce risk while directly supporting business objectives.



►Outstanding leadership abilities; adept at independent critical thinking and collaboration, creating and leading cross functional teams to resolve critical path issues and deliver quality results.



Experience:

Medias: ARCNet, Token-Ring (4/16meg), FDDI, Ethernet, ATM, WiFi, Frame-Relay, SONET



Protocols: MPLS, TCP/IP, SNA, Banyan Vines, Novell IPX, IPSec, QoS, DLSW+.



Routing: RIP, IGRP, EIGRP, OSPF, IS-IS, BGPv4, PIM Multicast



Hardware: Cisco Routers, PIX/ASA Firewalls, Cisco IDS MARS, Cisco ACS, SUN and WIN/NT servers, Cisco/StrataCom, TimePlex TDM, CheckPoint FW1, Network General Sniffer, Wire Shark, Snort, NESSUS, Symantec ESM, CIS-CAT, Web Inspect, NMAP, NetCat, RSA SecurID, AirMagnet, NetStumbler, Qualys



Frameworks: ISO 27001, COBIT, COSO, Sarbanes-Oxley (SOX), PCI-DSS, HIPAA, SAS70 II, NIST



Certifications: CISA, CISSP, CCNA, CCDA, CCNP, CCDP, CCSA, CCSE, ISO 27001 Lead Auditor



Specialties: ► Data Privacy ◄► Risk Management ◄► Security Control Assessments ◄► Strategic and Tactical leadership ◄► IT Audit preparation and facilitation ◄► Security Policy and Standards development ◄► Network Security Architecture and Technologies ◄► Business Continuity Management - Disaster Recovery ◄► Customer Relationship Management, liaison and advocate ◄► Offshore/Near shore Operations development and governances ◄

CISA, CISSP, CCNA, CCDA, CCNP, CCDP, CCSA, CCSE, ISO 27001 Lead Auditor