Desmond Thompson

Details

Skills

Business Continuity, Business Continuity Planning, California Consumer Privacy Act (CCPA), Cloud Security, Communication, Crisis Management, Cyber Defense, Cybersecurity, Cyber Threat Intelligence (CTI), Data Privacy, Disaster Recovery, Enterprise Risk Management, FFIEC, General Data Protection Regulation (GDPR), GLBA, Governance, Risk Management, and Compliance (GRC), Incident Response, Information Assurance, Information Security, Information Security Awareness, Information Security Management, Information Technology, Internal Audits, Internal Controls, ISO 22301, ISO 27001, Issue Management, IT Compliance, Leadership, Network Security, NIST 800-53, NIST CSF, Operating Systems, Payment Card Industry Data Security Standard (PCI DSS), Project Management, Python (Programming Language), Regulatory Compliance, Research, Risk Assessment, Risk Management, Security Awareness, Security Policy Development, SOC 2, Third-Party Vendor Management, Threat Modeling, Vendor Risk, Vulnerability Assessment, Vulnerability Management

About

As an Information Security Manager , I build, lead and maintain security programs for resilience, risk, and compliance, following the best practices and standards of NIST 800-53 , NIST CSF, ISO 27001, FFIEC, GLBA, GDPR, and PCI DSS. I have over 5 years of experience in information security, cloud security, and business continuity, with a Master of Science degree in Cyber Security from Wilmington University.



My purpose and passion is leadership and information security is one of the roads which I have taken to carry out this purpose. I am a critical and strategic thinker who is solution-focused and customer-oriented. I have extensive business and technology experience before transitioning to information security, which enables me to understand and communicate with various stakeholders and partners. I am interested in everything information security, from securing operational and information technology, to vulnerability management, threat intelligence, security awareness, identity and access management, DevSecOps, architecture, and engineering, because it all leads to resilience. Resilience is my mission and cyber defense is my vision.