Eddie Zuniga, CISSP

Director, Information Security at Murphy-Hoffman Company (MHC Kenworth)

Lenexa, KS, United States

Details

Education: B.S.

Business Administration : Finance

Regis University

Experience: Leads all aspects of the Information Security function for the company, including establishing, implementing, maintaining and monitoring/overseeing the policies and procedures which promote secure and uninterrupted operation of all information systems. Specific responsibilities include the establishment and communication of standards, procedures, and guidelines to prevent the unauthorized use, release, modification, or destruction of data in any form; the review of system designs to ensure essential security measures are considered; the review of any contracts to ensure Information security considerations are included; the monitoring of system usage to detect security violations; the implementation of security procedures identified or required by auditors, external reviews and legal or regulatory requirements; consulting on long range security planning; identifying Information Security risks in the enterprise and making recommendations for mitigation of said risk; and providing technical information as requested, all in compliance with established company standards and policies.

2019 : Present

Murphy-Hoffman Company (MHC Kenworth)

Director, Information Security

Responsible for providing leadership and direction to a project team that is charged with developing and implementing information technology initiatives that support the strategic objectives of the Company. Establishes and directs the policies and procedures for project management methodology and defining, testing, and installing the information technology initiatives based upon the operational business requirements. Serves as a liaison between the operational departments, the IT Steering Committee and the technical services group, as well as external vendors providing IT related services.

2013 : 2019

Murphy-Hoffman Company (MHC Kenworth)

PMO Manager

Responsible for the development, implementation, and monitoring of compliance with all security policies and procedures as implemented within the enterprise. This includes information systems, workstations which access those information systems, and physical security in relation to information processing resources.

2012 : 2019

Murphy-Hoffman Company

Information Security Manager

Directed systematic evaluation of application and systems security ensuring confidentiality, integrity and availability of business information and resources. Directed review and adherence to the organization’s business continuity/disaster recovery program, ensuring it was tested in consideration of business needs and in compliance with regulations. Responsible for review and implementation of risk management program which identified, analyzed, tracked and controlled organizational information risks.

2010 : 2012

U.S. Central

Director - Information Security Officer

Managed the Information Risk Management Program, providing consulting and operational support across various business units on risk/security review activities. Performed risk assessments on business processes, reviewing infrastructure compliance, vulnerability identification and remediation, policies, and application security for both internal processes and external vendors. Provided requirements analysis, design, and implementation of encryption requirements. Ensured compliance of application implementations with established security standards. Ensured testing of business continuity program was carried out in consideration of business needs and in compliance with regulations.

2007 : 2010

U.S. Central

Senior Information Risk Analyst

Company: Murphy-Hoffman Company (MHC Kenworth)

Years of Experience: 33

Spoken Language: Italian, Spanish

Skills

Access Control Management, Analysis, Business Analysis, Business Continuity, Business Process, Business Process Improvement, CISSP, Cryptography, Cybersecurity, Disaster Recovery, Identity & Access Management (IAM), Information Security, Information Security Management, Information Security Standards, Information Technology, ISO 27001, IT Audit, ITIL, IT Operations, Leadership, Management, Network Security, NIST, Payment Card Industry Data Security Standard (PCI DSS), Physical Security, PMO, Program Management, Project Management, Project Management Office (PMO), Project Planning, Requirements Analysis, Risk Assessment, Risk Management, SDLC, Security, Software Development Life Cycle (SDLC), Software Documentation, Strategic Planning, Technical Support, Troubleshooting, Veterans, Vulnerability Management, Access Control

About

Goal-oriented leader with demonstrated experience in planning, developing and implementing information and policy solutions to address business opportunities. Develops strategic policy, plans and budgets for implementation and operation of information security systems, business continuity programs, information risk management, regulatory compliance, systems analysis and business analysis in government, financial, banking, and transportation industries. Experienced in disaster recovery, trouble-shooting, and problem-solving. Advance positive company image through public presentations. Experienced in creation and analysis of processes, project and resource management, cross-functional team training.

CISSP Certification. Specialties: Information security, business continuity, disaster recovery, information risk management, risk mitigation, project management, training, information risk analysis, IT operations, facilities management, personnel management, physical security, cyber security, regulatory compliance, credit card processing, GRC, PCI-DSS, GLBA, FFIEC, NIST practices. United States Military Veteran (U.S. Navy).