Gary Sefton
Details
Management
Tarkio College
1987 : 1988
2022 : Present
Pivotalogic
Virtual CISO
Primary Function
Responsible for implementation of the Bank’s Information Security Programs. Responsible for overseeing the testing and monitoring of information security controls for compliance with Bank Policies and regulatory requirements to ensure that Bank and customer information is properly secured.
Primary Activities
• Provide strategic leadership for the bank's information security, Information technology security and cybersecurity programs.
• Provide leadership, direction and guidance in assessing and evaluating information security risks and monitor compliance with security standards and appropriate policies.
• Work with bank groups such as IT officers, Information Security personal and others to build awareness and a sense of common purpose around security.
• Lead information security, business continuity, and incident response planning processes to establish an inclusive and comprehensive information and cybersecurity programs for the entire institution in support of bank, growth, information systems, and technology.
• Establish annual and long-range security and compliance goals, define security strategies, metrics, reporting mechanisms and program services; and create maturity models and a roadmap for continual program improvements.
• Lead efforts to internally assess, evaluate and make recommendations to management regarding the adequacy of the security controls for the bank's information and technology systems.
Other Activities
• Annual Report of the Information Security Officer to the Board of Directors, documenting risks, audit results, assessments and breaches
• Coordinate the Bank’s responses to potential data breaches according to the Bank’s Incident Response Plan
• Examine impacts of new technologies on the bank’s overall information and cyber security. Establish processes to review implementation of new technologies.
• Understand regulatory compliance requirements related to GLBA, FFIEC Guidance related to IT controls
2015 :
Happy State Bank
VP Senior Information Security Officer at Happy State Bank
2014 : 2015
Herring Bank
Director of Information Technology
Lead IT Department operational and strategic planning, including fostering innovation, planning projects, project management, and organizing and negotiating the allocation of resources. Manage financial aspects of the IT Department, including purchasing, budgeting, and budget review.
• Develop business case justifications and cost/benefit analyses for IT spending and initiatives
• Serves as an internal information security consultant to the organization
• Develop and implement all IT policies and procedures, including those for architecture, security, disaster recovery, standards, purchasing, and service provision.
• Initiates, facilitates, and promotes activities to create information security awareness within the organization
• Perform information security risk assessments and serves as an internal auditor for security issues
• Implements information security policies and procedures for the organization
• Reviews all system-related security plans throughout the organization's network, acting as a liaison to Information Systems
• Monitors compliance with information security policies and procedures, referring problems to the appropriate department manager
• Develop requests for proposal
• Negotiate and administer vendor, outsourcer, and consultant contracts and service agreements
• Advises the organization with current information about information security technologies and related regulatory issues
• Manage IT staffing, including recruitment, supervision, scheduling, development, evaluation, and disciplinary actions.
• Oversee provision of end-user services, including help desk and technical support services.
• Work with stakeholders to define business and systems requirements for new technology implementations.
• Direct research on potential technology solutions in support of procurement efforts.
• Approve and oversee projects and project portfolio
• Monitors the internal control systems to ensure that appropriate access levels are maintained
2012 : 2013
Titanium Solutions
Vice President Infrastructure & Systems Operations
Current assignment is IT Operations and IT Security manager for a small financial service company.
Past assignments researching and developing lab capability to meet the Transglobal Secure Collaboration Project lab needs. Their web site is www.tscp.org. This includes gathering information for required lab activity to support known projects (working on a collaborative basis to gather input from stake holders). Research and prepare a comprehensive proposal to secure and implement lab capability. Gather statements of commitment from stake holders related to their individual labs. Document how the member labs will interact with the shared Lab. Develop lab process to insure reproducibility of each experiment. Developing standards for inter-company federation, Secure Email, Data labeling. To see more about Transglobal Secure Collaboration Program (TSCP) and the projects we are working on visit www.tscp.org
Completed a project to development of a Mobile Marketing Solution. This included becoming a SMS messaging aggregator and developing an interface to a couponing system.
2010 : 2012
Sefton IT Consulting
Sr. IT Consultant
Skills
Active Directory, Architecture, Budgeting, Budgets, Business Case, Business Continuity, Call Center, Change Management, Cisco, Cisco Technologies, Data Center, Disaster Recovery, DNS, Firewalls, itil, it operations, it security, Microsoft Exchange, Microsoft Office, MPLS, Negotiation, Network Administration, Network Architecture, Network Design, Network Engineering, Network Security, Planning, Project Planning, Routers, Routing, SAN, Security, Servers, SLA, Software Documentation, SOX, Strategic Planning, Switches, Systems Management, telecommunications, Vendor Management, Video, virtualization, VMware, Voice Mail, VoIP, WAAS, WAN, Webinars, Windows
About
IT Operations and Security Executive
Results-driven executive with 30 years of experience in management, information technology, information security, customer service, consulting, finance, and program management. Extensive expertise in providing business driven IT solutions. Demonstrated success in day to day IT operations as well as strategic planning, providing data security and developing staff in a dynamic, team-oriented environment.
• Work with line of business organizations to created solutions for complex business needs, garnered support, and executed solutions.
• Manage complex cross functional projects to meet business needs and provide continuous improvement is the services we provide.
• Built IT service delivery organization using ITIL framework that focused on customer service improvement.
• Lead IT teams with up to 25 employees and 50 contractors
• Manage budgets in excess of $10,000,000 capital and $25,000,000 expense annual.
• Developed IT architecture and implemented IT solutions supporting 3 data centers, up to 60,000 users in over 60 countries with 6,500 locations
• Negotiate and manage hardware, software, and service contracts.
Specialties:
Strategic Leadership
P&L Management
Problem Solving
IT Operations
Networking
IT Security
Organization and Process Management
Change Management
IT Infrastructure
Disaster Recovery
Business Continuity
Network monitoring
Profile Photo
