Profiles search
George Insko
Vice President of Cybersecurity at Rubicon
Lexington-Fayette, KY, United States
Details
Education:
Masters with Honors
Intelligence
American Military University
2008 : 2011
Bachelor of Science (BS)
Natural Resources Management and Policy
University of Kentucky
1991 : 1997
Intelligence
American Military University
2008 : 2011
Bachelor of Science (BS)
Natural Resources Management and Policy
University of Kentucky
1991 : 1997
Experience:
2021 : Present
Rubicon
Vice President of Cybersecurity
2021 :
Aphinia
Member
As the Director of Cybersecurity, I work closely with the Associate CIO, to actively engage the University of Kentucky’s Senior Leadership in operational cybersecurity issues. I design and develop key performance and risk indicators related to the implemented cybersecurity tools; that lead to the development of information security strategies, technology best practices, vulnerability management, access controls, vendor risk management, cloud security, security architecture, and Disaster Recovery / Contingency Planning. This includes the development and delivery of IT security policies, standards, architecture, and systems to ensure data and information security across the University’s interests both in the state and around the world; that help drive student success and patient outcomes.
In this role I have developed, built and ran, Joint Service Operation Center/Security Operations Center, two enterprise-wide EDR solutions, highly successful cybersecurity internship program with 100% placement rate, vendor risk management program, cybersecurity risk assessment program, yearly PCI-DSS compliance, tabletop exercises, support for state and global operations, incident response program and computer incident response team, annual cybersecurity audits, machine learning and artificial intelligence to improve operations and cybersecurity outcomes, review and audit vendor contracts for risk and best security architectures, built and ran forensic/e-Discovery program, built and ran new cybersecurity identity access management, set strategic vision for multi-factor authentication program enterprise-wide, set strategic vison on next-generation firewall implementation and zero-trust model, built and ran open-source intelligence feed and program using artificial intelligence and machine learning to improve outcomes and lessen cost.
I am responsible for coordinating PCI-DSS, GDPR, NIST 800-171, NIST 800-53, ITAR, FERPA, HIPAA, DMCA, and GLBA etc., frameworks and compliance.
2018 :
University of Kentucky
Director of Cybersecurity
The College Business Management Institute offers an intensive course of study in business and financial management for administrators of colleges and universities. Since 2012, I have been teaching a three sessions about Information Security in Higher Education, Cloud adoption in Higher Education and Payment Card Acceptance and PCI DSS Compliance for higher education professionals.
2013 :
College Business Management Institute
Instructor
As an enterprise security architect, I was responsible for ensuring information security assets of the University are protected. I develop architectures that promote and protect strategic goals which ensure security throughout the enterprise. I was also responsible for all academic and administrative technology assets. This includes balancing short-term versus long-term actions, strategic versus tactical requirements while continuing to move forward towards the strategic vision. As an architect, I was responsible to deliver a road map to achieve a unified vision.
I also provided security recommendations for framework, stewardship, governance, and oversight for the security of all project development teams, business users, and other stakeholders. Responsibilities include risk modeling, physical security modeling, development of a loss prevention strategy, and identification of capabilities required to meet business information needs. In addition, I was responsible for oversight of the security architecture standards and making sure that security aspects of all projects are reviewed by the enterprise architects.
This position requires collaboration with senior business area analysts to both develop common security standards for the organization and to ensure the ongoing viability of the models and processes. Provide leadership for integrating new processes and approaches into existing corporate life-cycles and cultures. Utilizing industry-accepted methods/ practices to accomplish strategic objectives.
This includes the capability of leading a team in the definition, design, and implementation of critical business strategies. Help in analyzing business requirements, design of enterprise security architecture standards & policies.
2011 : 2018
University of Kentucky
Enterprise Security Architect
Rubicon
Vice President of Cybersecurity
2021 :
Aphinia
Member
As the Director of Cybersecurity, I work closely with the Associate CIO, to actively engage the University of Kentucky’s Senior Leadership in operational cybersecurity issues. I design and develop key performance and risk indicators related to the implemented cybersecurity tools; that lead to the development of information security strategies, technology best practices, vulnerability management, access controls, vendor risk management, cloud security, security architecture, and Disaster Recovery / Contingency Planning. This includes the development and delivery of IT security policies, standards, architecture, and systems to ensure data and information security across the University’s interests both in the state and around the world; that help drive student success and patient outcomes.
In this role I have developed, built and ran, Joint Service Operation Center/Security Operations Center, two enterprise-wide EDR solutions, highly successful cybersecurity internship program with 100% placement rate, vendor risk management program, cybersecurity risk assessment program, yearly PCI-DSS compliance, tabletop exercises, support for state and global operations, incident response program and computer incident response team, annual cybersecurity audits, machine learning and artificial intelligence to improve operations and cybersecurity outcomes, review and audit vendor contracts for risk and best security architectures, built and ran forensic/e-Discovery program, built and ran new cybersecurity identity access management, set strategic vision for multi-factor authentication program enterprise-wide, set strategic vison on next-generation firewall implementation and zero-trust model, built and ran open-source intelligence feed and program using artificial intelligence and machine learning to improve outcomes and lessen cost.
I am responsible for coordinating PCI-DSS, GDPR, NIST 800-171, NIST 800-53, ITAR, FERPA, HIPAA, DMCA, and GLBA etc., frameworks and compliance.
2018 :
University of Kentucky
Director of Cybersecurity
The College Business Management Institute offers an intensive course of study in business and financial management for administrators of colleges and universities. Since 2012, I have been teaching a three sessions about Information Security in Higher Education, Cloud adoption in Higher Education and Payment Card Acceptance and PCI DSS Compliance for higher education professionals.
2013 :
College Business Management Institute
Instructor
As an enterprise security architect, I was responsible for ensuring information security assets of the University are protected. I develop architectures that promote and protect strategic goals which ensure security throughout the enterprise. I was also responsible for all academic and administrative technology assets. This includes balancing short-term versus long-term actions, strategic versus tactical requirements while continuing to move forward towards the strategic vision. As an architect, I was responsible to deliver a road map to achieve a unified vision.
I also provided security recommendations for framework, stewardship, governance, and oversight for the security of all project development teams, business users, and other stakeholders. Responsibilities include risk modeling, physical security modeling, development of a loss prevention strategy, and identification of capabilities required to meet business information needs. In addition, I was responsible for oversight of the security architecture standards and making sure that security aspects of all projects are reviewed by the enterprise architects.
This position requires collaboration with senior business area analysts to both develop common security standards for the organization and to ensure the ongoing viability of the models and processes. Provide leadership for integrating new processes and approaches into existing corporate life-cycles and cultures. Utilizing industry-accepted methods/ practices to accomplish strategic objectives.
This includes the capability of leading a team in the definition, design, and implementation of critical business strategies. Help in analyzing business requirements, design of enterprise security architecture standards & policies.
2011 : 2018
University of Kentucky
Enterprise Security Architect
Company:
Rubicon
Years of Experience:
30
Spoken Language:
German
Skills
CISSP, Computer Security, Disaster Recovery, Enterprise Architecture, Enterprise Network Security, Enterprise Software, Information Security, Information Security Management, Information Technology, Intelligence, IPS, Leadership, Management, Military, National Security, Networking, Network Security, PCI DSS, Physical Security, Project Management, Risk Assessment, Security, Security Architecture Design, Security Management, System Administration, Team Leadership, Vulnerability Assessment, Security Architecture, Enterprise Network
About
CISSP, GCIH, GSTRT, GCED, CCNA, MCSE/S, Net +, A +, Sec +.
Specialties: Security, Intelligence, Enterprise Architecture, IT Operations, Cloud Operations and Implementation, IT Leadership, Leadership development, Team Builder.
Profile Photo
