Profiles search
Mark D. Webster, Ph.D.
Chief Information Security Officer (CISO) at East Carolina University
Greenville, NC, United States
Details
Experience:
Manage the university’s Information Security Program. Serve as senior advisor to university leadership and stakeholders on information security vision, strategy, and direction. Work collaboratively to establish information security and IT risk management functions that support the university in fulfilling its strategic goals, business obligations, and compliance requirements. Oversee risk assessment and reporting, and security assessments and network penetration testing conducted by trusted third-parties. Instrumental in the university moving forward with credential hardening actions including a 15-character password policy.
Provided leadership and expertise instrumental in ECU receiving the Infosec Impact Award in recognition of security training initiatives and phishing simulation :
Took personal responsibility for redeveloping the security awareness training curriculum required for all employees.
Direct the Information Security unit that includes the Information Security Office and Cyber Security Operations Center (CSOC). Oversee the university’s response to and reporting of information security incidents. Oversee the facilitation of incident response tabletop exercises for university stakeholders.
Develop and maintain information security policies, standards, and best practices for the university in collaboration with relevant functional areas and stakeholders. Championed university efforts to meet GLBA Revised Safeguards Rule requirements.
Provided leadership to implement a secure research enclave to meet NIST 800-171 controls while supporting university research that must comply with Department of Defense requirements.
Serve as point of contact for information security controls related requests from auditors.
Serve on various university-wide committees. Serve on statewide UNC System Information Security Council. Serve on Advisory Board for North Carolina Partnership for Cybersecurity Excellence (NC-PaCE).
2019 : Present
East Carolina University
Chief Information Security Officer (CISO)
Provided leadership for the planning, development, and management of the use of technologies and systems to enhance administrative and instructional processes in support of the college's mission. Oversaw the Department of Technology (DOT) and its six units, including Academic and Instructional Computing Support, Administrative Computing Support, Network Engineering & Security, Applications Development & Help Desk, Technology Training, and Library & Information Services (College libraries on three campuses).
Reynolds was recognized in the national Top Ten (Large Colleges category) for three years in a row (2018, 2017 & 2016) in the Digital Community Colleges Survey Awards, by the Center for Digital Education, and won First Place (Large Colleges category) for 2018.
Served as Primary Information Security Officer for the college, and oversaw demonstrated progress with information security improvements through a proactive, collaborative, and strategic approach. Through diligent hard work we improved the college's risk management posture as measured by compliance with information security standards (ISO/IEC 27002 : 2013 Code of Practice). Championed improvements in enterprise data backup and disaster recovery capabilities.
Served on various college governance councils and leadership advisory committees. Served on VCCS state-wide committees including Technology Council, Academic and Student Affairs Council, Educational Technology Committee (past Chair), VCCS Technology Strategic Planning Workgroup, VCCS Chancellor’s Technology Expectations Workgroup, and Consolidated Computer Procurement Workgroup (past Chair).
2013 : 2019
J Sargeant Reynolds Community College
Vice President of Technology, Chief Information Officer, Information Security Officer
Managed all services, personnel, and budget lines connected with the Office of Technology and Learning, which provides leadership and support for information technology and instructional technology throughout the school district. Practiced a hands-on, roll up your sleeves approach to leadership, and championed improvements in technology infrastructure, information systems, and educational technology. Provided leadership for technology strategic planning and enterprise technology solutions. Planned, engineered, and implemented a new server room. Regular duties included areas of technical expertise such as Windows Server administration, Active Directory, firewall configuration, network infrastructure and protocols, enterprise backup and recovery, and information systems management.
2003 : 2013
Colonial Heights Public Schools
Director of Technology and Learning
Developed and taught online courses in instructional technology through an online, asynchronous course format, delivered through eCollege and Blackboard. Courses helped teachers meet the Level II technology requirements for the California Clear Credential.
2003 : 2010
University of San Diego
Online Instructor (part-time in the evenings)
Provided visionary technology leadership for a K-12 education consortium that serves school districts throughout the greater Richmond metropolitan region. Oversaw the updating, upgrading, and growth of information technology and educational technology to support innovative Center programs and initiatives.
Engineered and implemented a new Windows Server based network, and personally setup domain controllers, file servers, database servers, web server, email server, network storage, wireless networking, network router, and firewall. Upgraded Internet infrastructure. Configured information security settings on the network, IT systems, and firewall.
Taught graduate level courses in instructional technology through the Center's partnerships with VCU and Norfolk State University.
1998 : 2003
MathScience Innovation Center
Specialist for Technology
Provided leadership and expertise instrumental in ECU receiving the Infosec Impact Award in recognition of security training initiatives and phishing simulation :
Took personal responsibility for redeveloping the security awareness training curriculum required for all employees.
Direct the Information Security unit that includes the Information Security Office and Cyber Security Operations Center (CSOC). Oversee the university’s response to and reporting of information security incidents. Oversee the facilitation of incident response tabletop exercises for university stakeholders.
Develop and maintain information security policies, standards, and best practices for the university in collaboration with relevant functional areas and stakeholders. Championed university efforts to meet GLBA Revised Safeguards Rule requirements.
Provided leadership to implement a secure research enclave to meet NIST 800-171 controls while supporting university research that must comply with Department of Defense requirements.
Serve as point of contact for information security controls related requests from auditors.
Serve on various university-wide committees. Serve on statewide UNC System Information Security Council. Serve on Advisory Board for North Carolina Partnership for Cybersecurity Excellence (NC-PaCE).
2019 : Present
East Carolina University
Chief Information Security Officer (CISO)
Provided leadership for the planning, development, and management of the use of technologies and systems to enhance administrative and instructional processes in support of the college's mission. Oversaw the Department of Technology (DOT) and its six units, including Academic and Instructional Computing Support, Administrative Computing Support, Network Engineering & Security, Applications Development & Help Desk, Technology Training, and Library & Information Services (College libraries on three campuses).
Reynolds was recognized in the national Top Ten (Large Colleges category) for three years in a row (2018, 2017 & 2016) in the Digital Community Colleges Survey Awards, by the Center for Digital Education, and won First Place (Large Colleges category) for 2018.
Served as Primary Information Security Officer for the college, and oversaw demonstrated progress with information security improvements through a proactive, collaborative, and strategic approach. Through diligent hard work we improved the college's risk management posture as measured by compliance with information security standards (ISO/IEC 27002 : 2013 Code of Practice). Championed improvements in enterprise data backup and disaster recovery capabilities.
Served on various college governance councils and leadership advisory committees. Served on VCCS state-wide committees including Technology Council, Academic and Student Affairs Council, Educational Technology Committee (past Chair), VCCS Technology Strategic Planning Workgroup, VCCS Chancellor’s Technology Expectations Workgroup, and Consolidated Computer Procurement Workgroup (past Chair).
2013 : 2019
J Sargeant Reynolds Community College
Vice President of Technology, Chief Information Officer, Information Security Officer
Managed all services, personnel, and budget lines connected with the Office of Technology and Learning, which provides leadership and support for information technology and instructional technology throughout the school district. Practiced a hands-on, roll up your sleeves approach to leadership, and championed improvements in technology infrastructure, information systems, and educational technology. Provided leadership for technology strategic planning and enterprise technology solutions. Planned, engineered, and implemented a new server room. Regular duties included areas of technical expertise such as Windows Server administration, Active Directory, firewall configuration, network infrastructure and protocols, enterprise backup and recovery, and information systems management.
2003 : 2013
Colonial Heights Public Schools
Director of Technology and Learning
Developed and taught online courses in instructional technology through an online, asynchronous course format, delivered through eCollege and Blackboard. Courses helped teachers meet the Level II technology requirements for the California Clear Credential.
2003 : 2010
University of San Diego
Online Instructor (part-time in the evenings)
Provided visionary technology leadership for a K-12 education consortium that serves school districts throughout the greater Richmond metropolitan region. Oversaw the updating, upgrading, and growth of information technology and educational technology to support innovative Center programs and initiatives.
Engineered and implemented a new Windows Server based network, and personally setup domain controllers, file servers, database servers, web server, email server, network storage, wireless networking, network router, and firewall. Upgraded Internet infrastructure. Configured information security settings on the network, IT systems, and firewall.
Taught graduate level courses in instructional technology through the Center's partnerships with VCU and Norfolk State University.
1998 : 2003
MathScience Innovation Center
Specialist for Technology
Company:
East Carolina University
About
• Extensive experience with IT and information security leadership in education, including serving as a university Chief Information Security Officer, community college VP/CIO/Primary Information Security Officer, and K-12 technology director
• Teaching experience in higher education and K-12
• Scholarly publication record
Profile Photo
