Q: Describe your role and function at D&B.
A: As the Director of Security Operations at Dun & Bradstreet, I oversee a team that is responsible for monitoring detection and response of potential cyber threats, potential intrusions, and things of that nature. The Security Operations Center is really just one piece of a much larger security team. We have a Risk and Compliance function, we have an Engineering function. We have an assessments and security applications function, as well as a PMO which really drives our program. Together, we are all on a mission to protect our clients’ data and the critical assets of the corporation.
Q: What is a recent project you worked on that you were proud of?
A: One of my favorite accomplishments in my role thus far is the recent completion of our strategy and roadmap. It really laid the foundation for where we’re going over the next 2-3 years as an organization from a security perspective, as well as a technology perspective. And some of those initiatives are going to be increasing our visibility and our capability across the environment – such as deploying a more modern security toolkit and improving general capabilities like threat hunting among other things.
Q: Can you give us a simple example of something that your team has to manage as it relates to security?
A: We strongly value the user-experience. For employees that is the ability to work wherever and whenever you need. But on the flip side, that poses some security challenges as it relates to protecting not only the user, but the user’s assets on an unsecure network. So, the ability to be able to balance that is unique where we will look to build security into everything we do - every application, every system, every platform so that security isn’t an afterthought. It’s built in from the get go and therefore allows us to be more efficient and more effective in everything that we do.
Q: What advice would you give candidates looking to join your team? What characteristics do you look for?
A: The security landscape is constantly changing and evolving. It provides many exciting (and challenging) opportunities. One bit of advice that I’d give to potential candidates when they’re looking for a role here is to ensure that they display curiosity. Curiosity for me is a key critical component to being successful as a security analyst – not only in this organization, but in any organization. An analyst needs to be curious in order to find that needle in a needle stack.
Q: How would you describe the work culture at D&B?
A: My experience at Dun & Bradstreet has been great. The organization is filled with some amazingly supportive individuals, as well as strong leadership. The culture is one that supports strong collaboration across the organization. Opportunities for personal and professional growth are endless.
Q: How do you spend your time outside of work?
A: I really like to enjoy time with my wife and children. I do a lot of reading - take a guess on the subject? Security, of course. I also enjoy reading books on leadership. I am also an avid ice hockey fan.