Profile image of brifreed
@brifreed
Flag of United States Charleston, United States
Member since March 29, 2018
0 Recommendations

brifreed

Online Offline
IT professional having over 20 years experience working in IT, Security, Compliance, and Risk Management. I have deep project management and technical experience which allows me to lead key elements on Information Technology (IT), Privacy and Security initiatives. Performs in depth security assessments combining regulatory compliance, policy / procedure reviews, technical assessments, penetration testing, vulnerability management, and risk analysis. Considered an expert on HIPAA Privacy and Security Rule and has worked with companies in the Fortune 10 on performing HIPAA compliance assessments. He has co-authored a book on PCI Compliance and is the Technical Editor of a handbook on IT Regulatory and Standards Compliance. He holds some of the leading industry certifications from Microsoft and Cisco. He is also a CISSP, PMP, and is a Certified HIPAA Compliance Officer (CHCO). Also, maintains a US Department of Defense (DOD) - Active Top Secret Clearance.
$95 USD/hr
3 reviews
3.9
  • 100%Jobs Completed
  • 100%On Budget
  • 100%On Time
  • N/ARepeat Hire Rate

Portfolio

Recent Reviews

  • image of Spestka Project for Milton Brian F. $600.00 USD

    “Excellent overall experience. He went above and beyond to ensure that the project was completed successfully. Despite several added steps along the way, which he recommended to ensure appropriate testing and safeguards, he kept to the original budget. Very expeditious communication, exceeded expectations regarding timeline. Will definitely be using again in the near future.”

  • image of brsox88 Windows/Linux Technician Needed 4+ Years Experience $50.00 USD

    “Brian did a great job, he still works with us because of how great of a job he has been doing resolving Linux and Windows issues. We plan to use him for a long time!”

  • image of paulvil Disable TLS 1.0 / Enable TLS 1.1 and 1.2 / pass PCI scan $205.00 USD

    “Brian was very responsive and went out of his way to help me find a solution. Despite his being new on Freelancer, I would not hesitate to hire him again for a similar project.”

Experience

Senior Security Administator

Sep 2017

Conducts assessments, audits, and testing of credit union systems. Provides recommendations and overall enterprise technical security management, develops recommendations for standardized Credit Union wide information security practices, policies and procedures. Develops and help implement network security policies and procedures. Identifies, reports, and resolves security violations. Provides data security training to employees, management and volunteers.

Senior Information Assurance Analyst

Mar 2014 - Aug 2017 (3 years)

Performed HIPAA Security Risk Assessments. HIPAA compliance audits, Payment Card Industry (PCI) assessments, NIST Risk Management Framework (RMF) certification and accreditation assessments utilizing NIST Special Publication 800-53 revision 4, and other security frameworks as needed for clients. Provided Information Assurance Penetration tests using tools such as Metasploit, Nessus, and others to ensure web based applications and networks are compliant and secure.

Chief Information Officer

Apr 2012 - Mar 2014 (1 year)

Responsible for coordination and oversight of all operational and technology functions across PPCP’s 33 clinics and corporate office. Served as HIPAA Compliance Officer who rewrote all related policies and procedures for final rule and developed the HIPAA training program for 650 employees. Lead annual risk assessment and investigated all potential HIPAA violations. Developed Disaster Recovery and Business Continuity Plan and failover data center.

Sr. Project Manager / Consultant

Sep 2011 - Apr 2012 (7 months)

Worked as a consultant providing project management for Cisco VoIP projects for AT&T's contract with General Motors globally. Had to manage many small projects, as well as large migration projects from legacy PBX systems to Cisco VoIP. Had to interface with both remote and local staff supporting the systems at the various GM offices worldwide.

Adjunct Professor

Aug 2011

Teach in-class, mix-mode, and online courses for the Department of Network Systems Management. Have received stellar evaluations from students and lead professors for courses taught. Currently teaching courses on Security+, and A+ Hardware and Software. These classes are designed to help students receive their CompTIA certification in these areas.

Program / Project Manager

Apr 2009 - Apr 2012 (3 years)

Managed projects with total annual budget of over $30 million for SPAWAR Department of Veterans Affairs program. Supervised project deadlines, tasks, and progress for projects involving over seventy contractors and employees. Produced Agile Integrated Development Environment (AIDE) as mix of Platform as a Service (PaaS) and Infrastructure as a Service (IaaS) for VA software development including IBM Jazz Rational Tools, MS SharePoint, and virtualized servers in cloud computing environment.

Project Team Lead / Senior Systems Engineer

Aug 2007 - Apr 2009 (1 year)

Managed team for Enterprise Service Operations Center (ESOC) supporting over seventy sites worldwide and over 55,000 users for US Navy Medicine. Provided support for all functional areas including Active Directory, Group Policy development/management, Exchange, Blackberry Enterprise Server, Systems Management Server, and Public Key Infrastructure (PKI).

Director, Infrastructure Services and Security

May 2002 - Aug 2007 (5 years)

Managed Infrastructure Services and Security Group, including help desk, system administration, networking, facilities, security, and compliance. Performed periodic risk analysis and network penetration testing to ensure network system's safety and integrity. Managed all network/systems operations including setup and maintenance of firewalls, routers, switches, telecommunications, building control/automation, and servers in two production data centers and local offices.

Senior Systems Engineer

Apr 2001 - May 2002 (1 year)

Designed and implemented local-area and wide-area networks based on Cisco routers, firewalls, and switches. Worked with statewide clients to design and support networks using Active Directory, Exchange Server, SQL Server, Terminal Services, Internet Information Server, and backup/recovery solutions via Veritas Backup Exec. Performed system audits for clients and created extensive documentation for their systems and networks.

President

Jan 2000 - Apr 2001 (1 year)

Executed projects for clients including customized network and database design, security, and server integration. Provided comprehensive computer, networking, security, database, and other IT support to local area businesses, such as Windows 2000/NT server installation, installation of Microsoft products (Exchange, SQL Server, Internet Information Server, Proxy Server), penetration testing, policy creation, risk analysis, disaster recovery planning, backup and recovery solutions.

Senior Network Engineer

Aug 1998 - Dec 1999 (1 year)

Deployed several Microsoft NT networks using Microsoft Exchange, SQL Server, and Proxy Server. Designed, implemented, and maintained wide-area networks for clients and incorporated Citrix Metaframe for remote application deployment. Implemented databases and software packages and provided wide variety of daily IT support for clients. Taught week-long Systems Boot Camp focusing on Novell Netware and Microsoft NT.

Systems Engineer

Apr 1997 - Jul 1998 (1 year)

Designed and managed large-scale database and data warehouse projects including database design, data handling, query building, and report generation as well as planned and executed extensive networking projects. Trained clients on-site to use variety of applications.

Director of Operations

Sep 1995 - Apr 1997 (1 year)

Managed technical support, customer service, and sales departments. Provided on-site service and training to major corporations including network troubleshooting, terminal adapters, routers, and firewalls. Streamlined operations by installing a Windows NT File Server, creating technical support documents, training employees, and working with corporate clients to provide Internet solutions.

Technical Analyst

Jun 1994 - Sep 1995 (1 year)

Assisted attorneys with technical issues and performed on-site services, support, and technical solutions. Served as panelist for Internet Seminar for Lawyers, alpha tester for new software, and technical writer.

Education

Master of Science, Information Systems

2008 - 2010 (2 years)

Bachelor of Science, Speech Communications and History

1990 - 1994 (4 years)

Qualifications

Certified Information Systems Security Professional - CISSP (2003)

(ISC)²

The CISSP is an independent information security certification granted by the International Information System Security Certification Consortium, also known as (ISC)². CISSP is a globally recognized certification in the field of IT security.

Project Management Professional - PMP (2010)

Project Management Institute

The PMP is recognized throughout the world as a standard to measure the competency of project managers.

Certified HIPAA Compliance Officer (2013)

American Institute of Healthcare Compliance

Certifies that the person holding the credential understands the HIPAA Privacy and Security Rule. Using this knowledge, the recipient is certified to be able to fill the role of a HIPAA Compliance Officer.

Publications

PCI Compliance: Understand and Implement Effective PCI Data Security Standard Compliance

The credit card industry established the PCI Data Security standards to provide a baseline expectancy for how vendors, or any entity that handles credit card transactions or data, should protect data to ensure it is not stolen or compromised. This book will provide the information that you need to understand the PCI Data Security standards.

The IT Regulatory and Standards Compliance Handbook

This book provides comprehensive methodology, enabling the staff charged with an IT security audit to create a sound framework, allowing them to meet the challenges of compliance in a way that aligns with both business and technical needs. This "roadmap" provides a way of interpreting complex, often confusing, compliance requirements within the larger scope of an organization's overall needs.

Certifications

  • US English Level 1
    85%

Verifications

  • Facebook Connected
  • Preferred Freelancer
  • Payment Verified
  • Phone Verified
  • Identity Verified
  • Email Verified

My Top Skills

Browse Similar Freelancers