Brian Carroll’s Experience

Cybersecurity Concepts, LLC | Denver, Colorado
Principal Consultant | 2018 – Present

  • Applies GDPR, HIPAA/HITECH, ISO 27001, NIST CSF, PCI DSS, and other relevant standards to inform and execute information security functions while leveraging internal/external partner teams and strategic technology providers to further client information security maturity.
  • Facilitates pre-sales security solution engineering for enterprise hybrid cloud environments.
  • Manages security incidents, determining direction of investigation and works with cross-functional teams to contain and remediate security events related to data breach and compromise.
  • Conducts host/network, forensics, and log analysis in support of incident response investigation.
  • Identifies attacker tools, tactics, and procedures (TTPs) to develop indicators of compromise by utilizing SIEM, DLP, EDR, raw logs, and other telemetry.
  • Analyzes areas of opportunity, and drives improvements to information security processes and detection technologies in accordance with industry best practices.
  • Supports technical development of security scripts and automation tools for enhanced data protection.

Truman National Security Project | Washington, D.C.
Defense Council | 2013 – Present

  • Member of Cybersecurity Expert Group.
  • Developed and facilitated simulation training to test cybersecurity frameworks and address vulnerabilities on national critical infrastructure.
  • Identified security standards and controls for industry best practices.

Sungard Availability Services | Denver, Colorado
Lead Senior Security Engineer | 2019 – 2021

  • Acted as subject matter expert on dedicated team for VIP client, providing customer-focused security solutions for pre-sales support and managed security services provided by Sungard Availability Services.
  • Responsible for monitoring and managing security operations for the dedicated team, troubleshooting and resolving problems from the customer demarcation to the Sungard AS infrastructure, including resolving problems with third-party vendors.
  • Implemented proactive incident detection, ticketing, issue tracking, and change control in accordance with Service Level Agreement (SLA) and process documentation, resulting in streamlined service and reduction of false positives.
  • Provided guidance on ensuring systems are specified, designed, developed, implemented, integrated, and sustained to meet customer security needs, goals, and objectives.
  • Responsible for leading the implementation during the development, integration, test, and fielding of security systems and ensuring programs are executed to meet and exceed customer requirements while meeting cost and performance targets.
  • Lead refinement and lifecycle management of security configurations and software as required by the customer Statement of Work (SOW) for continued service improvement.
  • Leveraged cross-functional teams in the development of systems security, cybersecurity strategy, verification, and validation efforts in accordance with industry standards.
  • Developed system security attributes within complex model-based system engineering products in direct support of managed services, greatly improving customer success metrics.
  • Implemented data visualization tools using Kibana Elasticsearch to better help security operations teams monitor and analyze security events for proactive incident response.

InteliSecure | Denver, Colorado
Business Consultant | 2016 – 2018

  • Provided service delivery expertise for Fortune 500 companies while aligning client business priorities with critical information asset protection strategies.
  • Safeguarded critical business data by developing data protection programs that include Data Classification (DC), Data Loss Prevention (DLP), Incident Response (IR), Security Information and Event Management (SIEM), and Managed Security Services (MSS) solutions.
  • Created and implemented standard operating procedures for host forensics, network forensics, log analysis, and malware triage in support of client incident response investigations.
  • Lead threat modeling initiatives that reduced client security risk by mapping technology to organizational processes and resources.
  • Exceeded all MBO targets around billable work, achieving GPM, revenue targets, efficiency targets, and new initiatives.
  • Served as subject matter expert in pre-sales, product management, and marketing of security products and services.
  • Provided strategic program design solutions that allowed clients to better identify, protect, monitor, and manage their most sensitive data.
  • Optimized select technologies and improved client security posture by assessing business operations and processes, and gathering key functional compliance requirements.
  • Developed and conducted cybersecurity training exercises that identified risk scenarios for improved security incident preparedness.

Colorado Army National Guard – 147th Brigade Support Battalion | Fort Collins, Colorado
Information Technology Team Chief | 2015 – 2016

  • Served as Sustainment Automation Support Management Office (SASMO) NCOIC.
  • Executed the deployment, integration, operation, analysis, and support of multi-functional, multi-user information systems, ensuring service availability and mission success.
  • Acted as subject matter expert for all information security services, vulnerability testing, and analysis.
  • Conducted information systems life-cycle management and administrative duties pertaining to operations, security, fielding, and training.
  • Maintained accountability and serviceability of enterprise information systems and cryptographic material with zero inventory loss or damage.
  • Maintained active U.S. Department of Defense security clearance.

O’Malley for President | Denver, Colorado
Veterans Task Force | 2015

  • Member of Veterans Task Force, assisting in issue analysis, policy proposals, white papers, and platform development.

Global Cloud Xchange | Denver, Colorado
Assurance Manager | 2012 – 2015

  • Advised, implemented, and supported cost-effective solutions for enterprise network systems and telecommunications infrastructure, enabling business growth.
  • Directed integrated technology solutions and managed services for Fortune 500 companies and multinational organizations, providing superior customer advocacy, engagement, and service excellence. 
  • Orchestrated positive inventory control and life-cycle management for global telecommunications hardware, software, and ancillary equipment.
  • Drove internal managed services proactive and reactive performance indicators, resulting in continuous service improvement for more than 300 global customer locations.

Colorado Army National Guard – 19th Special Forces Group (Airborne) | Watkins, Colorado
Senior Information Technology Specialist | 2010 – 2015

  • Served as Tactical Local Area Network (TACLAN) NCOIC and Senior LAN Manager.
  • Served as Communications Security (COMSEC) Custodian, responsible for cryptographic material and equipment.
  • Appointed Information Systems Security Officer (ISSO) and Information Management Officer (IMO).
  • Demonstrated in-depth technical expertise in the implementation, analysis, and support of network systems, maximizing service quality and availability.
  • Coordinated cross-functional technical teams in operational and strategic planning, implementing industry best practices, and negotiating the allocation of resources for continued mission success.
  • Created operational justifications and cost-benefit analyses for project spending and initiatives that resulted in improved network operations, security, automation, and supplier support.
  • Responsible for information systems and service contracts valued in excess of $2 million with 100% accountability.
  • Maintained active U.S. Department of Defense security clearance.

Colorado House of Representatives – Colorado House District 28 | Lakewood, Colorado
Candidate | 2011 – 2012

  • Developed policy, messaging, and fundraising strategies for progressive political change during the Colorado Democratic primary.

Center for Progressive Leadership | Denver, Colorado
Fellow | 2011

  • Devised strategies to effectively advance progressive policy change on issues such as education, healthcare, and the economy.

United States Senate – Colorado Senator Mark E. Udall | Denver, Colorado
Congressional Intern | 2010 – 2011

  • Provided constituent advocacy, tracked legislation, and conducted policy research on veteran, military, and national security issues.

United States Army – 3rd Special Forces Group (Airborne) | Fayetteville, North Carolina
Senior Information Systems Analyst | 2004 – 2010

  • Served as Senior LAN Manager and Senior Systems Administrator.
  • Appointed Information Assurance Security Officer (IASO) and Information Management Officer (IMO).
  • Oversaw the implementation, maintenance, monitoring, upgrades, and support of information systems, greatly improving network operations and mission success.
  • Designed, built, and administered a multi-million dollar network of globally interconnected, end-to-end set of information capabilities for collecting, processing, storing, disseminating, and managing information on-demand to warfighters, combatant commanders, policy makers, and support personnel.
  • Resolved complex technical problems in time-sensitive environments while consistently delivering cost-effective solutions and service excellence. 
  • Developed policies and procedures pertaining to network architecture, operations, disaster recovery, information security, and service provisioning in both physical and virtual infrastructure environments.
  • Maintained active U.S. Department of Defense security clearance.

United States House of Representatives – Congressman John L. Mica, FL7 | Washington, D.C.
Military Fellow/Congressional Intern | 2007

  • Conducted constituent services and legislative research on behalf of Member and staff.