Business Development Program Management

Michael D. Miller

C: 210-***-**** ad6jgu@r.postjobfree.com

Professional Experience Summary

I am a US Air Force veteran with more than 30 years of professional experience managing and delivering a broad range of strategic business and technical disciplines across all domains within cyber, including technical program management; capability integration, testing, and training; strategic and operational planning; process engineering; data analysis; risk management; executive communications, and innovation. An avid team builder, I have hired, built, motivated, and managed multiple high- performing, collaborative, geographically dispersed teams and programs to deliver “best in class” products and services. My extensive experience as a consultant has instilled a joy of applying industry best practices, critical thinking, and creative, innovative, and analytic techniques to solve impossible problems.

Critical Competencies

• Portfolio, Program and Project

Management

• Strategic and Operational Planning

• Problem Solving and Innovation

• Process Engr & Improvement

• Standards knowledge: NIST CSF/ SP 800

series, ISO 27000 series, CIS, NERC CIP,

HIPAA, NYDFS, and GDPR

• Business Development

• Executive Communication Skills

• Software knowledge: MS Office products

(including MS Project, OneNote, and

Teams); UNIX; Visio; SharePoint; JIRA;

Audacity; Workday; Slack; Skype; Adobe

Acrobat; Visio; iGrafx; Captivate; Google

Productivity Suite; Menti, Cisco Webex

Relevant Professional Certifications:

• Certified Information Systems Security Professional (CISSP), ISC2, 2023

• Project Management Professional (PMP), 2022

• SANS Security Awareness Professional (SSAP), 2021

• Six Sigma Green Belt Certified, Management and Strategy Institute, 2018 Employment History

Senior, EY, San Antonio, TX, Oct 2019 to Apr 2024

• Developed and implemented innovative new process for keeping Policies and Standards updated and responsive to business needs for a large international retail organization. Built operating model, defined communications templates, authored playbook for implementation, socialized the result across the company. Significantly reduced risk exposure due to noncompliance, transformed culture.

• Provided oversight and expertise in the development of 19 project charters and project plans for the accelerated improvement of cybersecurity for a large medical manufacturing company. Deconflicted initiatives and architected a disciplined and optimized strategy, saving $Ms in excess program costs, developing an 18-month plan, and mitigating extreme risk to the business and its systems.

• Lead technical project manager for seven projects worth $7M supporting the Chief Security Officer in a large Power and Utilities program office.

o Implemented full life-cycle of these projects, modernizing cyber threat detection and response, integrating and optimizing new capabilities, exceeding compliance requirements. o Operationalized capabilities to comply with federal critical infrastructure protection mandates. o Piloted a new client-specific financial forecast process for O&M expenditures, saving 180 man-hours per month. Identified and remediated $124k of mischarges.

• Served as primary cyber security SME in the PMO for a major healthcare company. Developed strategy for $33M budget across 27 initiatives; identified and mitigated dependencies, deconflicted all project plans, advised 13 different project managers.

• Managed 8-person team providing guidance and implementation support for a major healthcare provider to transition their networks to cloud-based. Developed Project Plans, managed delivery and budget. Updated clients on a regular basis, monitored and mitigated risks. Monitored budget for subcontractors and oversaw all deliverables.

• Developed the master project plan, reporting materials and cadence, and various trackers for secure application testing effort at a large insurance company, tracking, aligning, and reporting on over 320 tasks. Production schedule kept all deliverables and test engineers across four continents. synchronized, greatly enhancing software testing quality and speed.

• Redesigned the project ideation intake process for a large medical manufacturing company. This new process helped automate business cases, and more effectively justify cyber security spending, providing effective metrics for ROI reporting.

• Designed and built a master project plan, set reporting cadence, developed reporting templates for a 30-day and 90-day effort to bring a major worldwide medical manufacturing company into compliance with cyber security assessment findings.

• Developed budget, designed master project plan, and implemented reporting structure for a large HVAC company during spin off from its parent company and standing up on its own. Advised the CISO and Directors on 27 different projects spanning all aspects of cyber security.

• Developed strategic plans to incorporate Development/Security/Operations (DevSecOps) culture into development, testing, and fielding processes for a worldwide financial services organization. Developed implementation plan to more efficiently, effectively test, remediate, and field software releases, reducing their CI/CD pipeline from 90 days to less than two weeks. Developed a streamlined and automated process to enable inclusion of security practices into an Agile development cycle across multiple countries utilizing multiple processes and dissimilar standards. Designed and built a master project plan, set reporting cadence, developed reporting templates for a 30-60-90 day effort to unify BISOs worldwide. Facilitated strategic planning session, developing a time-phased approach to resolving DevSecOps implementation challenges across their enterprise. Process Engineer, Peyton Resource Group, San Antonio, TX, Nov 2018 to Oct 2019

• Defined, documented, and helped optimize a large financial institution’s compliance with Federal Regulations regarding fair and sound affiliate business relationships and transactions. Discovered ad hoc processes that led to compliance risks, helped implement actions to mitigate current and prevent future compliance issues. Helped define automation requirements for database and reporting tool. Resulted in over $1M direct savings from noncompliance fines, and damage to corporate branding.

• Program Manager and Process Engineer documenting and improving the process for managing insurance payments and home equity lines of credit payments and claims in an efficient, effective, and compliant manner. Discovered compliance risks, process inefficiencies and gaps, and recommended controls and process improvements for 13 different processes. Senior Associate, Booz Allen Hamilton, San Antonio, TX, October 2011 – Aug 2018

• Led 3-9 matrixed project teams consisting of between 19-43 personnel to deliver on time, on budget, with all deliverables exceeding client expectations, managing a portfolio worth nearly $6M a year.. Monitored and mitigated staffing, budget, and delivery risks for these programs, utilizing best practices from Agile, waterfall, and other portfolio, program, and process management tools and techniques.

• Participated in monthly program management reviews with executive leadership as well as clients tracking and reporting status of budget, staffing, delivery, risks, change management, and contract concerns for each program. Developed and analyzed metrics and program goals. Lead Associate, Booz Allen Hamilton, San Antonio, TX, November 2010 to October 2011 Associate, Booz Allen Hamilton, San Antonio, TX, September 2002 to November 2010

• Project Manager supporting the Air Force’s network defense group. o Primary author and subject matter expert for the Air Force Network Defense Concept of Employment strategic and operational planning document. o Developed a 500 Day Plan detailing how the client could integrate the Electronic Systems Security Assessment and network defense missions into cyber warfare capabilities. Facilitated strategic planning meetings and produced after-action reports for all levels within the Group. o Developed the 26 NOG Master Training Plan and other cyber training initiatives, detailing the optimal training and professional development for Air Force network defense personnel.

• Directed hardware refresh and strategic planning task transitioning new intrusion detection capabilities from the lab into the field. Developed deployment plans and installation guides then deployed worldwide to install state of the art equipment.

• Provided Net Warfare Ops policy and guidance gap analysis and strategic plan for HQ Air Combat Command—identified areas of concern for Net Attack, Defense and Exploitation.

• Identified critical technologies and related issues via eight facilitated think tank groups merging academia, government, and industry utilizing innovative process management techniques. Conducted technology prioritization for classified client.

• Participated in monthly program management reviews with executive leadership and stakeholders tracking and reporting status of budget, staffing, delivery, risks, change management, and contract concerns for each program. Developed and analyzed metrics and program goals.

• Assisted the National Security Agency’s Guarding Solutions Office in building their roadmap for multilevel security (MLS) for the Department of Defense. Drafted the Acquisition Strategy and conducted requirements analysis, ensuring requirements traceability for all capabilities.

• Constructed the Draft Concept of Operations for the Commander, Second Fleet’s integration of MLS capabilities into Commander, North American Treaty Organization (NATO) Joint Task Force

(CNJTF) operations.

Education

M.S Interdisciplinary Telecommunications, University of Colorado, Boulder, CO -- 1997 B.S. Aerospace Engineering University of Missouri-Rolla (now Missouri University of Science and Technology), Rolla, MO -- 1991

Contact this candidate