Brian Stanek, Security Engineer and Developer in Indianapolis, IN, United States
Brian Stanek

Security Engineer and Developer in Indianapolis, IN, United States

Member since October 18, 2022
Brian is a highly accomplished technology executive and solutions architect who continues to build an extensive track record of success. As a full-stack developer and data architect, he designs solutions and matches client expectations to functioning business applications. As a cybersecurity leader, Brian builds and leads cybersecurity programs and professionals and develops for the changing cybersecurity environment.
Brian is now available for hire

Portfolio

Experience

  • Cybersecurity 12 years
  • SAP BusinessObjects (BO) 12 years
  • C# 10 years
  • Web Development 10 years
  • Data Architecture 10 years
  • App Development 10 years
  • CISO 8 years

Location

Indianapolis, IN, United States

Availability

Part-time

Preferred Environment

Windows

The most amazing...

...things I've created are a CRM solution for an insurance company and a multi-state compliant cybersecurity program.

Employment

  • Information Security Officer

    2022 - PRESENT
    Community Healthcare System
    • Supervised the information security team to ensure best practices.
    • Oversaw the cybersecurity program and protected IT assets and digital information.
    • Collaborated and coordinated with Corporate Compliance and all activities related to cybersecurity assessments, projects, and audits.
    • Managed incident response and disaster recovery plans and incident playbooks to ensure resources' availability across the organization and eliminate or minimize business disruption.
    • Coordinated cybersecurity and security incident response training.
    Technologies: Business Continuity & Disaster Recovery (BCDR), Incident Response, Cybersecurity, Budgeting, Information Security, PCI DSS, IT Systems Architecture, Cross-functional Collaboration, Insurance, CISO, HIPAA Compliance, Security Architecture, NIST, Risk Management, Security Audits, Architecture, Security, Risk Assessment, Threat Modeling, DevSecOps, Data Protection, Data-level Security, Compliance, PCI, Security Policies & Procedures, Technical Writing, Identity & Access Management (IAM), Cloud Security, Data Security, Privacy, Data Privacy, Application Security
  • VP of IT and Security

    2007 - 2022
    NAMIC Insurance Company, Inc. (NAMICO)
    • Acted as the guiding force behind all IT and information security operations.
    • Established the company's IT department and separated the network infrastructure from the parent company while creating a new cybersecurity program.
    • Served as project manager, lead developer, and data architect, redesigning the proprietary CRM system—for underwriting, quoting, policy administration, and managing claims—data warehouse, and BI metadata models.
    • Designed and managed a compliant cybersecurity program for a multi-state insurance company with key components such as policies, incident response, business continuity, disaster recovery plans, risk assessments, and penetration testing.
    • Functioned as project manager and data architect for the website, supporting dynamic online applications.
    • Developed and managed budgets, overseeing and approving all hardware, technology, and security purchases.
    Technologies: Cybersecurity, C#, Web MVC, SQL Server 2014, SAP BusinessObjects (BO), Information Security, PCI DSS, NIST, App Development, Web Development, Penetration Testing, Risk Management & Mitigation, Incident Response, Business Continuity & Disaster Recovery (BCDR), Network Administration, CISO, Database Administration (DBA), Data Architecture, C#.NET, HIPAA Compliance, Security Architecture, Risk Management, Security Audits, IT Management, Architecture, OFAC, IT Security, Security, LDAP, Dropbox, File Systems, Risk Assessment, Threat Modeling, DevOps, Containers, Data Protection, Data-level Security, Compliance, Visual Basic 6 (VB6), Visual Basic .NET (VB.NET), Data Encryption, Database Security, Secure Coding, Security Policies & Procedures, Technical Writing, Identity & Access Management (IAM), Data Security, Web Security, Web Architecture, WordPress, JavaScript, Insurance, Privacy, Data Privacy, Application Security, Business Services
  • Solutions Architect

    2003 - 2007
    Baker Hill (acquired by Riverside Company)
    • Drove the development of cutting-edge B2B banking solutions for national and international companies, including spending two years in Australia as lead solutions architect working with consultants to build several new applications.
    • Contributed heavily to defining product core components, functional requirements, business rules, and the development roadmap.
    • Created a series of enterprise infrastructure assets to enable seamless interfacing between Baker Hill's international solutions and a client's legacy system.
    • Engaged as a key member of the technical sales team, delivering GAP analyses for proposals, which highlighted how company solutions would meet clients' current and future needs.
    Technologies: C#.NET, SQL Server 2014, Data Architecture, Database Administration (DBA), DevOps, Visual Basic 6 (VB6), Visual Basic .NET (VB.NET), Data Encryption, Database Security, Secure Coding, Technical Writing, Data Security

Experience

  • Cybersecurity Program

    NAMICO became subject to cybersecurity regulations after the NY CCR 500 was passed, establishing new cybersecurity requirements for financial services companies. I performed the initial risk assessment and developed a new secure network infrastructure separate from the parent company's network. At the same time, I implemented a multi-state cybersecurity program that met state and federal regulations.

    The cybersecurity program's key components included cybersecurity policies, incident response, business continuity and disaster recovery plans, cybersecurity risk assessments, penetration testing, and data classification. It complies with the Payment Card Industry Data Security Standard and the National Institute of Standards and Technology and utilizes the CIS SecureSuite standards and best practices.

  • Policy Administration System

    A policy administration, underwriting, quoting, and claims system for a multi-state insurance company.

    I was the system architect, business analyst, lead developer, and data architect, developing a proprietary CRM system that supported an insurance agency and company. The system included a custom compliance module supporting the live updates to the rates, endorsements, and policy forms.

Skills

  • Languages

    C#, C#.NET, Visual Basic 6 (VB6), Visual Basic .NET (VB.NET), JavaScript
  • Paradigms

    Penetration Testing, DevSecOps, DevOps, App Development, Web Architecture, HIPAA Compliance
  • Platforms

    Dropbox, Windows, WordPress
  • Industry Expertise

    Cybersecurity, IT Security, Security, Insurance
  • Storage

    SQL Server 2014, Database Administration (DBA), Database Security
  • Other

    SAP BusinessObjects (BO), Information Security, Architecture, File Systems, Risk Assessment, Compliance, Security Policies & Procedures, Data Security, Web Security, Privacy, Data Privacy, Application Security, Web MVC, PCI DSS, NIST, Web Development, Risk Management & Mitigation, Incident Response, Business Continuity & Disaster Recovery (BCDR), Data Architecture, CISO, SIEM, Vulnerability Assessment, Functional Design, IT Systems Architecture, Security Architecture, Risk Management, IT Management, LDAP, Threat Modeling, Data Protection, Data-level Security, Data Encryption, Secure Coding, Technical Writing, Identity & Access Management (IAM), Business Services, Network Administration, Ethical Hacking, Budgeting, Cross-functional Collaboration, Security Audits, OFAC, Containers, PCI, Cloud Security

Certifications

  • InsightIDR Certified Specialist
    MARCH 2020 - PRESENT
    Rapid7
  • InsightVM Certified Administrator
    OCTOBER 2019 - PRESENT
    Rapid7
  • Certified Ethical Hacker (CEH)
    JULY 2018 - PRESENT
    EC-Council
  • Certified Chief Information Security Officer (CCISO)
    DECEMBER 2017 - PRESENT
    EC-Council

To view more profiles

Join Toptal
Share it with others