Christopher Young
Verified Expert in Engineering
Technical Architect and Developer
Marietta, GA, United States
Toptal member since October 4, 2022
Christopher is an experienced principal consultant with a demonstrated history of working in the private and public industries. He is skilled in security, software development, enterprise architecture, operations management, IT strategy, cloud computing, and training. As a consulting professional with a business administration doctorate, Christopher focuses on information systems and enterprise resource management.
Portfolio
Experience
- Security - 13 years
- Project Management Professional (PMP) - 12 years
- Risk Assessment - 12 years
- IT Strategy - 12 years
- Disaster Recovery Consulting - 10 years
- CISSP - 8 years
- Cloud Migration - 6 years
- ITIL 4 - 3 years
Availability
Preferred Environment
Cloud, Risk Assessment, Disaster Recovery Consulting, Amazon Web Services (AWS), Project Management Professional (PMP), CISSP, Application Security, Web Security, Security Audits, Security Testing
The most amazing...
...thing I've developed is a personalized security awareness program overseeing the establishment of a plan that decreases vulnerabilities in the ecosystem.
Work Experience
Principal Consultant, Enterprise Operations
CalWIN
- Led oversight of all aspects of system security, including cybersecurity readiness, DR, security assessment, regulatory assessment, security incident reporting, and security training.
- Provided architectural review to ensure adherence to functional and non-functional requirements while minimizing costs for cloud migration projects, including SAAS and IAAS offerings in both the AWS and Azure environments.
- Managed the migration of on-premise applications to the AWS ecosystem utilizing rehosting, replatforming, and refactoring migration strategies. Supervised the development of native AWS applications to support new business functionality.
- Led oversight of general systems, including hardware, software, operating system, configuration management, data communications, networks, and applications to ensure adherence to requirements.
- Oversaw infrastructure-related and operational projects, including infrastructure upgrades, security remediation, ServiceNow, and cloud migration projects in AWS and Azure environments.
Security Roadmap Assessment
Boston Children's Hospital - Trust
- Performed the NIST 800--53 Assessment for the Organization.
- Developed a plan to address the assessment findings while strengthening the overall security architecture of the organization.
- Architected a security roadmap to designed to ensure a sustained security architecture.
- Identified high-risk issues that required immediate attention.
- Presented assessment findings to senior management.
Senior Technical and Enterprise Architect
Georgia Department of Drivers Services
- Spearheaded the design and development of technical solutions for modernization projects, including REAL ID and eCommerce projects.
- Managed the enterprise architectural design, development, and implementation of the Windows and web and mobile information systems.
- Led and mentored the project team from technical and functional perspectives, covering database development, data architecture, integration development, requirements identifications, testing, and project management.
- Designed architectural artifacts for external services, including Commercial Driver's License Information System (CDLIS), SR22/26, Problem Driver Pointer System (PDPS), and Digital Image Access and Exchange (DIAE).
- Improved architecture, provided design and integration solutions, and formulated methodologies to optimize object-oriented software and database development.
- Designed architectural artifacts for external services, including Commercial Skills Test Information Management System (CSTIMS), State-to-State (S2S) Verification Service, and Systematic Alien Verification for Entitlements (SAVE).
Director of Information Technology
Georgia Therapy Associates–Methadone Clinics
- Managed all telecommunications, software, and computer support for four centers.
- Developed, built, and managed effective relationships with vendors and business partners and assisted with business issues and problem resolution while representing the company with integrity and professionalism.
- Managed, maintained, negotiated, and reviewed service agreements, leases, and other expense-related technology assets and services with favorable terms and contracts to the company and recommended and made changes as needed.
- Ensured all HIPAA and FDA requirements were met for all telecommunications, software, networking, and computers.
Chief Technical Architect | VP of Engineering
DirectSellingLive
- Directed and prioritized the workload of subordinate personnel. Implemented the enterprise architecture using TOGAF principles of the Windows and web systems.
- Developed disaster recovery plans. Established security policy for all locations, including physical and behavioral security. Led a team of seven local IT support personnel and 12 overseas resources.
- Directed technology research and recommended information technology strategies, policies, and development by evaluating the current environment, and anticipated organizational growth.
- Managed, maintained, negotiated, and reviewed service agreements, leases, and other expense-related technology assets and services with favorable terms and contracts to the company and recommended and made changes as needed.
Senior Consultant and Architect
Invesco
- Developed the architectural design of logical and physical models. Developed and implemented a billing application and management information system (MIS) for the finance and accounting department, together with prototypes.
- Collaborated with directors and VPs to analyze business needs, write business requirements, create design documents for programmers, train users on the new system, and process reengineering.
- Designed and developed several decision support systems (DSS), including profitability, billing, and pricing application using Visual Basic 6.0, .NET, ASP, HTML, JavaScript, Microsoft SQL Server, and Oracle8i databases.
- Developed and maintained stored procedures, functions, triggers, cursors, and views using PL/SQL and T-SQL. Created and maintained business objection universes and reports using ActiveReports and BusinessObjects.
Experience
Cloud Migration
• Developed from reviewing current operating procedures and making appropriate changes.
• Reviewed cloud architecture diagrams.
• Managed SaaS and IaaS projects, including Office 365, SharePoint Online, Service Now, and security remediation projects designed to leverage newer technology while mitigating security vulnerabilities.
SPECIFIC PROJECTS
• Converted an Oracle database to AWS Aurora PostgreSQL (within the AWS environment). This project reduced licensing costs, created dynamic scalability, and increased operation efficiency by reducing maintenance and utilizing the latest hardware and software.
• Created an AWS Disaster Recovery Connection for AWS services.
• Built an Enterprise Content Management (ECM) system in AWS.
• Developed security remediation projects such as the creation of a management reporting application and the replacement of a legacy computer telephony system with AWS Connect.
Security Assessment
Security Vulnerability Management
I developed a plan with the goal of an N-1 patching level. We ultimately moved to monthly windows patching and quarterly Linux and bi-annual HPUX patching.
• Removed Windows 2003 and SQL 2000 servers and replaced them with a cloud application.
• Upgraded over 124 windows 2008 servers.
• Upgraded old AIX servers.
• Reduced the number of vulnerabilities in the ecosystem.
• Developed a patching plan, which required coordination with the project team.
• Established Security Awareness Training for the organization.
• Participated in SOC1 and SOC2, NIST 800-53 audits, including prep activities designed to ensure compliance.
• Managed annual review of security and disaster recovery plans.
Data Center Migration
Disaster Recovery Planning and Consulting
Security Awareness Training
Technical Program Management
vCISO
Education
Doctorate of Business Administration in Information Systems and Enterprise Resource Management
California Intercontinental University - Irving, CA, USA
Master's Degree in Management Information Systems
Mercer University - Atlanta, GA, USA
Certifications
Google Cloud Digital Leader Certification
Google Cloud
Project Management Professional (PMP)
Project Management Institute (PMI)
IT Information Library Foundations Certification (ITIL) 4
Axelos
CISSP
International Information System Security Certification Consortium
AWS Certified Solutions Architect Associate
AWS
Azure Fundamentals
Microsoft
Skills
Libraries/APIs
OpenSSL, React
Tools
Google Workspace, VPN, Amazon Athena, AWS CloudFormation, Oracle Business Intelligence Enterprise Edition 11g (OBIEE)
Paradigms
Web Architecture, Good Clinical Practice (GCP), HIPAA Compliance, Requirements Analysis, Penetration Testing, DevOps, DevSecOps, .NET Security Model, Structured Systems Analysis & Design Method (SSADM), Agile
Industry Expertise
Project Management, Cybersecurity, Network Security
Languages
HTML5, SQL, Embedded C++, Visual Basic .NET (VB.NET), SAML, Java, COBOL, C++, C, Octave, C#, JavaScript
Platforms
Azure, Windows, HP-UX, Linux, Amazon Web Services (AWS), Google Cloud Platform (GCP), AWS Lambda, Oracle, Microsoft, Unix
Storage
MySQLi, Database Security, Amazon S3 (AWS S3), Google Cloud, Microsoft SQL Server, SQL Server Integration Services (SSIS), MySQL
Frameworks
.NET 4, .NET 3, COBIT, .NET, Django
Other
Web Applications, Cloud, Risk Assessment, Project Management Professional (PMP), CISSP, IT Projects, Security, IT Strategy, Projects, Software QA, Disaster Recovery Plans (DRP), Architecture, IT Security, Risk Management, Vulnerability Assessment, Security Architecture, Web Security, Software Development Lifecycle (SDLC), Project Planning, IT Management, IT Project Management, Web Project Management, Compliance, Information Security, Certified Information Systems Security Professional, Security Policies & Procedures, Security Management, Vulnerability Identification, Information Security Management Systems (ISMS), Business Services, Gmail, Policy Development, Policies & Procedures Compliance, Transport Layer Security (TLS), Data Privacy, Privacy, Leadership, Stakeholder Management, IT Deployments, Cloud Architecture, Zero-day Vulnerabilities, Exploits, Security Analysis, Endpoint Security, Incident Response, Incident Management, Monitoring, Solution Architecture, Antivirus Software, Governance, IT Governance, Data Governance, Security Engineering, Vulnerability Management, Computer Security, Asset Management, GRC, Documentation, Business Continuity Planning (BCP), Communication, Organization, Disaster Recovery Consulting, SOC 2, Cloud Migration, Identity & Access Management (IAM), NIST, PCI, IT Audits, Threat Modeling, Middleware, Software Architecture, Product Strategy, User Authentication, Application Security, Security Testing, Consulting, Program Management, Security Audits, Mobile Security, OWASP, Data Encryption, Data Protection, SIEM, Single Sign-on (SSO), ISO 27001, Data Security, Networks, CISO, Microsoft 365, SMTP, System-on-a-Chip (SoC), Request for Proposal (RFP), Configuration Management, Amazon RDS, Amazon API Gateway, API Gateways, Web App Security, SecOps, Intrusion Detection Systems (IDS), Windows System Administration, Office 365, IDS/IPS, Group Policy, OWASP Top 10, FedRAMP, IT, ITIL 4, Microsoft Azure Cloud Server, Hyland OnBase, Mainframe Systems, Telecom Equipment & Solutions, System Migration, ETL Tools, Cloud Security, Product Roadmaps, Healthcare IT, Public-key Cryptography, Cryptography, Network Exploitation, Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Infrastructure, Patch Deployment, IT Operations Management (ITOM), Risk Analysis, Operational Risk, IT Infrastructure, Server Infrastructure, Security Awareness Training, Technical Program Management, TCP/IP, IoT Security, Financial Services, CI/CD Pipelines, International Data Privacy Regulations, Microsoft Defender Antivirus
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring