Don Kuecker
Verified Expert in Engineering
Risk Management Developer
Windermere, FL, United States
Toptal member since September 17, 2021
Don identifies company security risks and creates mitigation strategies using the tools and applications most appropriate for their environment. He implements technologies to address security requirements for existing legacy technologies, merging business concerns and migrations to new strategies such as cloud offerings and their subsequent iterations. Don establishes consensus between departments and business entities based upon solid communication skills and current security risk knowledge.
Portfolio
Experience
Availability
Preferred Environment
Distributed Systems, Compliance, Networks, PCI, Application Security, Security, Strategy, Confidentiality, Network Architecture
The most amazing...
...project I've helped develop is the Walt Disney Magic Band and its supportive technologies, leading numerous security-related solutions and assessments.
Work Experience
Information Security Architect
Wells Fargo
- Provided security assessment functions while identifying new and emerging security risks for high dollar payment applications (any transaction over $10 million per day and per user).
- Defined and assisted with security risk mitigation solutions for discovered security risks.
- Assisted with various security-related initiatives such as single sign-on (SSO), privileged access management (PAM), virtual desktop infrastructure (VDI), and multifactor authentication (MFA).
Application Security Architect
Wyndham Worldwide (now Travel + Leisure Co.)
- Built security development guidelines, including security-related checklists. Provided guidance regarding implementation and usage of static code analysis (SCA) tools.
- Provided security consulting input and interpretations of the PCI DSS requirements related to compliance and verification of processes.
- Assisted with various security initiatives that include RESTful API services, SOA, single sign-on (SSO) using Oracle SSO and Okta SSO solutions, and RFP for API security gateway selection.
- Provided leadership with identity management (IdM) requirements for access recertification solutions across multiple technologies to ensure regulatory compliance requirements were addressed adequately.
- Led efforts to define API security requirements that include federated authentication solutions (SAML assertions) and OAuth 2.0 authorization processes.
- Participated in vendor selection for privileged access management (PAM) solution CyberArk, the initial integration into our single sign-on (SSO) solution.
- Assisted with the selection of a cloud access security broker (CASB) product and implementation.
Senior Security and Compliance Specialist
The Walt Disney Company
- Provided senior-level security services and guidance to the numerous business units, technology support groups, and leadership committees within the Walt Disney companies globally.
- Consulted regarding compliance issues and security needs, including PCI DSS, HIPAA, SOX, GLBA, ISO 17799, Safe Harbor, and other regulatory requirements.
- Provided senior security support and guidance for industry-setting technology (MagicBand) deployment of wireless RFID solutions and other wireless (ZigBee) and mobile device (iOS and Android) solutions.
- Defined and developed security processes and guidelines for mobile devices and mobile applications for internal and internet-facing scenarios.
- Provided expertise of PCI DSS to various Disney business units as they built relationships with external vendors that process credit card transactions as part of the delivery solution.
Senior Security Consultant (QSA)
Trustwave
- Conducted Security assessment for PCI DSS, including clients like issuers, acquirers, payment gateways, service providers, merchants.
- Obtained and retained a Qualified Security Assessor (QSA) certification during the entire tenure with Trustwave.
- Provided ad-hoc consulting services for the various clients in assisting them with compliance issues and security needs, including HIPAA, SOX, GLBA, ISO 17799, FISMA, NIST, HITRUST, and other regulatory requirements.
- Developed and advised on new security measures or findings that contribute to the overall security requirements of the financial industry and other industries as a whole.
- Provided assistance to non-level one merchants in regards to self-assessment questionnaire (SAQ) interpretations, PCI DSS assessment requirements, compliance gap reporting, security controls, and various other security-related activities.
Experience
Walt Disney MagicBand
https://disneyworld.disney.go.com/faq/my-disney-experience/frequency-technology/Privileged Account Management
Security Risk Management
Certifications
Certified Information Systems Security Professional (CISSP)
ISC2
Skills
Libraries/APIs
Apigee
Tools
Amazon Elastic Container Service (ECS)
Languages
SAML, CICS, COBOL
Frameworks
OAuth 2, JSON Web Tokens (JWT)
Paradigms
Security Software Development, Service-oriented Architecture (SOA), REST
Platforms
Amazon Web Services (AWS), Kubernetes, Docker
Storage
Database Security, JSON
Industry Expertise
Network Security
Other
Identity & Access Management (IAM), Security Assessment, Policies & Procedures Compliance, ISA, WiFi Integration, Certified Information Systems Security Professional, PCI DSS, Compliance, Networks, PCI, Security Architecture, Enterprise Architecture, Encryption, Multi-factor Authentication (MFA), NIST, Security, Network Architecture, Distributed Systems, Application Security, File Integrity, Confidentiality, Single Sign-on (SSO), Security Management, Security Engineering, RFID, Strategy, Architecture, API Gateways, Session Handling, Session Management, Account Management, CyberArk, Proxies, Zigbee, RACF, ISO 27001, Security Technical Implementation Guides (STIGs), IoT Security, PCI Compliance, Security Audits, Cloud Security, Cloud, Okta, Risk Management, Communication, Operations, Mainframe, Web Security, IT Security, Data Encryption, Web & Mobile Applications, Security Testing, Information Security, Credit Cards, APIs, Virtual Desktop Infrastructure (VDI), Cloud Access Security Broker (CASB), SOX Compliance, Networking, Threat Modeling, OWASP, Risk Models, PCI SSF, Assets
How to Work with Toptal
Toptal matches you directly with global industry experts from our network in hours—not weeks or months.
Share your needs
Choose your talent
Start your risk-free talent trial
Top talent is in high demand.
Start hiring