What sets Erich apart from many other Chief Information Security Officers (CISOs):

• Hands-on Experience:

  • Infrastructure and Security: Unlike many CISOs who might come from a more theoretical or managerial background, Erich has "boots-on-the-ground" experience. This means he has practical, hands-on experience with computing infrastructure and security, which gives him a deep, practical understanding of the challenges and nuances involved.

• Leadership Through Example:

  • Erich has not only managed teams but has also led by example. His ability to guide and steer organizations through his professional recommendations demonstrates a strong leadership capacity where he can both strategize and implement security measures.

• Business Enablement:

  • His approach emphasizes how security can enable business growth rather than just being a compliance or defensive measure. This perspective aligns security with business objectives, essential for executive-level roles like CISO, where understanding business implications is as important as understanding technology.

• Diverse Technical Background:

  • His career involves working with a wide array of information technologies and security platforms. This breadth of experience means he's not just familiar with one or two systems but has comprehensive exposure to different tech environments, making him versatile and adaptable to various organizational needs.

• Robust System Implementation:

  • Erich's work is focused on creating robust, secure systems. His contributions have not only been about patching or defending but also about architecting resilient systems from the ground up, which is crucial for businesses aiming to thrive in a secure environment.

• Led the Zeek and Suricata system configuration standards and product lifecycle, resulting in a 20% reduction in false positive alerts for the incident response team, freeing analysts to focus on genuine threats.

•  Actively contributing to the Security Architecture college program as a mentor for aspiring professionals, resulting in an 80%  promotion rate.

•  Operationalized Armis Security by enriching data integration with CMDB systems, enabling real-time asset visibility and vulnerability identification, which led to a 15% improvement in vulnerability remediation time.

• Implemented a new incident response process that reduced the average incident resolution time by 25% and improved SLA adherence.

• Implemented a vulnerability management program that reduced risk and attack surface by 43%.

• Executed an automated security awareness training program. Reduced phishing response tendencies by 39%.

• Led multiple high-priority project initiatives to early completion, consistently surpassing deadlines and boosting team efficiency.

• Led and achieved the company's first HITRUST Validated Certification Assessment and SOC readiness.

• Implemented and managed network security infrastructure for 15 healthcare clients, including patch management, firewall configuration, intrusion detection/prevention systems, and endpoint security. This resulted in a 99.9% network uptime and protection against evolving cyber threats.