User Tools

Site Tools


cybersecurity_background

20170522_-_baxter_joseph_resume.pdf

Professional Bio

Joseph Baxter is the Director of Solutions Engineering at the software company Network Perception in Chicago, Illinois. He formerly served as a Senior CIP Assurance Advisor at the North American Electrical Reliability Corporation (NERC) for a number of years. As NERC CIP Lead at ABB, he worked directly with HVDC and FACTS. As a NERC CIP Auditor for the SERC region, with special emphasis on the technical side of cyber security, he participated in many multi-region audits with RFC, MRO, WECC, and SPP. In 2009, sitting on the other side of table, he held direct responsibility for a CIP Compliance Program at an Electric Entity spanning several States. He has both audited and been audited in the realm of CIP, and brings over fifteen years of dedicated Information Security experience gleaned from the Financial Sector to bear on the problems facing Grid Security today. Beyond NERC, his compliance knowledge extends to HIPAA, PCI-DSS, SOX, and GLBA.

Mr. Baxter retains many industry certifications to accompany his experience and knowledge. Currently certified in the Governance of Enterprise IT (CGEIT), he also maintains a Certified Information Systems Auditor (CISA), as well as a Certified Information Security Manager (CISM) from the internationally respected ISACA organization. From the International Information Systems Security Certification Consortium (ISC2), he holds additionally the Certified Information Systems Security Professional (CISSP).

When not writing science fiction, Mr. Baxter has found publication in freelance journalism, with several credits in (formerly) professional markets such as Linux.com.

Resume

Proven expertise in cyber security and compliance able to dive deep into process and procedure, correcting issues in novel ways to maximize security while often further enhancing efficiency.

Dedicated problem-solver with extensive technical administration experience in systems, infrastructure, databases, firewalling, and control technologies.

Energetic thought-leader capable of breaking down complex topics and tasks into understandable elements and communicating at the level of detail required to reach the desired audience.

HIGHLIGHTS AND ACHIEVEMENTS

  • Developed ABB patching service earning two million in revenue by second year.
  • Constructed first compliance program to pass SERC audit with zero violations.
  • Expanded profitable managed service from ten to fifty banks in two years.
  • Led ABB response to ransomware threat for five major electrical customers
  • Professional record extending over twenty years in information systems.

KNOWLEDGE AND SKILLS

  • Information Security Program Creation
  • Information Security Program Audit
  • Management of Technical Teams
  • Technical Auditing and Analysis
  • Operating Technology Expertise
  • Networking Security Systems Analysis
  • Communications and Technical Training
  • Engaging Presentation Delivery

INDUSTRY CERTIFICATIONS

  • CISSP – Certified Information System Security Professional from (ISC)2
  • CISA – Certified Information Systems Auditor from ISACA
  • CISM – Certified Information Security Manager from ISACA
  • CGEIT – Certified in the Governance of Enterprise IT from ISACA
  • MCSE+S – Certified Systems Engineer with Security from Microsoft
  • MCDBA – Certified Database Administrator from Microsoft

PROFESSIONAL EXPERIENCE

NETWORK PERCEPTION, Director of Solutions Engineering: Mar. 2021 – Present Demonstrate NP-View, complete Proofs of Concept evaluations, work with VPs of Sales and Partnerships on flagship opportunities. Assist in NP-View production shaping. Write and update technical whitepapers, deliver training and conference presentations, in addition to working with NERC ERO members on NERC Align SEL. Manage team of Solutions Engineers.

NERC, Compliance Assurance, Senior CIP Assurance Advisor: Nov. 2017 – Feb. 2021 Provide oversight, guidance, and coordination in managing programs and processes to monitor, review, and evaluate program effectiveness of Electric Reliability Organization (ERO) Enterprise implementation of risk-based compliance monitoring and adherence to the NERC Rules of Procedure, Compliance Monitoring and Enforcement Program, and approved delegation agreements.

ABB, Power Grids, NERC CIP Lead: Jan. 2014 – Oct. 2017 Support customers to analyze and solve cyber security and compliance issues facing electrical transmission industry. Design and manage advanced cyber security services with a special emphasis on compliance to the NERC CIP Cyber Security Standards.

SERC Reliability Corporation, CIP Compliance Auditor: Jun. 2012 – Dec. 2013 Led audit teams to perform cyber security compliance audits within the SERC region. Additionally worked jointly with other NERC regions to audit upon multi-regional entities.

Burns & McDonnell Engineering, Sr. Cyber Security Consultant: Dec. 2011 – May 2012 Maintained client relationships and managed CIP compliance projects throughout North America. Performed documentation reviews, gap analyses, vulnerability assessments, and incident response drills.

Associated Electric Cooperatives Inc. (AECI): Aug. 2008 – Nov. 2011

Energy Management System (EMS) Team Supervisor: Sep. 2010 – Nov. 2011 Managed a team of five-seven EMS Analysts and interns to implement, develop, maintain and secure core system for AECI.

Sr. Reliability Compliance Analyst: Aug. 2008 – Aug. 2010 Supervised compliance specialist. Constructed and maintained effective Cyber Security Compliance Program to ensure compliance with applicable NERC, RUS, SOX and HIPAA requirements.

Great Southern Bank, Internal IT Auditor: Dec. 2007 – Jul. 2008 Developed and implemented comprehensive auditing policy and procedure for all information systems. Functioned as primary point of contact for FDIC regulators.

Jack Henry and Associates Inc. (JHA), Team Lead / Network Engineer II: Oct. 2003 – Nov. 2007

cybersecurity_background.txt · Last modified: 2023/07/19 09:02 by josephbaxter

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki