Experienced Information Security Leader
Greater Minneapolis-St. Paul Area
- Current
-
- Managing Partner at FRSecure LLC
- Past
-
- Director of Information Security/Information Security Officer at MGI PHARMA
- Director of Information Security at eLoyalty Corporation
- Information Security Consultant at Unitedhealth Group
- Data Security Consultant III at US Bank
- Information Security/Network Services Manager at Jasc Software
- Senior Consultant at Valley View Microsystems
- Windows Network Administrator at International Decision Systems
- Recommended
-
5 people have recommended Evan - Connections
-
192
connections
- Industry
- Computer & Network Security
- Websites
Evan Francen’s Summary
Results-driven information security management professional, with demonstrated success employing business, technical, and personal skills in strategic, tactical, and operational information security initiatives.
Objective:
Work closely with corporate/organizational leadership to define, develop, and implement information security strategy that manages acceptable information security risks and aligns with business objectives.
Summary of Qualifications:
15 years of progressive technology and information systems security experience
Skilled in information security strategy, architecture, risk management, and program development
Expert in designing secure, highly available systems, using both current and legacy technologies, in accordance with business objectives
Designed and delivered enterprise information security training and awareness programs
Strong experience in implementation and support of secure technology within a strict budget
Proficient in incident response team development and procedures implementation
Experienced in security policy, guideline, standard and procedure development
Served as a Subject Matter Expert (SME) in multiple international information security courses
Proficient in vulnerability, risk, threat analysis and monitoring
Ability to analyze, respond to, and investigate realized threats swiftly and soundly
Keen ability in explaining technical information to non-technical personnel in all levels throughout the organization
Ability to design and manage projects effectively, within budget and on time
Effective negotiation skills with both internal customers, and external vendors
Evan Francen’s Specialties:
Information security program development and governance, Enterprise threat and vulnerability management, Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Firewalls, VISA CISP, Penetration testing, Incident response and remediation, DDoS response, Anti-virus, Forensics and Investigations, Project management, corporate policy review and enforcement
Evan Francen’s Experience
-
Managing Partner
FRSecure LLC
(Privately Held; Computer & Network Security industry)
January 2009 — Present (11 months)
FRSecure LLC is a full-service information security consulting company dedicated to information security education, awareness, application, and improvement. FRSecure works with businesses of all sizes, in all industries; enabling our clients to achieve optimal results per information security dollar spent. Every one of our clients is in business to make money, so we design secure solutions that drive business, protect sensitive information assets, and improve the bottom line.
-
Director of Information Security/Information Security Officer
MGI PHARMA
(Public Company; MOGN; Pharmaceuticals industry)
October 2006 — January 2009 (2 years 4 months)
• Designed, developed and implemented MGI PHARMA’s first formal information security program based on a thorough analysis of risk to MGI’s information resources, industry standard best practices and various governmental rules and regulations including Sarbanes-Oxley (SOX) and FDA 21 CFR Part 11.
• Led numerous information security control projects including policy, standards and procedures development, training & awareness, laptop encryption, data in transit and at rest encryption, network access control, automated patching, secure configuration standards, internal and external security audits, and disaster recovery planning.
• Provided direction to a highly skilled team of engineers that substantially improved MGI’s network and server infrastructure by implementing and supporting scalable and highly-available solutions -
Director of Information Security
eLoyalty Corporation
(Public Company; 201-500 employees; ELOY; Information Technology and Services industry)
January 2006 — October 2006 (10 months)
Developed, implemented, and managed eLoyalty’s first formal information security program, a progressive information security life-cycle program that met the needs of our business, customers, and various governmental and industry regulations
-
Information Security Consultant
Unitedhealth Group
(Public Company; UNH; Insurance industry)
October 2005 — January 2006 (4 months)
• Technical project manager dedicated to a project to deploy full-disk encryption to 46,000 laptops across six business divisions within UnitedHealth, to address data at rest HIPAA concerns.
• Coordinated all aspects of the project, including vendor selection, testing, deployment strategies, end-user support, and back-end architecture design -
Data Security Consultant III
US Bank
(Public Company; 10,001 or more employees; USB; Computer & Network Security industry)
March 2005 — October 2005 (8 months)
Develop, implement and support enterprise-level solutions created to reduce the impact of realized threats, and decrease the number of vulnerabilities in an environment that spans more than 100,000 computers and devices
Respond to, investigate, and provide remediation to a wide variety of realized security incidents, including DDoS attacks, network intrusions, phishing and Internet fraud attacks, and unauthorized access attempts among many others
Lead Threat and Vulnerability team projects, including VISA CISP Auditing and Logging Remediation for 532 servers, and GLBA Intrusion Detection Monitoring of 86 host intrusion detection systems and 31 network intrusion detection systems
Lead forensic investigations into embezzlement, ethics violations, computer misuse, Internet abuse, email misuse, and other InfoSec policy violations
Consult with all levels of the organization in regards to security issues, interpretations and reviews -
Information Security/Network Services Manager
Jasc Software
(Privately Held; Computer Software industry)
March 2000 — March 2005 (5 years 1 month)
• Designed, developed, implemented and managed all aspects of technical and non-technical security within the network management facilities and IP network infrastructure including data center, management center, and administrative areas
• Started a company-wide communication initiative in an effort to provide both formal and informal dialog between Information Services and the department managers with the ultimate goal of providing better service to our customers
• Developed an all-encompassing and fully redundant alerting and monitoring architecture utilizing local and off-site sensors.
• Maintained 99.9989% availability while providing for 3.6 billion web hits, 122 million trial downloads, and 556 thousand ecommerce orders through our Internet architecture
• Responsible for analyzing, reporting on, and effecting change in the state of Internet and local network security -
Senior Consultant
Valley View Microsystems
(Computer & Network Security industry)
1999 — 2000 (1 year )
-
Windows Network Administrator
International Decision Systems
(Computer & Network Security industry)
1998 — 1999 (1 year )
Additional Information
Evan Francen’s Websites:
Evan Francen’s Groups:
Certified Information Systems Security Professional
Certified Information Security Manager
-
Security-Jobs.info -
Certified Information Systems Security Professionals (CISSP) -
SecurityMetrics -
Security Bloggers Network -
Payment Card Industry Network -
Minneapolis/St. Paul Business Journal -
Security Leaders Group -
TwinWest Chamber of Commerce -
Infosecurity magazine - information security community -
TAC Worldwide (Midwest)
Evan Francen’s Honors:
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Cisco Certified Network Professional (CCNP)
Microsoft Certified Systems Engineer (MCSE)
Evan Francen’s Contact Settings
Interested In:
- career opportunities
- consulting offers
- new ventures
- job inquiries
- expertise requests
- business deals
- reference requests
- getting back in touch
