Tom Hook
Education:
Master of Business Administration - MBA
Colorado Technical University
2019 : 2020
Master of Science - MS
Cybersecurity Management
Colorado Technical University
2018 : 2019
Bachelor's Degree
Electronic Engineering
ITT Technical Institute-Seattle
Experience:
The Cybersecurity Security Services organization is accountability as service owners for identifying and tracking risks, vulnerabilities, incident response, and developing Cybersecurity Awareness training. Teams seeks to leverages partnerships with technology teams to federate, track and drive awareness of security concerns. Teams seeks to leverages partnerships with technology teams to federate risks, track risks, and drive security awareness.
Strategic planning - Develop strategic plans to proactively address risks. Utilizing the NIST Risk Management framework to Identify, Protect, Detect, Respond, and Recover.
SIEM management - Collects security data from network devices, servers, domain controllers, and more. Enrichment of data and alarm visualization for Security Operations and Incident response teams.
Security Products – Oversee the creation and delivery of Endpoint Detection, Data Loss Prevention, IDS, IPS, WAF, and API Analysis.
Awareness Training - Develop cybersecurity training modules and grab-and-go guides to drive cybersecurity into the culture of all employee.
Seeking the unknown – While celebrating the success of managing known risks and assets it is imperative, we identify the unknown or unmanaged assets in the environment.
2020 : Present
T-Mobile
Sr. Manager, Cybersecurity Services - Risk, Vulnerability, and Incident Management
Create a risk aware culture among responsible technology owners that promotes and integrates principled decision making to establish remediation or acceptance of risk.
Bridging the gaps between policy, implementation, and cross departmental communication to ensure expectations are met in an efficient and appropriate manner.
Regulatory compliance – Protecting, validating and reporting annual compliance requirements for SOX, PCI, and CPNI.
2017 : 2020
T-Mobile
Sr. Manager, Technology Compliance - Cybersecurity
I provide leadership for several Infrastructure and Operation teams including Infrastructure Design Architects, Directory & Security Services, Storage and Backups.
The Design Architects are responsible for –
1) Designing scalable and adaptive hardware solutions that address business needs and satisfy operational needs within the Enterprise standards. Technologies include Windows Operating Systems, Unix Operating Systems (HP UX, AIX, and Oracle Enterprise Linux), server HW, storage, networking, security, virtualization and cloud technologies.
2) Develop proofs-of-concept and prototype architecture to illustrate approaches to technology and business problems.
3) Create standardized visual design diagrams of logical infrastructure, including platform, storage, and networking information.
4) Establish strong relationships with leadership to insure the use of technologies are well understood. Act as a conduit for questions and information flow, when those outside of IT have ideas for new technology applications.
Directory & Security Services are responsible for –
1) Design and operate all facets of Directory Services (AD) for T-Mobile, US. Including LDAP, Federated Services (ADFS), Namespace (DFS), DNS, DHCP and NTP
2) Maintaining our PKI infrastructure. SSL management.
3) SOX and PCI Compliance
4) Manage our RSA environment
Storage and Backups are responsible for –
1) Design and Operate – SAN Arrays (VMAX, VNX, Vipr)
2) Design and Operate – NAS (Celerra, Isilon, NetApp FAS)
3) Design and Operate – Backup infrastructure and Data Domains.
4) Technologies include - Symantec, EMC, Isilon, NetApp,
2014 : 2017
T-Mobile
Sr. Manager, Infrastructure Security Systems - Design and Operations
I provide leadership to a group of managers whose responsibilities include supporting our IT professionals as well as drive projects through to completion. My team provides Operating System and Hardware support for over 18,000 Enterprise Microsoft and UNIX Systems (AIX,Linux) across several geographically dispersed datacenters.
I have a solid understanding of how the business' needs drive technology. This is crucial to ensure the technical teams focus on solutions that enable stable services to the business. Often, the business ask is mis-interpreted or misunderstood by the time a technologist gets an assignment. I pride myself on the ability to translate requirements to technologists as well as Senior Leadership from concept to delivery.
Microsoft Windows Server
IBM - AIX
HP - HPUX
Linux - OEL, Redhat
Sun - Solaris
NAS - Celerra and Isilon
2013 : 2014
T-Mobile
Sr. Manager, Enterprise Infrastructure Systems
Enabling application presentation to customers/users rather than application delivery to devices. This shifts the focus from the traditional question How do I install or develop application for each operating system (iOS, Android, Windows, Linux etc.)? to How do I provide my customers access to the application that make them productive? Less focus on devices and Operating System more focus on empowering people regardless of what device they have.
BYOD
SaaS
IaaS
PaaS
2010 : 2013
T-Mobile
Manager III, Enterprise Mobility
Company: T-Mobile
Years of Experience: 35
I provide senior leadership to diverse teams with a focus on Infrastructure and Security service. My drive to create and influence successful teams has afforded me the opportunity to set direction for all disciplines within an Enterprise Infrastructure, Security, and Operation team. Areas of control include Security Services, Risk Management, Vulnerability Management, Patch Management, SOX/PCI, Infrastructure Services, Design and Operations for UNIX, Windows, Storage and Backup teams as well as incident and problem management. This range of scope has provided a solid understanding and proven history of successfully managing all facets of Infrastructure, Security, Design and Operations.
I have the ability to coordinate across organizational boundaries and demonstrate “added value” by defining, establishing and delivering technically sound and affordable solutions.
Can vs Should - What we can do is often not what we should do
Specialties:
Security Services - Risk, vulnerability and patch management programs.
Compliance - SOX/PCI
Develop Strategic Partnerships
Strong analytic skills, decision-making & problem-solving skills
Excellent communication skills & relationship building skills
Anticipate and Proactively address potential problems.
Proven people leader with solid team building skills
Clear communication
Problem Solving - Incident response
Coaching and career development
Server Architecture - System Design - AIX, Linux, Windows - IBM, HP
Vendor Management