Tom Miller
About
Tom Miller is from New York, New York, United States. Tom works in the following industries: "Computer & Network Security". Tom is currently Senior Information Security Manager at Braze, located in New York City Metropolitan Area. In Tom's previous role as a Information Security Manager at Braze, Tom worked in New York City Metropolitan Area until Aug 2020. Prior to joining Braze, Tom was a Technology Security Authority (security architect) - Cloud & Security at Vodafone and held the position of Technology Security Authority (security architect) - Cloud & Security at New York City Metropolitan Area. Prior to that, Tom was a Associate Director, Cyber-Security & Business Continuity at Columbia Business School, based in New York City Metropolitan Area from Jan 2014 to Jan 2015. Tom started working as Information Security Manager at American Express in New York City Metropolitan Area in Jan 2009. From Jan 1995 to Jan 2009, Tom was IT Manager and various other roles at Time Inc., based in Greater New York City Area and San Francisco, CA.
Tom Miller's contact information is available for free on finalscout.com, a web-based professional networking database with more than 500 million business contacts and 200 million company profiles.
Tom Miller's current jobs
Tom Miller's past jobs
Designed and implemented industry best practice security controls for Braze applications and infrastructure. Define company-wide security policies and procedures and provide security training to employees. Worked with CTO and DevOps team to design and implement network security controls. Conducted regular vulnerability and risk assessments of Braze cloud applications, infrastructure, and security controls. Monitored network traffic for malicious activity or policy violations. Successfully achieved SOC 2 compliance and ISO 27001 certification in first year of employment. Developed a robust and pragmatic Information Security Management System tailored to startup environment. Ran point on Braze GDPR compliance, a large cross-department project that included Engineering, Product, Marketing, Legal, Success, Sales, DevOps, and People Ops teams. Developed Secure Coding trainings for Engineers and wrote company-wide Change Management and Project Management polices to integrate risk awareness throughout department processes at Braze.
Led pre-sales security architecture and design of large custom solutions for Vodafone's Cloud & Security line of business. Created security solutions that balanced security risk and protection for customers while allowing for flexibility and innovation. Provided security consultancy to Vodafone enterprise customers across a wide range of IT, Network, and Telecom solutions and services. Subject matter expert and technical authority responsible for reviewing and approving technical designs for key corporate customers, ensuring the confidentiality, integrity, and availability of information systems. Managed IT governance and quality standards of engagements, aligning with frameworks such as ISO 27001, COBIT, SOX, and PCI-DSS. Engagements included Global WAN, LAN, Security in the Cloud, On-Premises Managed Security Services, Data Center Security, Cloud and Hosting, Contact Centers, SD-WAN, Web Security, and DDoS solutions.
Created and implemented the school's first cloud-based BCP/DR program in AWS. Wrote first information security policy manual for Columbia Business School. Managed (hands-on) firewall, WAF, vulnerability scanner, and penetration testing. Monitored and responded to security incidents through all phases of incident response life cycle.
Head of the information security program at American Express Publishing: managed and reviewed vulnerabilities, incident management, access controls, security intelligence and analytics, change management, patch management, firewall requests, data loss prevention, new project and vendor governance, and staff education and awareness. Created and led the American Express Publishing Computer Security Incident Response Team (CSIRT) for local response, and coordination with American Express CISO for all enterprise events, malware infections, breaches, and computer incidents. Managed the new project governance process to align with American Express standards and compliance, as well as federal Sarbanes-Oxley, Gramm-Leach-Bliley, and CAN-SPAM Acts.
Worked for Time Inc. in many positions and with various titles, which included FORTUNE, Business 2.0, People, and Time magazines. Created, managed, and led the first IT department in San Francisco's Business 2.0 location.