He moved from the Texas Workforce Commission, where he served as chief information security officer (CISO) starting in May 2019, according to his LinkedIn profile. Prior work includes information security positions at the state’s Department of Motor Vehicles and Juvenile Justice Department.
He has worked in state agencies for more than two decades and brings a list of skills and accomplishments to his new post.
TDLR, as its name indicates, issues occupational licenses and regulates a range of businesses, facilities and equipment, such as elevators. The agency has 564 employees and continues to budget to “improve licensee service capabilities and information security,” according to its budget documents. IT includes Software Development Services, IT Services and Information Security teams.
According to the State Auditor’s Office job descriptions, a state agency CISO:
- Directs the deployment of security infrastructure.
- Directs the agency risk management program through planning, developing, coordinating and implementing information technology disaster recovery and business continuity planning.
- Directs the ongoing development and implementation of statewide information and cybersecurity policies, standards, guidelines and procedures to ensure information security capabilities cover current threat capabilities.
- Oversees the implementation of computer system security plans with agency personnel and outside vendors.
- Develops and implements agency policies for encryption of data transmissions and the erection of firewalls to conceal information as it is being transmitted and to eliminate tainted digital transfers.
- Develops and manages information security and risk management awareness and training programs.
