Paul oversees, identifies, develops, implements, and maintains the company information security program. This includes setting out procedures and policies that protect the company’s communications, systems and assets from information technology risks and threats. His duties include: Security Operations, Cyberrisk and Cyber Intelligence, Data Loss and Fraud Prevention, Security Architecture, Identity and Access Management, Program Management, Investigation and Forensics, Business Continuity Planning & Disaster Recovery, and Governance. Paul chairs the Risk Management Committee at Southern Title.
Paul earned his undergraduate degree in Computer Science and IT Management from Berkeley College in 1997. Over his 25 year career in information security and technology, he has obtained his Certified Information Systems Security Professional (CISSP) from ISC2, a globally recognized certification in the information security market which is considered to be the gold standard credential that assures information security leaders possess the breadth of knowledge, skills and experience required to credibly build and manage the security posture of an organization. The CISSP is formally approved by the U.S. Department of Defense (DOD) and in May 2020 the UK National Academic Recognition Information Centre assessed the CISSP qualification as a Level 7 award, the same level as a Masters degree.
Along with the CISSP, Paul has also obtained the Certified Information Security Manager (CISM) from ISACA which indicates expertise in information security governance, program development and management, incident management and risk management. He is a Certified Ethical Hacker (CEH), the world’s number 1 ethical hacking certification, demonstrating knowledge of assessing the security of computer systems by looking for weaknesses and vulnerabilities in target systems, using the same knowledge and tools as a malicious hacker, but in a lawful and legitimate manner to assess the security posture of a target system.
Paul serves as a member of the following organizations: