- Reply rate:
- -
- Availability:
- Full-time (40 hrs/wk)
- Location:
- Bloomingdale, Georgia, United States
- Experience:
- 12 years
ALICIA LEWIS
Director of Cybersecurity Service Delivery
PROFESSIONAL PROFILE
Dedicated Cybersecurity Leader committed to safeguarding digital assets and
critical information through expertise in risk management, threat analysis, and
security best practices. Proven ability to develop and implement comprehensive
cybersecurity strategies, lead incident response teams, and stay abreast of
evolving threats and technologies. Adept at fostering a security-conscious
culture, collaborating with cross-functional teams, and ensuring compliance with
industry standards and regulations to maintain data integrity, confidentiality, and
availability.
| CONTACT INFO-
-
Savannah, Georgia
| WORK HISTORY
Capgemini – Assist. Director of Global Service Delivery Program Manager / SOC
Americas Manager
Location: Georgia • Duration: 03/2022 – Current
Results-oriented Service Delivery Director and Senior Program Director with a
successful track record in leading and delivering complex projects on time and
within budget.
Director of Global Service Delivery - Program Director
•
•
•
•
•
•
•
•
•
•
•
•
•
•
•
Partnered with engineering teams to deliver seamless service and
infrastructure services to organizations within Capgemini and commercial
entities.
Led a team of 12 as a People and Project Manager, providing guidance,
coaching, and mentoring to ensure project success.
Constructed business cases, provided cost estimates, ROI analysis, and
effectively communicated solutions to IIS Leadership.
Monitored and approved program expenditures, such as Professional
Services, Contractors and Licensing, using Emonitoring.
Prepared financial statements and maintained records pertaining to
internal program activities.
Scheduled internal program work, oversaw daily operations, coordinated
program activities, and set priorities for program management.
Owned and managed an organization's information security program,
policies, and procedures.
Developed and provided metrics and reports regularly to meet Global
Cybersecurity Americas compliance and audit needs.
Defined and reviewed key security performance indicators to ensure
proper service delivery and service improvements.
Successfully managed Capgemini Information Security NextGen SOC
Phase 2 Program, delivering it on time and within budget.
Led a multidisciplinary team in the successful completion of [specific
projects], resulting in a 25% increase in client satisfaction.
Developed and executed comprehensive project plans, ensuring
alignment with organizational goals and objectives.
Oversaw project budgets, resource allocation, and timelines, consistently
delivering projects within scope and on schedule.
Implemented Agile methodologies, leading to a 30% improvement in
project delivery efficiency.
Collaborated with key stakeholders to define project scope, requirements,
and deliverables.
| TECHNICAL COMPETENCIES
● SOC Management
● Program Management
● Security Tools:
Splunk, Zscaler, Illumio, Crowd
Strike, FireEye, RSA, Azure,
Confluence, Google for Business,
Google PMP, Jira
| CERTIFICATIONS
•
Google PMP Certificate
•
SANS-MGT517: Managing
•
Capgemini Connected
Manager
•
CISM Boot Camp
•
Security+ Certified
Professional
| EDUCATION
Mercy University
Masters of Cybersecurity
LEWIS, ALICIA
1
•
•
•
•
Established clear project objectives, scope, and deliverables, aligning them with organizational goals.
Implemented project management tools and methodologies, resulting in improved project tracking and
reporting.
Conducted regular Information Security stakeholder meetings to ensure alignment and manage
expectations.
Managed project risks and issues, implementing proactive mitigation strategies according to compliance
frameworks such as SOC 2, ISO 27001, and GDPR.
•
•
•
•
•
•
Possesses extensive knowledge of network systems, network and data security, and associated hardware,
software, and protocols.
Extensive expertise in threats, risk analysis, and the development of security systems and protocols.
Guided the direction of DevOps tools, allowing for troubleshooting to be distributed to engineering and
support teams. Built and maintained monitoring and support capabilities.
Drove information security Operations projects across client enterprise environments in support of security
transformation activities.
Delivered information security Operations briefings to client executive management, technical
leadership, and industry analysts.
Organized and participated in simulated drills and tabletop exercises to test the incident response
capabilities of the organization and identify areas for improvement.
SOC Americas Manager
•
•
•
•
•
•
•
•
•
•
•
Managed the multi-Tier SOC of Global Cybersecurity Americas Follow the Sun 24x7 within a shift
environment.
Built and developed SOC processes and hired new SOC employees.
Ensured proper integration and handover of new security services within the monitoring and detection
capability of the SOC.
Ensured security detection, response, and recovery procedures are up to date, maintained, and followed
according to compliance frameworks such as SOC 2, ISO 27001, and GDPR.
Developed and maintained SOC-related policies, procedures, and processes in close cooperation with
SOC operations in other countries (such as Australia) to ensure continuous collection, correlation, and
analysis of necessary information and security data to detect potential external and internal threats to
clients.
Ensured continuous SOC services improvement, including employees, processes, and technologies.
Managed all day-to-day activities within the SOC to ensure the effective operation of incident detection
and response processes.
Worked with all interfacing teams to define and baseline the system uptime SLAs.
Worked with other Information Security teams to manage security monitoring, tuning, and incident
response effectively and efficiently.
Prioritized and triaged incidents based on their severity and potential impact on the organization,
ensuring a swift and appropriate response to critical incidents.
Led communication with stakeholders, including executives and legal teams, as needed. Provided
regular updates and detailed incident reports.
Capgemini - Cybersecurity Solution Architect (SA)
Location: New Jersey • Duration: 04/2021 – 03/2022
Member of the Cyber Consulting Team, serving as a People Manager within the Center of Excellence (COE)
Solution Architects. Worked with Fortune 500 & 100 companies to develop enterprise security solutions.
●
Developed proposals for effective solutions supporting infrastructure security and risk remediation systems.
●
Created solution packages which includes ORALS, Deal Reviews, Proposals and Sign Offs.
●
Identified, designed, and deployed cybersecurity solutions for a broad range of industries, including
Cloud, OT, Finance, and Retail. Some according to compliance frameworks such as SOC 2, ISO 27001,
and/or GDPR
●
Worked with Capgemini's wider business to develop standards, choose appropriate technology solutions,
and enable complete integration with or migration of clients’ environments.
LEWIS, ALICIA
2
●
Identified, recommended, and coordinated training sessions to coach other teams about securityrelevant technologies, processes, and tools.
●
Created new solutions that met industry security regulations and developed plans for the implementation
of any new compliant systems platforms.
●
Developed and implemented Cloud Security Evaluation services based on current cloud standards.
●
Developed and identified Statement of Work (SOW), overall pricing and Contract coordination.
Capgemini - Cybersecurity Manager
Location: New Jersey • Duration: 02/2019 – 03/2021
Managed clients with the implementation of recommendations from Intelligence Driven Defense (IDD) and
Knowledge of Security Framework (SF) assessments. Executed Security Operations Center (SOC) services and
security assessments across a variety of organizations.
●
Demonstrated value to clients in network defense advancements and strengthened relationships with
internal/external partners through successful cybersecurity consulting engagements across various
industries.
●
Led contracted Security Operations Center (SOC) transformations by providing on-site client consulting,
development of processes/procedures, and recommendations to improve security posture.
●
Led delivery teams of 4 - 6, as a people and delivery manager, providing guidance, coaching, and
mentoring to ensure information security success.
●
Managed teams of consultants responsible for building information security program strategic roadmaps,
enterprise security policies, technical architectures, cybersecurity workflows, technical runbooks, and
procedures to provide comprehensive guidance on prioritizing and executing initiatives for long-term
program success.
●
Drove information security projects across client enterprise environments in support of security
transformation activities.
●
Delivered information security briefings to client executive management, technical leadership, and
industry analysts.
●
Provided strategic cybersecurity program direction and incident response consultation to client
executive leaders.
●
Conducted Information Security assessments of vendor solutions being considered for procurement.
●
Worked closely with business units to remediate assessment recommendations through change
management and business processes.
●
Developed overall information security leadership Out briefs, Kickoffs, metric packages, and current state
assessments.
●
Initiated and/or managed Vulnerability Assessments across the client’s businesses, including reviews and
process/policy changes and identification of risk and recommendations of potential mitigation steps.
●
Worked directly with departmental managers to address and remediate all vulnerability and risk issues in
line with company and compliance policies.
●
Provided information security requirement guidance to businesses on hosted third-party services/secure
data exchanges.
●
Reviewed and updated information security policies, standards, and procedures to ensure
confidentiality, integrity, and availability of systems and data.
●
Reviewed Requests for Proposals (RFPs) for procurement of cybersecurity products and services.
●
Led Threat Intelligence and Threat Hunt engagements as a Cybersecurity SME.
LEWIS, ALICIA
3
●
Produced risk reports and metric packages for client engagements.
Lockheed Martin, Leidos – Cybersecurity Consultant
Location: New Jersey • Duration: 08/2016 – 02/2019
Performed technical security assessments i.e., risk, compliance, or Information Security maturity, remediation
management and comprehensive security consulting services for Fortune 500 & 100 companies, commercial
clients and internal business research projects.
●
Conducted Advanced Persistent Threat (APT) Simulation Project, working with clients.
●
Assisted clients with the implementation of recommendations from Intelligence Driven Defense® and SF
assessments.
●
Participated in contracted SOC transformations by providing on-site client consulting, development of
processes/procedures, and recommendations to improve security posture.
●
Consulted on processes and procedure alignment to frameworks such as SOC 2, ISO 27001, and/or
GDPR.
●
Developed response plans, playbooks, exercises, communications plans, and client relationships.
Consolidated Edison - Cybersecurity IT/OT Manager
Location: New York • Duration: 12/2013 – 08/2016
Managed Information Security Network Operations Center Team and overall Information Security; worked in Risk
and Threat Detections Business Teams; Project Management Lead for segmentation and islanding projects of
network systems.
•
Configured and implemented Splunk Security Information and Event Manager (SIEM).
●
Worked with substations to prepare for North American Electric Reliability Corporation (NERC) Critical
Infrastructure Protection (CIP) V5 compliance.
●
Worked with Federal agencies on information-sharing and network investigations.
●
Maintained roles within Threat Detection and Risk Management Teams.
●
Participated and Coordinated Annual Incident response exercises: GridEx, C-CIRT.
●
Coordinated IT risk assessments performed internally and by third-party consultants.
●
Responsible for drafting a quarterly vulnerability audit and presenting the results to management.
●
Participated in contracted Security Operations Center (SOC) transformations by providing on-site client
consulting, development of processes/procedures, and recommendations to improve security posture.
●
Worked closely with business units to collect/analyze documentation required for vendor risk reviews.
●
Ran monthly Corporate Cybersecurity Team meetings.
●
Delivered periodic presentations to management on cybersecurity issues, proposed standards (e.g.,
NERC CIP or ISO 27001), and industry trends.
●
Collaborated with regulatory resources to identify and understand emerging threats and vulnerabilities.
●
Developed and maintained a corporate cybersecurity awareness program using various communication
methods to educate employees and raise awareness of cybersecurity issues at work and at home.
●
Developed and maintained 3rd Party Risk program as a cyber liaison with procurement teams.
●
Participated as Subject Matter Expert (SME) on Department of Energy (DOE) Electricity Sector Cyber Risk
Management Maturity Model Drafting Team.
LEWIS, ALICIA
4
●
Participated in various Electricity Information Sharing and Analysis Center (E-ISAC), Grid Security Exercise
(GridEx), and Crisis and Emergency Risk Communication (CERC) Drills.
●
Worked with Information Security business groups to comply with security guidelines and data loss
prevention.
●
Worked with Information Security to create repository for external auditors to acquire documentation and
support.
●
Implemented and managed security PII/PHI projects with external devices, secure printing, file monitoring.
●
Configured and managed Intrusion Detection System (IDS), Intrusion Prevention System (IPS) security tools.
US Navy – Navigation
Locations: New Jersey, Virginia, California
Serve aboard USS Dwight D Eisenhower; answered directly to Officer and Executive Officers.
● Configure and operate satellite, GPS, and sonar systems for updates and upgrades Create and maintain
charts for daily navigation; Monitor operations and systems within bridge of aircraft carrier; Manned the Helm
and maintained courses at forward steering.
LEWIS, ALICIA
5
