Senior Information Technology professional with extensive experience interfacing between IT and different areas of a company – most notably legal, audit and compliance. Experience includes project management of long term and tactical implementations, information security management, and day to day end user computing support. Proven ability to understand the needs of a business from a technical and strategic basis and to establish teamwork environments to meet the defined objective within defined resource constraints. Work collegially with peers, subordinates and senior management.

• Founding member of the Global IT project office located in Zurich, Switzerland that provided IT guidance to the global CFO. Assembled and managed a technical team across different IT departments and business divisions to evaluate and define a single windows 2000 platform for the company to deployment for 80,000 users globally.

• Liaison between technical infrastructure group and internal/external auditors, consultants, legal and compliance to ensure internal controls were in place to meet stringent Sarbanes-Oxley requirements.

• Information security officer, Investment Services division of Morgan Stanley. Focus on daily information security operations, security reviews, and policy and user awareness.

• Managed project for the re-design of the global messaging backbone which linked all subsidiaries over a common transport and provided a central directory. This created better throughput and a richer communications environment. Worked closely with outside vendors to determine best solutions for anti-virus and directory services.

• Responsible for the desktop, server and LAN environment of 300 users in the corporate center. Implemented a standard Windows build within a secure VPN. Resulted in reduced cost of support and enhanced cross organizational computing power. Worked with internal and external suppliers of services and negotiated SLA’s as needed. Created monthly reports for executive management that showed progress on current projects and highlighted operational support issues.

Consulting 3/2006 – Present

• Private consulting practice with focus on information security, electronic messaging and overall project management. Provide infrastructure support to small and mid sized companies. Current contracts include server consolidation, workstation upgrades, software support, backup procedure review, intranet redesign and data recovery.

Nomura Securities International – New York
Vice President – Corporate Technology 2/2005 – 3/2006

• SOX liaison – I was single point of contact for all technology infrastructure related audit items. Managed the relationship between the technology teams and our external auditors and internal auditors, legal and compliance departments. Responsible for creating and reviewing policies, standards and procedures related to controls of the technology infrastructure. Focus on information security and compliance.

• Performed gap analysis to determine where electronic data existed and whether proper backup and retention policies and procedures were in place.

• Supported the legal and compliance groups on technology related to electronic records retention – including email and shared electronic file storage.

Morgan Stanley – New York
Vice President – Information Security Officer 3/2004 – 2/2005

• Managed the day to day activities for the information security department. Including maintenance of department website and document management system.

• Delivered security presentations to the end user community.

• Consulted with other areas of the firm on security related issues. Included review of new or changing business, technology & laws. Information

• Developed incident management process by engaging relevant partners (Corporate Security, IT Security, Law) in the project, creating a process and information flow and working with a core team to formalize the proposal.

• Private consulting practice with focus on data security, electronic messaging and overall project management. Provide research and analysis on current trends in computing to companies and Venture Capitalists. Loffman Consulting also engaged in volunteer work for non-profit organizations assisting in upgrades and maintenance of computer systems.

Credit Suisse First Boston – New York 1992-2002
Director – Information Security: 02/02 – 09/02

• Managed the Information Security Policy team which had global responsibility for the creation, communication, and maintenance of all policy impacting the 23,000 employees of the company. Brought the firm into compliance with several internal audit requirements and federal regulatory commitments. Worked closely within IT security team to ensure technology choices were consistent with policy.

• Managed the Information Security policy team. Responsible for creating and maintaining policy as well as communicating policy across all divisions of the company. Rationalized over 300 pages of policy into a more concise and readable 100 page document. Posted all information on company intranet.

• Initiated a global new hire orientation program impacting all regions to inform new employees of their responsibilities and educate them on the subject of Information Security. Allowed for consistent message to be conveyed to all employees globally.

• Member of the IT Security Control Committee. This group bi-monthly to review current audit, risk and security issues that were deemed critical by management. Formulated tasks to close open audit points and mitigate security concerns.

Director - Group IT Office: Zurich, Switzerland 1998 – 2002

• Director of IT for Corporate Center. Supported 300 users over five locations. Migrated windows desktop to standard Windows 2000 build to provide more efficient computing platform and standardize with rest of the company.

• Founding member of the Group project office. Responsible for overseeing all IT projects that affected one or more of the business divisions of the company. Focused on electronic messaging, PKI, Meta-directory, e-commerce and information security.

• Managed project to determine feasibility of deploying standard Windows desktop to 80,000 desktops worldwide. Arranged technical workshops for requirements definition. Managed 1.5 million dollar budget for definition phase and pilot phase of the project.

• Created and managed the Central Addressing and Naming Authority (CANA) which centrally managed DNS, IP Address and domain name adds, changes and deletes. Worked with network engineering professionals to deliver a usable system to track IP information across all business units.

Vice President - Information Services: New York 1996 – 1998

• Designed and managed global migration plan from cc:Mail and Unix based Z-mail to Microsoft Exchange. Upon implementation worked closely with global IT staff to ensure proper execution. Also worked closely with outside consultants hired to augment staff for parts of the project.

• Managed the production messaging environment globally. Group of 20 people responsible for 12,000 user mailboxes. Enterprise system was composed of Lotus cc:Mail, Microsoft Exchange and SMTP based messaging systems routing through a Lotus message Switch.

• Replaced mainframe based message switch with UNIX based product. Coordinated effort between NY and Zurich based messaging groups. Provided enhanced messaging capability. Routed multiple mail systems through the backbone switch. First truly global email backbone implementation for the firm.

• Created and managed a dedicated support group for senior management of the firm. Researched and recommended computing and communications technology solution for senior level executives. Provided one on one training and support of desktop and laptop computers and applications. Developed global model for the group and rolled out to London and Tokyo.

Assistant Vice President - Information Services: New York 1992 - 1996

• Acted as a liaison between end users and application development teams. Involved in business needs analysis, research, development, and testing of PC based applications in Windows and Client Server environment. Experience with Equity, Fixed Income and back office departments.

• Designed and implemented a solution for worldwide access to the firm’s global financial reporting system and coordinated the implementation effort. Estimated 100K to 200K savings to the firm.

• Member of first global messaging team. Responsible for LAN based cc:Mail application. Created first global connection for email between New York and Tokyo cc:Mail systems. Handled cc:Mail connectivity to firm’s mainframe based messaging switch, Soft*Switch Central. 2^nd and 3^rd level support for approximately 25 cc:Mail message stores.

Worked in the Management Consulting Services division focused on stand alone and networked PC based solutions for accounting applications and document management. Managed PC support internally for the Firm. 

Brokered Guaranteed Investment Contracts (GICS). Acted as in house IT support.

Masters of Business Administration 1993
Baruch College, City University of New York
Major: Computer Information Systems

Bachelors of Science 1986
University of Southern California
Major: Biology

Cycling, skiing, restaurant owner

Board of Directors, Teaneck Junior Soccer League, Teaneck, New Jersey
Coach Little League and Soccer
Jewish Braille Institute – New York, NY – Volunteer reader/director books on tape