Curtis Rebelein, Jr., CISSP, OCP
  I am a Security Director with over 25 years of experience that span across many facets of information technology.

I have extensive experience in leadership, security and network architecture, security audit and compliance, software development, UNIX and database administration, and various other related fields. Specific experience includes designing and building in-depth architecture solutions with an emphasis in high & maximum availability solutions which include all facets of technology (network, security, presentation & application servers, databases, data storage solutions, etc). I also have a rich background in network security including firewalls, IDS/IPS, event correlation, and related technologies.

With my varied experience I have a unique end-to-end vision and understanding of data and technology from the raw storage to end user presentation including various regulatory and other data security concerns. My personal passion for both technology and security have also proven to be major assets helping to bring about success in complex organizations.
Perforce Software Minneapolis, MN Aug 2019 Present
Director of Product Security
  Responsible for security initiatives across all products in the Perforce portfolio
  Manage compliance programs for an array of producs across several disciplines (including PCI-DSS, SOC2, ISO 27001, ISO 9001, MPAA TPA, and others)
  Internal security SME that consults with customers to help establish specific product implementation details to minimize risk and data exposure based on the specific needs of the customer
  Work with internal legal councel on policies, proceedure, contracts, incident reports, and other related documents to offer insight from a security risk management standpoint
  Responsible for external customer surveys and assessments across all product lines
Target Corporation Brooklyn Park, MN Sep 2014 Sep 2019
Engineering Consultant
  PCI Compliance auditing and remediation for our managed platforms
  Security architecture and engineering for future platforms (design & implementation)
  Involvement in POCs & related activities to drive migration to a DevOps model on various platforms
  Consult with other internal teams to close security audit findings
  Work with management on security related product lifecycle management tasks (ex; PCI, SSL, TLS)
  Devise a process for secure secrets management across the enterprise with a specific focus on key-0 challenges in dynamic autoscaling environments
  Provide mentoring to colleagues pertaining to security, Unix, database and other topics
  Perform data lifecycle analysis to assure proper handling of sensitive information
  Manage security operations and inflow for,, and related environments
  Architect enterprise solutions to improve database security (dynamic data masking, tokenization, etc) across multiple database platforms (Oracle, PostgreSQL, Teradata, DB2, MS SQL, etc)
  Member of the Target Security Ninja program (specialized security SME)
Broker Exchange Network Rochester, MN Aug 2013 Sep 2014
Chief Information Officer (CIO)
  Lead the IT department's operational and strategic planning, including fostering innovation, planning projects and organizing and negotiating the allocation of resources.
  Manage the deployment, monitoring, maintenance, development, upgrade and support of all IT systems, including telecommunications, hardware, software, peripherals and related equipment.
  Benchmark, analyze, report on and make recommendations for the improvement and growth of the IT infrastructure and IT systems.
  Manage financial aspects of the IT department, including forecasting, purchasing, budgeting and budget review.
  Develop and implement all IT policies and procedures, including those for architecture, security, disaster recovery, standards, purchasing and service provision.
  Negotiate and administer vendor, outsourcer and consultant contracts and service agreements.
  Manage IT staffing, including recruitment, supervision, scheduling, development, evaluation and disciplinary actions.
  Establish and maintain regular written and in-person communications with the organization's executives, department heads and end users regarding pertinent IT activities.
UnitedHealth Group, OptumInsight Eden Prairie, MN May 2012 Aug 2013
Senior Data Security Architect
  Architect solutions to solve complex security access controls Specialize in advanced security controls in data warehousing environments
  Devise methods to accommodate complex column & row level security Architect solutions for large-scale dynamic data masking
  Perform in-depth cost/benefit analysis & comparison against various solutions Review & assist with remediation of audit findings
  Evaluate various security products Participate, as an instructor, in a security awareness training effort
  Clearly communicate & present complex security topics to all levels of the organization, including Sr. Management  
Medtronic, Inc. Fridley, MN Jan 2008 May 2012
Principle IT Technologist, Network Security
  Maintain CheckPoint Firewalls Evaluate various security products
  Serve as a team UNIX Administrator & DBA Serve as an internal security consultant
  Responsible for system backups & DR planning Write & maintain Standard Operating Procedures for various tasks
  Design & build tools for audit compliance Architect new network solutions with a focus on security & high availability
  Automate and streamline redundant tasks  
UnitedHealth Group, UHT Plymouth, MN Nov 2004 Jan 2008
Senior Security Engineer, Security Services
  Automate tasks for SOX/HIPAA compliance Evaluate various security products
  Maintain Dragon IDS & Cisco IPS devices Maintain CheckPoint & Cisco ASA firewalls
  Serve as an internal security consultant Develop security and automation tools
  Maintain Intellitactics & MARS SEM environments Serve as a team UNIX Administrator & DBA
  Responsible for system backups & DR planning  
Oracle OCP (Oracle Certified Professional) Oracle Nov 2007 Present
Oracle OCA (Oracle Certified Associate) Oracle Jun 2007 Present
CISSP (Certified Information Systems Security Professional) ISC2 Jun 2005 Jun 2023
Oracle University CBT Sep 2015 Sep 2015
  Oracle Database 12c: New Features for Administrators Ed 2  
Oracle University Bloomington, MN Jul 2009 Jul 2009
  Oracle Database 11g: Real Application Clusters (RAC) Administration  
Fishnet Security St Paul, MN May 2009 May 2009
  CheckPoint Certified Security Expert Plus NGX -
    CheckPoint Security Administration NGX III
Oracle University Bloomington, MN Jun 2007 Jun 2007
  Oracle Database 10g: Administration Workshop II  
Intellitactics Plymouth, MN Dec 2006 Dec 2006
  Intellitactics Security Manager Advanced Administration  
Priveon Plymouth, MN Nov 2006 Dec 2006
  Implementing Monitoring, Analysis, and Response System (MARS)  
Oracle University Bloomington, MN May 2006 May 2006
  Oracle Database 10g: Administration Workshop I  
Cisco Systems Bloomington, MN May 2006 May 2006
  Implementing Cisco Intrusion Prevention Systems  
CheckPoint Software Tech Ltd Mpls, MN Dec 2005 Dec 2005
  CheckPoint Certified Security Expert NGX -
    CheckPoint Security Administration NGX I
CheckPoint Certified Security Expert NGX -
    CheckPoint Security Administration NGX II
Inver Hills CC Inver Hills, MN Sep 2002 Jun 2003
  Cisco Certified Network Professional -
    Building Scalable Cisco Internetworks
Cisco Certified Network Professional -
    Building Cisco Multilayer Switched Networks
  Cisco Certified Network Professional -
    Building Cisco Remote Access Networks
Cisco Certified Network Professional -
    Cisco Internetwork Troubleshooting
University of MN Duluth, MN Sep 1998 Jan 2001
  Majors in Computer Science, Math, and Physics