Brian

Piggott

Cybersecurity leader with over 20 years of Information Technology experience, driven by real world challenges.

About me

I grew up in a small Christian community on a farm. Being raised on a farm, I learned early the values of hard work, resilience, and stewardship. From cultivating crops to caring for animals, farming taught me patience, adaptability, and the importance of sustainability. Alongside practical skills like carpentry and community leadership, I embraced integrity and fairness as the core principles on my skills. These lessons continue to guide my career journey and influence how I approach Information Security.

I believe my background has helped me to become a Information Security/Privacy Leader whose qualifications include a Master’s Degree of Science in Information Assurance and a vast knowledge of large networks and Information Security. I have over 16 years of experience in the creation and deployment of secure solutions for large governments, universities, healthcare systems, law enforcement, and a Fortune 50 organization.

Accomplishments

SYSTEM IMPLEMENTATIONS & DESIGN

Designed, secured, and documented systems for the State of Michigan (SOM) that cost hundreds of millions to build that also integrated with other SOM systems. The systems protect over 10 million citizens tax, driver licenses, criminal records, and all other kinds of confidential data.
Designed, built, and supported intellectual property systems that protect over 1 billion dollars of intellectual property for The Dow Chemical Company, a Fortune 50 company,

SECURITY OPERATIONS CENTER & SUPPORT

Enhanced the SIEM configurations to detect 75% more events and eliminated most noise.
Expanded the use of Linux Opensource tools to preform white hat pen testing.
Implemented Microsoft security features to all the organizations devices.
Built a incident response for cybersecurity systems.
Implemented a state of the art scanning tools that can servers, server baselines, pc's., pc baselines, and code.

GOVENENANCE, RISK, AND COMPLIANCE

Built, configured, and maintained a GRC tool (no cost) with several integrations. I also developed the business processes around the tool and cut back on manual creation of system documentation.
Wrote over 40 moderate and high security risk assessments that received the authority to operate that are worth hundreds of millions of dollars.
Wrote 6 system security plans for highly sensitive data (data classified based on FIPS-199) that involved CJIS, IRS Publication 1075, PCI, and HIPAA

COMMUNITY WORK, NETWORKING, AWARDS, AND BELIEFS

Former president and board member for the Michigan Information Systems (MISA)
Continued Membership of MISA
2018 Winner of the Microsoft Hackathon (Government).
Member of Information Systems Security Association.
Member of InfraGard.
Member of St. Mary's Church in Westphalia, Michigan

Work Experience

CHIEF SECURITY OFFICER

State of Michigan, Legislative Branch, Auditor General / December 21 - Present

Responsible for overseeing and implementing an organization's information security strategy, policies, and programs to protect its digital assets and infrastructure from cyber threats for the 10 million citizens of the State of Michigan. Directs security operations, risk management, compliance, security awareness training, and incident response activities to ensure the confidentiality, integrity, and availability of data and systems.

ENTERPRISE ARCHITECT/MANAGER

State of Michigan, Executive Branch, Department of Technology, Management Budget, Agency Services for Michigan State Police and Department of Military Veteran Affairs/ August 2015 - December 2021

Oversees all aspects of an organization's IT security and architecture department, including infrastructure, operations, and support. Manages IT projects, budgets, and personnel to ensure effective delivery of technology solutions that support business objectives and enhance operational efficiency. Designs and oversees the implementation of IT systems and infrastructure to meet organizational needs.

IT OPERATIONS DIRECTOR

UM Health-Sparrow Eaton/ June 2014 - August 2015

Lead IT initiatives within healthcare settings, ensuring seamless integration of technology solutions with clinical operations. Manages healthcare IT systems, oversees electronic health records (EHR) implementation, and ensures compliance with regulatory standards such as HIPAA. Collaborates with medical staff and IT teams to enhance patient care delivery through innovative technology solutions

LEAD TECHNICAL SECURITY SPECIALIST

The Dow Chemical Company /February 2011 - June 2014

Lead technical security initiatives within IT departments, overseeing implementation and maintenance of security systems, networks, and software solutions. Provides advanced technical support, troubleshooting complex issues, and ensuring optimal performance of IT security infrastructure. Guides and mentors technical teams, collaborating with stakeholders to align security technology solutions with organizational goals.

INFORMATION SECURITY OFFICER/ LIASION

State of Michigan, Executive Branch, Department of Technology, Management Budget, Michigan Cyber Security assigned to Treasury, Lottery, Gaming Control Board/ August 2008 - February 2011

I was responsible for shielding sensitive data for systems from cyber threats for all 10 million citizens of Michigan. I had to devise and implement strategies to fortify defenses, conduct risk assessments, and ensure compliance with security standards. It was also import to be vigilant and proactive to monitor for breaches, investigates incidents, and educates teams to promote a culture of security awareness. In the ever-evolving landscape of cyber threats, my role was pivotal in safeguarding organizational integrity and trust.

Certifications

Comptia Security +

Completed in 2010. CompTIA Security+ is a certification validating foundational knowledge in cybersecurity. It covers essential principles for network security and risk management, focusing on identifying and addressing security vulnerabilities. Holders demonstrate skills in implementing secure network systems, conducting threat analysis, and ensuring compliance with cybersecurity policies and procedures.

Comptia A+

Completed in 2010. CompTIA A+ is a certification that validates foundational skills in IT support and technical knowledge. It covers areas such as hardware, operating systems, networking, security, and troubleshooting. Holders demonstrate proficiency in installing, configuring, and maintaining devices, PCs, and software across various platforms.

Education

Master of Information Assurance, MSIA

Davenport University / 2009 - 2013

Biometric Security/Information Assurance, BAS

Davenport University / 2006 - 2008

Information Systems, AAS

Davenport University / 2004 - 2006

To review my full resumes please click on the resume you are interested downloading. These files are encrypted and have digital rights management turned on them. Please email me for the password by clicking the Email Me button below. I have also added buttons for my blog and references as well.

My Blog

Email Me

References at LinkedIn

Curriculum Vitae

Private Business Resume

Public Company Resume

“The progressive development of man is vitally dependent on invention.”

Brilliant mind, Nikola Tesla