ERIC DUNCAN

Led strategic IT and Cybersecurity initiatives to align with business objectives, fostering growth and trust while optimizing corporate asset availability and integrity.

• Negotiated and optimized primary managed service provider (MSP) contracts, achieving over $900,000 in annual savings.
• Architected and deployed a Software-as-a-Service (SaaS) Electronic Health Record (EHR) application for a county health department, reducing operational costs and eliminating asset, licensing, and security management burdens.
• Streamlined Identity and Access Management (IAM) workflow from a multi-week, multi-user process to a single, automated operation using RESTful APIs, web-based forms, and PowerShell.
• Oversaw the revision of internal policies and procedures, ensuring robust adherence to HIPAA, NIST, PCI, and HITRUST compliance frameworks.
• Developed custom data analytics and automated revenue cycle data extraction, streamlining reporting and integrating disparate systems.

Delivered comprehensive in-classroom and remote instruction, guiding students through intensive IT certification programs to foster skill mastery and employment readiness.

• Delivered engaging instruction on critical business computing and cybersecurity topics to diverse groups of students.
• Prepared students successfully for CompTIA CySA+, Security+, Linux+, Network+, and A+ Certifications, boosting their career readiness.
• Guided students to achieve Axelos ITIL Foundation Certification, enhancing their professional qualifications.

Provided expert IT infrastructure, security, and auditing consulting services as owner of kalyeri, delivering tailored solutions to diverse clients.

• Advised diverse clients on strategic IT infrastructure enhancements, optimizing system performance and reliability.
• Conducted comprehensive security assessments and audits, identifying vulnerabilities and implementing robust protective measures.
• Developed tailored IT solutions and compliance strategies, ensuring client adherence to industry best practices and regulatory standards.

Oversaw daily IT operations, security, and team management, modernizing business processes with cost-effective technology and security solutions for the organization and physician-owned practices.

• Reduced redundant application costs and unstructured data storage by 50% through the implementation of an integrated enterprise-wide CRM, Service Desk, and Project Management suite.
• Enhanced cybersecurity posture through expanded awareness training, system monitoring, and vulnerability management, resulting in reduced cybersecurity insurance premiums.
• Designed and implemented a private cloud Disaster Recovery solution, enhancing organizational resilience and minimizing unscheduled downtime costs.
• Led the development and deployment of a budget-neutral, multi-phased remote work infrastructure, ensuring secure business continuity during pandemic-induced disruption.

Managed Solution Architect, Storage, Systems Engineering, Public Cloud, VMware, and IAM Teams for the regional level-one trauma Academic Medical Center.

• Optimized infrastructure budget by auditing license usage and decommissioning legacy systems, applying LEAN methodology to revise internal processes.
• Established an organizational-wide Cybersecurity Council, enhancing enterprise-wide cyber risk identification, reporting, remediation, and mitigation.
• Successfully managed a multi-year Microsoft 365 migration project, ensuring seamless transition and adoption.
• Directed a comprehensive infrastructure reinvigoration project, encompassing new server architecture, storage, backups, and data center modernization.

Orchestrated collaboration between IT and Enterprise Risk and Compliance departments to audit adherence to internal bank protocols and regulatory compliances.

• Orchestrated collaboration between IT and Enterprise Risk and Compliance departments, auditing adherence to internal bank protocols and SOC (SSAE 16), PCI, SOX, GLBA, and EY compliances.
• Implemented and maintained Data Loss Prevention (DLP) solutions across the North American region, safeguarding sensitive data.
• Administered Tenable applications, bolstering the vulnerability management and remediation program.
• Supervised the integration and continuous monitoring of RSA SIEM, enhancing security event management capabilities.

Educates participants on business computing and cybersecurity principles, fostering essential skills for career advancement.

• Delivered engaging instruction on critical business computing and cybersecurity topics to diverse groups.
• Mentored participants in practical applications of cybersecurity best practices and business technology.

Provided virtual CIO leadership and IT support, enhancing technological capabilities and operational efficiency for the health center.

• Offered strategic IT guidance as a vCIO, aligning technology initiatives with organizational goals for the health center.
• Provided essential IT support, ensuring reliable and secure operation of critical health center systems.