About Me

I have chosen to design this site to communicate some of my skills and abilities, rather than just be another digital copy of my resume. Which can still be downloaded from the site.

I will identify some of my signature competencies as well as some of the work I have performed in those areas. I will list a work history but only company name, title and time employed.


SIGNATURE COMPETENCIES

Information Security | IT Project Management | Vendor Management | Team Building and Leadership | Cybersecurity | Cloud Migration Projects | Strategic Planning | Budgeting and Forecasting | Network design and support | Active Directory | Policy and Procedure (creation and implementation) | Process Change and Improvement | Risk Assessment and Mitigation

Contact Details

Lonnie Lehman
1366 Beachview Rd
Pingree Grove, IL 60140 US
(847) 845-2269 Mobile
Lonnie@LonnieLehman.com

Download Resume

Education

Capella University

Master of Science- Info Assurance and Cybersecurity: Specialization in Health Care Security June 2022 GPA 4.0 / 4.0

Bachelor of Science-Information Technology March 2020 GPA 3.9 / 4.0

Certifications

  • (ISC)2 - CISSP - Awarded June 2021 | Current Expiration June 2027
  • Microsoft - MCP | MCITP | MCTS | MCSA
  • ITIL - 3.0 Foundation
  • CompTIA A+ Certified
Additional training (certificate)
  • SCCM
  • IT Project Management
  • HIPAA

Work

Dexter Magnetic Technologies

IT Manager July 2024 - Present

DOT Security

Virtual Chief Information Security Officer (vCISO) January 2024 - June 2024

Crusader Community Health

Director of Information Technology and Cybersecurity Operations January 2023 - January 2024

Ingenium Aerospace

IT and Cybersecurity Manager September 2021 - January 2023

Lutheran Life Communities

Corporate Director - IT May 2007 - January 2021


Skills and Abilities

SIGNATURE COMPETENCIES

Information Security

• Disaster Recovery Solutions: Expert in initiating and establishing multiple disaster recovery solutions to ensure business continuity.
• Access Control Systems: Proficient in implementing file-level access control systems to restrict, monitor, and report access, enhancing data security.
• Encryption Standards: Skilled in deploying and maintaining encryption standards across multiple organizations, ensuring strong encryption for data in transit and at rest, including compliance with FIPS 140-2 standards.

IT Project Management

• IT Virtualization: Successfully led the full virtualization of an IT environment with over 95 physical servers, transitioning first to a Cisco UCS with a VNX SAN, and later to a Scale Computing hyper-converged system using VMware, Hyper-V, and proprietary hypervisor software.
• Cloud Conversion: Expertly managed the cloud conversion of a multi-site phone system, including a call center, from on-premises. This project involved replacing all handsets, analog adapters, and implementing new call center software.
• Backup Solution Optimization: Transformed the backup solution from a manual process with external hard drives and a local courier service to a fully redundant, multi-site, fully automated solution. This increased security for backups and reduced costs by approximately 25% per year.

Vendor Management

• Third-Party Support Management: Expertly selected and managed all third-party support partners for information technology, including telecommunications, backup, and print management.
• HIPAA Compliance: As a HIPAA security officer, reviewed Business Associate Agreements (BAA) to ensure compliance with organizational needs, policies, and regulatory requirements.
• MSP Management: Successfully managed Managed Service Providers (MSPs) in multiple environments, including contract negotiation, Service Level Agreements (SLAs), and the creation of playbooks and documentation.

Team Building and Leadership

• Team Development: Successfully hired, coached, and developed multiple highly functional, cross-trained internal teams.
• Training Sponsorship: Personally sponsored team member training materials and certifications, ensuring professional growth even when organizational support was lacking.
• Escalation Management: Consistently served as a point of escalation for customers and team members, providing support and resolution regardless of the matter or time of occurrence.

Cybersecurity

• SIEM Implementation: Successfully implemented multiple Security Information and Event Management (SIEM) systems, creating rule sets for reporting, alerting, and remediation of threats across various environments.
• Cybersecurity Training: Utilized and implemented various Learning Management Systems (LMS) to educate staff on state-required education, cybersecurity, phishing, security awareness, and DoD requirements, either by creating custom content or using vendor-provided materials.
• Email Security Solutions: Deployed multiple email solutions for scanning, filtering, and protecting end-user emails to prevent infections from phishing or spam. Additionally, created email archives for legal compliance and ensured the proper configuration of DMARC, DKIM, and SPF records.

Cloud Migration Projects

• Voice/Call Center Migration: Successfully migrated voice and call center systems to the cloud, ensuring seamless communication and enhanced customer service.
• Disaster Recovery Solutions: Implemented multiple cloud-based disaster recovery solutions to ensure business continuity and data protection.
• DNS Management: Expertly managed the migration of DNS services to the cloud, enhancing reliability and performance.
• Electronic Health Record (EHR) ERP System: Led the cloud migration of Electronic Health Record ERP systems, improving accessibility and compliance with healthcare regulations.
• Email Migration: Successfully transitioned email systems to the cloud, enhancing security, accessibility, and collaboration.
• Server Infrastructure: Managed the migration of server infrastructure to the cloud, optimizing performance, scalability, and cost-efficiency.

Strategic Planning

• Strategic Technology Planning: Led comprehensive technology planning for $200 million greenfield campus and multiple remodel projects, ensuring seamless integration of advanced systems and infrastructure to support organizational growth and operational efficiency.
• Market Trend Analysis: Utilized market trends and new technology forecasts to plan for new integrations, including one of the first failover DNS solutions before SD-WAN was viable, and designed campuses to support multiple technologies with diverse entry paths for voice and data services.
• Strategic Technology Upgrades: Led the planning and execution of comprehensive technology upgrades, aligning with organizational goals and market trends to enhance performance, scalability, and security.

Budgeting and Forecasting

• Strategic Financial Planning: Developed a three-year plan that increased support staffing levels, enhanced services and functionality, and saved the organization approximately $125,000 annually.
• Long-Term IT Roadmaps: Created multiple three- and five-year information technology roadmaps to address evolving technology needs, including virtualization, cloud adoption, and regulatory and security changes.

Network design and support

• Greenfield Campus Network Design: Successfully accomplished the complete redesign and implementation of a multi-story, multi-building $200 million greenfield campus in Naples, FL.
• Network Segmentation Strategies: Expertly designed and implemented network segmentation strategies to meet regulatory compliance requirements and the organization's information security needs, maintaining distinct networks between trusted and untrusted segments.
• Wi-Fi Network Implementation: Designed and implemented a Wi-Fi network to support a nurse call system, ensuring it met the complexity, redundancy, and signal strength requirements.

Active Directory

• Group Policy Management: Configured and maintained Group Policies to enforce security settings, deploy software, and manage network resources effectively.
• Cross-Platform Audits: Conducted cross-platform audits for Active Directory objects and user permissions, creating processes to ensure accuracy and security.
• Active Directory Administration: Managed Active Directory domains, including creating, modifying, and deleting user accounts, groups, and organizational units (OUs) in on-premise, hybrid, and full cloud environments.

Policy and Procedure (creation and implementation)

• HIPAA Compliance: Created and implemented comprehensive IT department security policies, aligning with HIPAA regulations and NIST SP 800-53 standards.
• CIS Framework: Developed full sets of security policies in accordance with the Center for Internet Security (CIS) version 8 framework.
• NIST SP 800-171 (CMMC) Guidelines: Established and enforced information security policies and procedures aligning with NIST SP 800-171 (CMMC) guidelines.
• PCI DSS Compliance: Implemented information security policies and procedures to meet PCI DSS requirements as defined by the PCI Security Standards Council.

Process Change and Improvement

• Onboarding and Offboarding Processes: Developed and implemented comprehensive onboarding and offboarding processes to ensure new employees are configured with correct access and terminated employees are promptly removed from the system, revoking access to all systems.
• Technology Request Form (TRF): Introduced and implemented the "Technology Request Form" (TRF) to provide a consistent and documented method for staff at any level to request additional resources from IT services. This process included onboarding and offboarding, new technology requests (hardware or software), and rights and privilege changes for users.
• System Imaging Solutions: Implemented multiple system imaging solutions to enhance security by removing unnecessary applications and limiting systems to core applications needed for the organization.

Risk Assessment and Mitigation

• Comprehensive Risk Assessments: Conducted multiple internal risk assessments for HIPAA, CMMC, and PCI, and managed third-party assessors to develop action plans and fully mitigate identified risks.
• Incident Response Leadership: Served as the primary technical contact and led technical remediation for security incidents, acting as a liaison with the FBI, DoD, and Department of the Navy.
• Risk Register Management: Expertly managed risk registers, identifying and communicating risks to the appropriate stakeholders, enabling informed decision-making and optimal outcomes for the organization.

Honesty, Integrity and Trust

These are my core values and have been through my entire professional career, regardless of what position I held, I could be counted on to step up and complete whatever responsibility was assigned to me. Although difficult to express in writing, I have never held a position in which I did not advance with the organization, or have my roles and responsibilities dramatically increased.

Client Testimonials

  • I want to thank you again for getting my computer set up so quickly. It is working great and has all my old stuff in place where it should be. You are always quick to respond and have such a positive and professional attitude. I like what you say, every time you help someone, "Is there anything else I can do for you today?" You are a great role model to other staff. It is very refreshing keep up the great work.

    Susan Clapper - Human Resources Director

  • Lonnie, at his best, is articulate, yet never condescending. He can command a room while speaking to everyone’s level of understanding. Lonnie is the epitome of customer service as he handles stressful situations with patience, respect and even a little humor. Whether in the role of a leader, co-worker, trouble-shooter or friend, Lonnie shines through with integrity and grace!

    Jayme Bandel-Gray

  • Much thanks to Lonnie in IT. There was a problem with my phone and computer, it was not able to be fixed over the phone so Lonnie took the time to drive here on Christmas Eve from IL to fix it. Since everything for admissions runs through my computer you know what a nightmare it was. So with Lonnies help I will get both my admits today !!!!! There really is a Santa Claus. LOL Merry Christmas to all.

    Mikel Drobac RN - Nurse Liaison

  • A big THANK YOU to each of you. The professionalism each of you demonstrated on Saturday did not go unnoticed by board members and other key staff. Your hard work made the Leadership Summit a big success. That would not have been possible without your dedication and commitment to excellence. Your team work is one that establishes the standard that others should strive towards.

    Renee Deevey - VP HR/IT

  • Tomorrow is my last day of employment at Lutheran Life Communities. Before I leave, I wanted to take the time to tell you how impressed I am with Lonnie Lehman. In my three months at LLC, I have had the pleasure to work with Lonnie on several projects and issues. Lonnie approached each challenge with such enthusiasm and professionalism. Even when the issues were particularly frustrating and difficult to diagnose Lonnie persisted with grace, and a welcome dose of humor, until he found a solution. He always came through and is very, very good at what he does!

    Patti Steele - Foundation Operations Manager

  • What I like about you at your best is how well rounded you are as a leader. You have great depth and expertise in your chosen subject matter (which varies on a multiple of subjects to begin with!), but in strong leadership fashion the first thing you always do is listen…well and intently.

    Tim Buist