Healthequity
Application Security Architecture and Design and Engineering
Wageworks
Application Security Architecture and Design
Charles Schwab Dec 2013 - Jul 2019
Technical Director, Application Security
Paypal Apr 2009 - 2013
Manager, Information Security Policies and Standards and Security Training and Awareness Programs
American Express Oct 2005 - Feb 2009
Director,Cto Security Technical Excellence Center
Education:
Arizona State University 2003
Master of Education, Masters
Arizona State University 1997 - 2002
Master of Education, Masters, Education
Arizona State University 1997
Master of Science, Masters
Arizona State University - W. P. Carey School of Business 1993 - 1997
Master of Science, Masters, Information Systems
Arizona State University, Wp Carey School of Business 1985 - 1997
Bachelors, Bachelor of Science
Arizona State University 1991
Bachelors, Bachelor of Science
Skills:
Information Technology Pci Dss Information Security Management Information Security Security Risk Management Cissp Business Continuity Enterprise Architecture Sdlc It Strategy Governance Business Analysis Education Technical Course Development Curriculum Development Computer Security Network Security Risk Assessment Software Development Iso 27001 Analysis It Audit Security Awareness Information Security Awareness Itil Application Security It Management It Operations Data Center Enterprise Risk Management Information Assurance Identity Management Management Penetration Testing Testing Soa Security Management Enterprise Software Vulnerability Assessment Leadership Training Vulnerability Management Data Privacy Policy Program Management Access System Administration Security Policy Written Communication Cybersecurity Agile Methodologies
Interests:
Civil Rights and Social Action Education Environment Science and Technology Human Rights
Certifications:
Certified Information Systems Security Professonal (Cissp) Certified Information Security Manager (Cism) Certified Secure Software Lifecycle Professional (Csslp) (Isc)² Isaca
Us Patents
System And Method For Dynamic Security Provisioning Of Computing Resources
Mark Merkow - Tempe AZ, US James F. Petrone - Carefree AZ, US
Assignee:
American Express Travel Related Services Company, Inc. - New York NY
International Classification:
G06F 15/16 G06F 15/173 G06F 7/04
US Classification:
709229, 709226, 726 27
Abstract:
The present invention facilitates the dynamic provisioning of computing and data assets in a commodity computing environment. The invention provides a system and method for dynamically provisioning and de-provisioning computing resources based on multi-dimensional decision criteria. By employing specialized computing components configured to assess an asset and requestor of an asset, a provisioning engine is able to transform the input from the computing components into a specific configuration of computing resource provisioning and security controls. According to the rules and policies applying to a security domain, the provisioning engine may dynamically allocate computing resources in a manner that is both safe and efficient for the asset.
System And Method For Completing A Secure Financial Transaction Using A Wireless Communications Device
A system and method for completing a financial transaction using a wireless communication device is provided. A transaction authorization request is sent from the device to an issuer using SMS. An authentication message is sent from the issuer to the device, and a response is sent by a user of the device to confirm the identity of the user. Once the identity of the user is verified, a surrogate account number, in a bar code format, is sent to the mobile communication device to be read by a POS device to complete the financial transaction. A computer program product enabling the systems and methods described is also provided.
System And Method For Dynamic Security Provisioning Of Computing Resources
Mark Merkow - Tempe AZ, US James F. Petrone - Carefree AZ, US
Assignee:
American Express Travel Related Services Company, Inc. - New York NY
International Classification:
G06F 15/16
US Classification:
709229
Abstract:
The present invention facilitates the dynamic provisioning of computing and data assets in a commodity computing environment. The invention provides a system and method for dynamically provisioning and de-provisioning computing resources based on multi-dimensional decision criteria. By employing specialized computing components configured to assess an asset and requestor of an asset, a provisioning engine is able to transform the input from the computing components into a specific configuration of computing resource provisioning and security controls. According to the rules and policies applying to a security domain, the provisioning engine may dynamically allocate computing resources in a manner that is both safe and efficient for the asset.
System And Method For Dynamic Security Provisioning Of Computing Resources
Mark Merkow - Tempe AZ, US James F. Petrone - Carefree AZ, US
Assignee:
American Express Travel Related Services Company, Inc. - New York NY
International Classification:
G06F 15/16
US Classification:
709229
Abstract:
The present invention facilitates the dynamic provisioning of computing and data assets in a commodity computing environment. The invention provides a system and method for dynamically provisioning and de-provisioning computing resources based on multi-dimensional decision criteria. By employing specialized computing components configured to assess an asset and requestor of an asset, a provisioning engine is able to transform the input from the computing components into a specific configuration of computing resource provisioning and security controls. According to the rules and policies applying to a security domain, the provisioning engine may dynamically allocate computing resources in a manner that is both safe and efficient for the asset.
System And Method For Dynamic Security Provisioning Of Data Resources
The present invention facilitates the dynamic provisioning of data assets in a shared storage environment. The invention provides a system and method for dynamically provisioning and de-provisioning shared storage resources based on multi-dimensional decision criteria. By employing specialized computing components configured to assess a data asset and requestor of a data asset, a provisioning engine is able to transform the input from the computing components into a specific configuration of shared storage resource provisioning and security controls. According to the rules and policies applying to a security domain, the provisioning engine may dynamically allocate shared storage resources in a manner that is both safe and efficient for the data asset.
System And Method For Dynamic Security Provisioning Of Computing Resources
Mark Merkow - Tempe AZ, US James F. Petrone - Carefree AZ, US
Assignee:
American Express Travel Related Services Company, Inc. - New York NY
International Classification:
G06F 15/16
US Classification:
709229
Abstract:
The present invention facilitates the dynamic provisioning of computing and data assets in a commodity computing environment. The invention provides a system and method for dynamically provisioning and de-provisioning computing resources based on multi-dimensional decision criteria. By employing specialized computing components configured to assess an asset and requester of an asset, a provisioning engine is able to transform the input from the computing components into a specific configuration of computing resource provisioning and security controls. According to the rules and policies applying to a security domain, the provisioning engine may dynamically allocate computing resources in a manner that is both safe and efficient for the asset.
System And Method For Nameless Biometric Authentication And Non-Repudiation Validation
James Petrone - Carefree AZ, US Mark Merkow - Tempe AZ, US
Assignee:
American Express Travel Related Services Co., Inc. - New York NY
International Classification:
G06K 5/00 G06F 17/00
US Classification:
235382000, 235375000
Abstract:
A system, method, and computer program product for authenticating a requestor using a previously-stored biometric print. Records are stored in a database, where each record contains a previously-stored biometric print corresponding to an individual and is disassociated from an identity of the individual. An identifier and a biometric sample are requested from the requester. The identifier is then used to locate one of the plurality of records corresponding to the requestor. The requestor is authenticated if the biometric sample matches the previously-stored biometric print.
System And Method For Nameless Biometric Authentication And Non-Repudiation Validation
James F. Petrone - Carefree AZ, US Mark S. Merkow - Tempe AZ, US
Assignee:
American Express Travel Related Services Company, Inc. - New York NY
International Classification:
G06F 21/24
US Classification:
713186
Abstract:
A system, method, and computer program product for authenticating a requestor using a previously-stored biometric print. Records are stored in a database, where each record contains a previously-stored biometric print corresponding to an individual and is disassociated from an identity of the individual. An identifier and a biometric sample are requested from the requestor. The identifier is then used to locate one of the plurality of records corresponding to the requestor. The requestor is authenticated if the biometric sample matches the previously-stored biometric print.
Name / Title
Company / Classification
Phones & Addresses
Mark Merkow Manager
American Express Co Business Services, NEC
1216 E Commodore Pl, Tempe, AZ 85283 4807662131
Mark Merkow President, COO, Chief Executive, executive officer
Smart Card Security Users Group SCSUG
10030 N 25 Ave, Phoenix, AZ 85020 6027660228, 6027663174