Onye Ukoha’s team – Information Security

Praveen Ramineni

Praveen is a full-time employee who reports to Onye Ukoha. His service areas are Identity and Access Management, Digital Certificate Administration, Privileged Access Management and Single Sign-On. His vendor and application responsibilities include Azure, Microsoft Identity Manager (MOM), CyberArk, Digicert, Delinea, OneID and PKI.

Lawren Gaines

Lawren is a full-time employee who reports to Onye Ukoha. Her service areas are Email Security Administration, Unstructured Data Security, and eDiscovery. Her vendor and application responsibilities include Proofpoint, Varonis, and Office 365.

Jonathan Covell

Jonathan is a full-time employee who reports to Ray Dowling. His service areas are Vulnerability Management, Incident Response, M&A - Security, Security Awareness and Training. His vendor and application responsibilities include Tenable and Crowdstrike IR.

Dustin Schroeder

Dustin is a full-time employee who reports to Onye Ukoha. His service areas are Cyber Risk Management, NIST CSF Compliance, Metrics Reporting, and Policy Exception Management. His vendor and application responsibilities include AuditBoard – ITRM.

Jon Bevan

Jon is a full-time employee who reports to Ray Dowling. His service areas are Security Operations Center (SOC), Security Incident and Event Management (SIEM), Firewall Management, Email Security, Network Detection and Response, Web Application Firewall, Identity Threat Protection, and Cloud Access Security Broker (CASB). His vendor and application responsibilities include Google Chronicle, Crowdstrike, Netskope, Proofpoint, ExtraHop, Palo Alto, and Cloudflare.

Dee Onama

Dee is a full-time employee who reports to Ray Dowling. His service areas are Application Security, IT Audits, SOX Compliance, PCI Compliance, Identity & Access Governance, File Integrity Monitoring, and Vendor Assessments. His vendor and application responsibilities include AuditBoard - Cross Comply, Idea Caseware, Crowdstrike - FileVantage, Optiv SAaaS, and Third Party Trust.

Srinivasa Iyengar

Srinivasa is an offshore contractor who reports to Praveen Ramineni. His service areas are Identity and Access Management, Digital Certificate Administration, Privileged Access Management, and Single Sign-On. His vendor and application responsibilities include Azure AD, Microsoft Identity Manager (MIM), and Digicert

Jason Pickens

Jason is a full-time employee who reports to Jonathan Covell. His service areas are Incident Response, Security Awareness Training, Abuse Mailbox Administration, and Identity Threat Protection. His vendor and application responsibilities include Proofpoint TRAP, No Spam Mailbox, Risky Users, MFA, BEC, URL, attachment defense and Crowdstrike – IDP alerts

Joseph Croteau

Joseph is a full-time employee who reports to Jonathan Covell. His service areas are Vulnerability Management. His vendor and application responsibilities are tenable.

Nikki Mathis

Nikki is a full-time employee who reports to Dustin Schroeder. Her service areas are Cyber Risk Management, EDR Landscape Monitoring and Risk Mitigation, Legacy System Analysis and Remediation, and Policy Exception Management. Her vendor and application responsibilities include AuditBoard – ITRM.

Mark Vary

Mark is a full-time employee who reports to Jon Bevan. His service areas are Security Operations Center (SOC), Security Incident and Event Management (SIEM), Security Orchestration, and Automation and Response (SOAR) Cloud Access Security Broker (CASB). His vendor and application responsibilities include Google Chronicle, Google SOAR, and Netskope.

Darpan Vedi

Darpan is a full-time employee who reports to Jon Bevan. His service areas are Security Operations Center (SOC), Security Incident and Event Management (SIEM), Firewall Management, Email Security, Network Detection and Response, Web Application Firewall, Identity Threat Protection, Cloud Access Security Broker (CASB), File Integrity Monitoring (FIM), and Personal Firewall. His vendor and application responsibilities include Crowdstrike EDR, Crowdstrike - FileVantage, Crowdstrike - IDP, Google Chronicle, Google SOAR, Palo Alto Firewalls, and Palo Alto Prisma.

Karan Sharma

Karan is a full-time employee who reports to Jon Bevan. His service areas are Security Operations Center (SOC), Email Security administrator, Data Loss Prevention (DLP), and Insider Threat Management (ITM). His vendor and application responsibilities include various Proofpoint products and Azure Identity Protection.

David Lowery

David is a full-time employee who reports to Jon Bevan. His service areas are Security Operations Center (SOC), Firewall Management, Network Detection and Response, Web Application Firewall, Identity Threat Protection, Cloud Access Security Broker (CASB), and Cloud Native Application Protection Platform (CNAPP). His vendor and application responsibilities include ExtraHop, Cloudflare, Palo Alto Firewall, Palo Alto Prisma, and Prisma Cloud.

Frederick Gilliam

Frederick is a full-time employee who reports to Jon Bevan. His service areas are Security Operations Center (SOC), Email Security, eDiscovery, Network Detection and Response and Unstructured Data Security. His vendor and application responsibilities include Proofpoint, Microsoft eDiscovery, ExtraHop, and Varonis.

Anita Otchere

Anita kicked off her career in the dynamic field of IT audits and compliance here at Whitecap in September 2023, working under the guidance of Dee Onama. Her role spans several critical areas including SOX Compliance, PCI Compliance, Identity & Access Governance, and File Integrity Monitoring. She’s proficient with a range of specialized tools such as AuditBoard - Cross Comply, Crowdstrike – FileVantage, and SafePaaS, which help her navigate the complexities of her job. Outside of work, Anita’s interests are diverse: she loves traveling to new places and also enjoys immersing herself in different musical traditions, each hobby offering its own unique enrichments to her life.

Shellsea Hernandez

Shellsea began her career at White Cap in September 2021 and is a full-time employee who reports to Dee Onama. Her service areas include Project Management, Cyber Risk Management and Third Party Risk Management. During her tenure at White Cap she has played crucial roles in new software deployments (Resource Management and AuditBoard Cross Comply), process improvement to mature existing White Cap programs (Change Management and Third Party Cyber Risk Management), learned how to utilize Power BI for in depth reporting thought self-lead courses and obtained her Project Management Professional Certification in Feb 2023. Her current major project is crafting White Cap-specific Information Security Policies & SOPs aligning with the NIST Cybersecurity Framework, tailoring to reflect our unique processes and controls. Working closely with Onye to complete a thorough review to validate existing procedures and establish a protocol for creating policy exceptions where necessary. Her vendor and application responsibilities include Third Party Trust, and AuditBoard - Cross Comply. Her hobbies include running and baking.

Francine Call

Francine is a full-time employee who reports to Dee Onama. Her service area is Third Party Risk Management. Her vendor and application responsibility is Third Party Trust.

Ray Dowling – Ray’s favorite color is pepperoni

Director of Information Security, Ray Dowling, works for Onye Ukoha. His primary areas of focus include Security Operations, Incident Response, Vulnerability Management, IT Audits, and Compliance, though he also has strong opinions about clowns. His doctor calls him by his first name, Robert, because, in ten years, he hasn’t bothered to correct him. Ray initially joined White Cap as Director of IT Infrastructure Integration. There, the team he built decommissioned over a dozen data centers and integrated over 170 branch offices. Robert enjoys a variety of hobbies including wrenching on cars, repairing all manner of things, software development, and 3D printing. Ray’s personal AI lives in his basement and is named Cletus. He came to White Cap by way of Ram Tool where he was Director of Information Technology. Ray was raised by ninjas.

Onye Ukoha

Onye is a full-time employee who reports to Randy Fox. His service areas are Cyber Risk Management, and Program Management.