Don Philmlee

Phone: 703-598-8380 
Email: don@donphilmlee.com

Address: 14421 Coachway Drive, Centreville, VA 20120

Website: donphilmlee.com

Technology and Project Strategist and Manager | Law Firm Experienced | Team Leader | Certified Project Manager | Certified Security Expert

SUMMARY

I make projects work to successfully accomplish business objectives. I build teams and deliver complex solutions. I am committed to continuous improvement and impacting team success.

AREAS OF EXPERTISE

Law Firm Experienced

Program and Project Management

Vendor Management

Vendor Negotiations

Cybersecurity Assessments

Technology Strategy

Team Building

IT Transformation

Technology Assessments

Service Delivery

Cross Functional Management

Presenter and Writer

PROFESSIONAL EXPERIENCE

Technology and Project Strategist & Cybersecurity Consultant (contract, remote)

Various clients, National

October 2006 – present

Conducted comprehensive cybersecurity assessments based on SOC2 standards for various law firms, focusing on systems, documentation, processes, procedures, guidelines, and vendor relations. Worked closely with firms to meet stringent SOC2 requirements and prepared detailed assessment reports.

Managed and performed annual full security assessments on systems for a SaaS litigation claims trust auditing system. Developed and implemented a security assessment plan, managed 3rd party vendors and internal staff, and presented detailed assessment reports to law firms.

Led the planning, execution, coordination, and team for comprehensive disaster recovery tests of a cloud-based litigation claims system. Ensured the reliability and availability of vital claims data, backup systems, and recovery systems in case of emergencies, with a focus on cybersecurity.

Prepared, managed, and executed systems assessment to prevent possible Russian cybersecurity threats on a SaaS litigation trust auditing system. Reviewed government and industry guidelines, prepared and led a customized security assessment with multiple 3rd party vendors and internal staff. Led the mitigation of numerous issues, including implementing a multi-factor authentication system.

Provided cybersecurity expertise to create security auditing services for an international technology vendor and collaborated with the VP of Information Security. Developed security auditing methodologies and wrote related materials. Conducted presentations for multiple security webinars and seminars in support of marketing of services and responded to multiple security proposals to support sales.

Provided on-call and ongoing technology and cybersecurity advice and strategy to IT Director in a 45-lawyer multi-office regional law firm..

Conducted a strategic assessment of technology and cybersecurity for a law firm to improve their service delivery by streamlining their use of technology and IT staffing to meet desired business requirements. Recommended solutions to optimize their use of technology and IT resources to achieve their business goals.

Worked proactively to identify new opportunities for collaboration, process improvement, and communication.

Installed and configured a document management system (Worldox) for a small law firm in DC and another law firm in New Orleans. Trained users and provided ongoing support, ensuring the cybersecurity of the system.

Clients: McDermott Will & Emery, Honeywell, PamTen, Inc., Doherty Cella & Keane, Eaton Peabody, Womble Carlyle, and others

Technology Manager (contract, remote)

McDermott Will & Emery, New York City

July 2014 – July 2023

Senior Manager, Cyber Programs (Hybrid, Remote)

McDermott Will & Emery, New York City

July 2014 – present

Managed a custom SaaS litigation claims trust auditing system, focusing on systems management and cybersecurity aspects and ensuring high-quality service delivery. This involved coordinating with vendors, developers, support staff, security experts, disaster recovery testers, and backup providers. Negotiated contracts, proposals, and costs with virtual environment vendors and 3rd party development team.

Established strong relationships with system vendors, resolving support issues, upgrades, or security issues that required collaboration with vendors and internal support team. Actively identified emerging trends which may impact cybersecurity and drove operational collaboration and response.

Recommended and implemented new applications, systems, or changes to enhance existing systems, applications, and architecture with a focus on improving cybersecurity operations, concepts, policies, and procedures.

Designed and executed an ongoing quarterly cybersecurity checklist for the application and system. Collaborated with internal team and 3rd party vendors to implement. Defined requirements for ongoing development and database management.

Created and championed policies and procedures for application and system maintenance, management, and cybersecurity. Set requirements for ongoing development and database management.

Managed external vendors and internal departments to develop, deploy, test, and maintain additional projects and cybersecurity solutions as required. Maintained inventory and documentation of systems and managed related vendor contracts, pricing, and invoicing.

Worked proactively to identify new opportunities for collaboration, process improvement, and communication.

Managed the final closure of the systems with both client and vendors, ensuring all cybersecurity aspects were properly addressed and resolved.

Program / Project Manager (contract, remote)


McDermott Will & Emery, New York City

January 2007 – July 2023

Led the service delivery and implementation of a SaaS case management system that enabled national counsel to handle claims and cases efficiently across 40 local counsel law firms nationwide. The system managed over 250,000 asbestos claims. Duties involved planning, requirements, budgeting, and project management. Set and followed SDLC project and security standards.

Directed the service delivery and implementation of a web-based system that audited over $100 million in claims, ensuring the deployment and security of the system. Duties involved requirements elicitation and analysis, workflow mapping, security planning, created and evaluated the RFP, negotiated the final proposal, and oversaw the successful multi-year development project. Set and followed SDLC project and security standards.

Managed the service delivery of a SaaS eDiscovery platform that migrated and consolidated over 100+ litigation disparate databases (with over 4.7 million documents total). Ensured the deployment and cybersecurity of the platform and managed proposal management, project direction, progress tracking, schedule maintenance, risk and contract management, and resource management.

Provided project management guidance, mentoring, and support to attorneys and staff. Established project management best practices and tailored them to each project's needs, as required.

Led the service delivery and implementation of a SaaS case management system upgrade. Ensured smooth and timely transition for over 40 local counsel law firms nationwide handling 250,000+ asbestos claims. Oversaw all aspects of the project, including planning, requirements, budgeting, project management, internal staff management, vendor management, status tracking, and reporting.

Managed a system-wide data reconciliation project for over 250,000 asbestos claims to enhance the accuracy of reported data. This involved coordinating with 40 local counsel law firms across the country and internal client staff, as well as managing the planning, budgeting, project progress, and deadline delivery for the project.

Worked proactively to identify new opportunities for collaboration, process improvement, and communication.

Senior Project Manager (full-time, remote)


Compuware, Inc.


Managed infrastructure performance monitoring projects for large companies 


December 2010 – October 2011 



Led the successful project management of multiple simultaneous high-profile service delivery and performance projects for large organizations. Projects were both SaaS and on-premises. Managed service delivery consultants and architects. Ensured the successful delivery of services and solutions that met the client's needs and expectations. Set and followed SDLC project and security standards.

Clients included: Citi, Aetna, Aramark, John Wiley & Sons, Ropes & Gray, Mercer, American Student Assistance, Catholic Health East, MVP Healthcare, Huntington National Bank, and Bank of America.

Senior Program Manager (full-time, remote)


Compuware, Inc.


Managed infrastructure performance monitoring projects for Amtrak 


January 2009 – October 2010 



Responsible for the program management of a multi-year $2M+ program to design, implement and establish an integrated web-based dashboard and monitoring dashboard to proactively monitor and report on the quality of IT services being provided both internally and by suppliers for Amtrak's critical revenue-related applications.

Managed a team of Compuware service delivery consultants, developers and architects, and internal Amtrak IT personnel to develop and deploy. Adhered to Compuware PMO, Amtrak PMO, SDLC, and IT operational project standards and requirements as well as security standards.

Technology Director and Founder (full-time, on-site)


Potomac Consulting Group, DC, National, International

Technology Consultancy


July 1989 – September 2006

Founded and led a technology consultancy that delivered effective and impartial technology and security solutions. We provided impartial hands-on consulting services that did not depend on the sale of hardware or software, only services using skilled technology consultants to deliver services to meet client needs. For 17 years, we served over 600 law firms, associations, and other organizations in the United States and also did occasional work abroad in Europe and Asia.

Provided guidance, mentoring, and management to a team of billable delivery consultants, technicians, and outside contractors, of up to 35 people. Provided high-quality services to our clients delivering complex implementation projects, technology assessments, and security audits. Managed multiple competing priorities and deadlines effectively.

Regarded by my clients as an effective, trusted, and creative consultant and was frequently requested to continue working with clients after project was completed.

Pioneered ways to use new technologies to build new consulting services to offer clients and set the direction for the services we would regularly provide. This would routinely effect a positive change of about 30-40% of new income for the company annually.

Consulted with organizations to improve their use of technology by doing strategic analysis of their use and the maturity of their technology, security, and staff and how it met desired business requirements. Final analysis was a report of findings, gap analysis, and prioritized recommendations. Clients frequently reported satisfaction due to improvements in technology operation.

Advised clients who wanted the advantage of being early adopters of new technology.
My team and I worked with clients and vendors to implement Microsoft Windows as early as 1990 and the Internet and email as early as 1993. We did the first Implementation of the Internet in a UK law firm (1996), the first Implementation of Lotus Notes in a law firm (1993), and the first Implementation of WordPerfect for Windows in a law firm (1992).

Discovered new ways to extend client relationships and communications about new and useful technology. Pioneered the use of client extranets, client wikis, routine technology "what's new" discussions, broadcast emails, brown bag lunches, informational blogs, and more. 

Created internal guidelines, procedures, and standardized work product to formalize our service delivery of analysis and requirements gathering and reporting for clients.

Annual P&L and budgeting responsibilities of up to $2.3 million for strategic consulting and implementation practice areas, marketing, and service research and development.

Responsible for development and management of all branding and standards, including marketing and promotion materials, advertising, newsletters, website, white papers, and presentations; responsible for standards enforcement both in content and form.

Called upon by clients and staff to resolve difficult technology problems.

Some Clients included: McDermott Will & Emery, Bryan Cave, King & Spalding, Baker McKenzie, Gordon Fineblatt, Weil, Gotshal, Shea & Gardner, Mintz Levin, Sutherland Asbill, Arent Fox, Skadden Arps, Weil Gotshal, Cleary Gottlieb, Reed Smith, Nixon Peabody, Steptoe & Johnson, Duncan & Allen, Eaton Peabody, and more.

EDUCATION AND PROFESSIONAL CERTIFICATIONS

PMP - Project Management Professional - since 2006 


CISSP - Certified Information Systems Security Professional - since 2003

Bachelor of Arts in Public Law, Northern Illinois University

CREATOR AND CONTRIBUTOR

Editorial Board Member for Thomson-Reuters – provide editorial oversight and contribute articles for the magazine "Practice Innovations," a Thomson-Reuters publication for technology, management, and security innovators in law firms.  

Writer – create articles about technology management and security for both professional and private organizations and publications, including Thompson Reuters, local Bar associations, and others. Currently completing a book on melding project management methods.

Speaker – talk about technology management and security topics. Have presented to local bar associations, law firms, the Association of Legal Administrators, the International Legal Technology Association, and more.

Podcaster – currently working on writing and producing a podcast about emerging technologies.

Volunteer with SheTek – a non-profit that works to empower women and increase the percentage of women working in technology. Participated in webinars and presentations promoting careers for women in technology and cybersecurity.

Expert Contributor for CISSP Certification Exam Writing - ISC² – created and evaluated exam questions for the International Information Systems Security Certification Consortium, Inc. (ISC²). This group of experts includes high-level security professionals from around North America.

Expert Contributor for Educational Quality Assurance - ISC² – provided final subject matter expertise on the education material for the CISSP security domains for the International Information Systems Security Certification Consortium, Inc. (ISC²).

SKILLS

Effective writing and communications
Mentoring and team building

Presentation and speaking

Project leadership and direction

Service delivery

Project and program management

Business strategy and management

IT strategy, transformation, and management

Cybersecurity strategy and management

TOOLS

Microsoft Excel, Word, OneNote, PowerPoint, Teams, Visio, SharePoint, and Project, Zoom, WebEx, Jira, Trello, Adobe Creative Suite, Apple Keynote, Canva, and more.