Benjamin C.  Chang, Cissp

Benjamin C. Chang, Cissp Email and Phone Number

VP, Security and IT Operations @ Glooko
Benjamin C. Chang, Cissp's Location
San Francisco Bay Area, United States, United States
Benjamin C. Chang, Cissp's Contact Details

Benjamin C. Chang, Cissp personal email

Benjamin C. Chang, Cissp phone numbers

About Benjamin C. Chang, Cissp

Information Security Executive and Turnaround Leader who has built Security, IT, and Enterprise Software departments and teams from the ground up in the US, Asia, and Europe, and has generated multimillion-dollar revenue at both startup and public companies. I work in partnership across an organization, creating environments of communication, transparency and forward-focused energy that position companies and their products to succeed. Noted for:Security CertificationsEstablished in <2 years at Glooko the required attested security controls and policies to achieve ISO 27001, SOC 2 Type 1 and 2, and HITRUST certifications.Data Security | PrivacyImplemented data security/privacy practices at Glint, e.g., 2FA, least privilege, for >20 million highly sensitive PII-filled records from 500+ corporate customers. Team BuildingBuilt multifunctional teams in PayPal of up to 120+ engineers from the ground floor, including DevOps, Support, and Tools professionals in the US, China, and India. Started and staffed the Development Center in Shanghai.Cloud ExpertiseSecured enterprise products built on public clouds, such as Microsoft Azure and Amazon Web Services, and private clouds, using databases such as MS SQL*Server, mySQL and Oracle.Risk Product DevelopmentTransformed four-person Tools and Tech team at PayPal into three worldwide teams consisting of 50+ developers who developed Fraud Detection SaaS components, mitigating fraud losses and increasing Total Payment Volume (TPV) by $10M.New Security Product OfferingsHired >40 security personnel; tripled Database Security revenue to >$40M at Oracle through three major products: a SIEM, table/column level encryption, and enhanced DDL/DML controls.Key Competencies and Strengths Global Team Building − Turnaround Leadership − Business Transformation − Enterprise Security and Software – SaaS − Public, Private Cloud Expertise - Secure Software Development Lifecycle (SSDLC) − Agile and Waterfall Releases − New Product Development − Release Management − Data Privacy, Security Assurance − Big Data − Predictive Analytics – GDPR − SOC 2 − ISO 27001 - HITRUST

Benjamin C. Chang, Cissp's Current Company Details
Glooko

Glooko

View
VP, Security and IT Operations
Benjamin C. Chang, Cissp Work Experience Details
  • Glooko
    Vp, Security And It Operations
    Glooko 2021 - Present
    Palo Alto, California, Us
  • Glint Inc. (Acquired By Linkedin - A Microsoft Company)
    Head, Information Security And Compliance
    Glint Inc. (Acquired By Linkedin - A Microsoft Company) 2018 - 2021
    Redmond, Washington, Us
    Managed all areas of security operations (InfoSec, AppSec, OpSec, PhySec, Compliance), implementing data privacy measures, SSDLC activities, third-party penetration tests/risk assessments, achieving SOC 2 Type 2 and GDPR compliance.
  • Getgo/Citrix (Acquired By Logmein)
    Director, Application (Saas) Security
    Getgo/Citrix (Acquired By Logmein) 2016 - 2018
    Boston, Massachusetts, Us
    Restarted the Applications Security team, executing vision to create a SSDLC (reviews, STRIDE threat models, $3M in code scanning tools), a Global Security Champions Program (Mountain View, CA; Santa Barbara, CA; Boston, MA; Bengaluru, India; Frankfurt, Germany; Dresden, Germany; Budapest, Hungary), and compliance with GDPR and SOC 2 Type 2.Acted as Teaching Assistant for startup Machine Learning team taking Professor Andrew Ng's Coursera course. Emphasized real-world applications, e.g., churn reduction, biometric authentication; and investigated partnerships with Google, IBM.
  • Striim
    Senior Director, Big Data Applications, Ui/Ux, Qa, Release Management
    Striim 2013 - 2015
    Palo Alto, California, Us
    Created, ran three software development teams and performed the Big Data platform release management. Created reference predictive analytics for real-time TQL applications (e.g. failure and AML) utilizing Machine Learning modules for time-series forecasting, incremental real-time model training and selection.These customer-requested, real-time TQL applications ingested Big Data from a number of sources, performed analytics using linear regression and clustering models, persisted data in Oracle's No-SQL database / mySQL / Hadoop, and displayed results via a Tableau-like user interface (Javascript, D3.js, Backbone.js, Node.js).
  • Paypal
    Director, Risk Product Development
    Paypal 2011 - 2013
    San Jose, Ca, Us
    Expanded online payments solutions company’s four-person Tools and Tech team and transformed it into global 50-person Big Data, Mobile Risk, and Linking groups (San Jose, CA; Austin, TX; Shanghai, China), which developed PCI-compliant Fraud Detection SaaS, adding functionality that increased revenue and reduced fraud loss.Established first-ever PayPal Development team based in Shanghai, recruiting both university, experienced hires. Created $1M H1 2012 budget to account for 30 person team, a subset who created a Big Data stack, pushed to www.paypal.com, to catch 10% more Collusion Fraud.
  • Paypal
    Director, Engineering Services
    Paypal 2008 - 2011
    San Jose, Ca, Us
    Secured infrastructure and drove operational efficiency improvements, realizing $40M+ savings that was reinvested to fund license renegotiation, hardware gains, process reengineering, and waste reduction with 120-person team (San Jose, CA; Austin, TX; Scottsdale, AZ; Chennai, India ) and a $20M budget (grown from original team of four developers).Some highlights included creation of 99.9% available private cloud VMs, located in 4 data centers, for 3500 technologists; creation of a Tech Spot for helping developers with system issues; and development of 5x faster distributed build systems, an IDE based on Eclipse, a git-based source control system, a CI system based on Jenkins that used a massive build farm, Selenium and JUnit test frameworks.
  • Fortify (Acquired By Hewlett-Packard)
    Director, Security And Compliance Practice
    Fortify (Acquired By Hewlett-Packard) 2007 - 2008
    Palo Alto, Ca, Us
    Executive sponsor of UHC, Wells Fargo, Intuit, Dell, PwC, and Oracle, dealing with C-level executives and senior developers to use static analysis tool on over 1M lines of Java, C/C++, C#/.NET, JavaScript, Perl and Python code, fixing OWASP Top 10 issues (SQL injection, cross-site scripting, buffer overflow, etc.). Charged $2,500/day to develop custom solutions, training, compliance, and threat reports.
  • Guardianedge Technologies (Acquired By Symantec)
    Director, Security Framework Development
    Guardianedge Technologies (Acquired By Symantec) 2007 - 2007
    San Jose, California, Us
    Hired and led security software company’s 15-person team to perform Original Design Manufacturing (ODM) per US Department of Defense requirements, allowing for more smartcards to be used in the Two-Factor Authentication login, before decrypting the hard drive, for several PC brands.
  • Oracle
    Director, Database Security And Core Development
    Oracle 2004 - 2006
    Austin, Texas, Us
    Created technology company’s 50-person DB Security team (Redwood Shores, CA; Dallas, TX; Nashua, NH; Reston, VA; Bengaluru, India) that tripled yearly DB Security revenue to >$40M by introducing three major new products: Transparent Data Encryption for tables and columns, Database Vault and more DDL/DML controls, and Audit Vault, a SIEM for SOX. Pitched / secured UBS, Credit Suisse, Wells Fargo, Fidelity, Apple, FileNet, Adobe, EDS, and J&J accounts.
  • Oracle
    Director, Core And Xml Development
    Oracle 1994 - 2004
    Austin, Texas, Us
    Released industry's first free downloadable XML Development Kits (XDKs) for 3rd parties in C, C++, Java, and PL/SQL; and for 80+ Oracle products on a weekly basis (before creation of Lean / Agile methodology in 2001), generating >$100M in drag revenue. Increased from 10 to 30 US (Redwood Shores, CA), India (Bengaluru) developers over 10 years, going from $1M to $4M budget.Awarded 4 patents as co-inventor of XML technologies, with over 10 papers accepted at refereed XML conferences in Asia, Australia, Europe, North and South America. Selected, acted as Oracle's representative to the W3C Document Object Model (DOM) Working Group from 1999 - 2003. Lead author of DOM Level 3 Validation Specification Version 1.0, and editor of DOM Level 3 Abstract Schemas and Load and Save Specification Version 1.0; co-author of updated DOM Requirements.
  • Oracle
    Oracle8 Development Release Manager, Server Technologies
    Oracle 1996 - 1998
    Austin, Texas, Us
    For five releases over 3 years, I served as the Oracle 8.0.x release manager, done in addition to my other roles, adhering to schedules, holding weekly status meetings with >20 Server Technologies VPs, senior managers, and SVP Chuck Rozwat to determine what to include (object types and member functions, SQL3 compliance, etc.), monitoring tasks and milestones. As part of the daily duties, I vetted, approved, 1000+ C code check-ins weekly 24x7, with only senior database kernel manager Roger Bodamer and build engineer Mau Luong helping to triage daily build and short / long regression test issues.
  • Oracle
    Chair, Oracle Coding Standards Committee
    Oracle 1994 - 1997
    Austin, Texas, Us
    With a ~$2M budget (persuaded 10 development VPs to have their division experts volunteer yearly, meeting weekly), delivered on-schedule online 300+ pp. V2.3 in 1995, V2.4 in 1996, adding operating systems restrictions to rules, removing non-ANSI C rules, adding C++ & Java sections. Credited with saving >$10M yearly by developers catching bugs in-house (>$10K/bug).
  • Oracle
    Project Lead, Engineering / Development Services
    Oracle 1990 - 1994
    Austin, Texas, Us
    Multiple Alternatives Program hire, recruited to a start-up development group created by Co-Founder Bob Miner, led on-time releases of P1/P2 bug patches, internationalized code libraries, code conformance and static code scanning tools, w/ increasing responsibilities.

Benjamin C. Chang, Cissp Skills

Cloud Computing Microsoft Sql Server Xml Java Software Development Start Ups Security Saas Data Center Enterprise Software Vmware Sdlc Databases Oracle Product Management Distributed Systems C++ Pl/sql Unix Scalability Sql Agile Methodologies Virtualization Architecture Javascript Eclipse Perl Git Mobile Devices .net Hadoop Web Applications Web Services Java Enterprise Edition Data Warehousing Python Product Development Startup Development Software Development Life Cycle Linux Big Data Management Professional Services Analytics Pre Sales Software As A Service

Benjamin C. Chang, Cissp Education Details

  • Massachusetts Institute Of Technology
    Massachusetts Institute Of Technology
    Innovation And Technology
  • Stanford University
    Stanford University
    Electrical Engineering (Computer Systems)
  • University Of California, Berkeley
    University Of California, Berkeley
    Electrical Engineering And Computer Science (Computer Science Option)

Frequently Asked Questions about Benjamin C. Chang, Cissp

What company does Benjamin C. Chang, Cissp work for?

Benjamin C. Chang, Cissp works for Glooko

What is Benjamin C. Chang, Cissp's role at the current company?

Benjamin C. Chang, Cissp's current role is VP, Security and IT Operations.

What is Benjamin C. Chang, Cissp's email address?

Benjamin C. Chang, Cissp's email address is be****@****ail.com

What is Benjamin C. Chang, Cissp's direct phone number?

Benjamin C. Chang, Cissp's direct phone number is +120377*****

What schools did Benjamin C. Chang, Cissp attend?

Benjamin C. Chang, Cissp attended Massachusetts Institute Of Technology, Stanford University, University Of California, Berkeley.

What skills is Benjamin C. Chang, Cissp known for?

Benjamin C. Chang, Cissp has skills like Cloud Computing, Microsoft Sql Server, Xml, Java, Software Development, Start Ups, Security, Saas, Data Center, Enterprise Software, Vmware, Sdlc.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.