Doug Johnson

Doug Johnson Email and Phone Number

Information Security Engineer @ ConsultUSA | CISSP, CISA, CISM @ ConsultUSA
Lexington, KY, US
Doug Johnson's Location
Lexington, Kentucky, United States, United States
Doug Johnson's Contact Details

Doug Johnson work email

Doug Johnson personal email

n/a
About Doug Johnson

With 20 years of experience in information security management, I am a seasoned consultant and leader in the cybersecurity field. I have a strong background in IT security, risk management, compliance, audit, policies and procedures, and governance, as well as multiple certifications from ISC2 and ISACA.As a former Senior Security Specialist at Beacon Hill Staffing Group, I spearheaded project leadership, task execution, and adherence to established standards. I designed and automated Excel scripts for user review processing, authored documentation for internal audit submissions, and examined user files for accuracy and consistency. Previously, I served as an Identity & Access Management Specialist at Integrity Consulting, where I mapped IAM tasks, developed a quarterly guide for privileged user review and user recertification, and drove forward an IAM transformation project. I also coordinated effective cooperation between SOC auditors, internal auditors, and the IAM team, ensuring swift and smooth compliance. Before that, I was an Information Security Engineer III at Conduent, where I took charge of the risk management process, coordinated the review and enhancement of 15 SOPs, led the effort to identify control gaps and establish new procedures for endpoint systems, and spearheaded the development of IAM compliance protocols and training materials.My expertise extends to crafting and executing resilient security strategies, effectively mitigating cyber threats, and safeguarding critical assets. I bring to the table exceptional communication, troubleshooting, and problem-solving skills, underpinned by a proven ability to translate strategic visions into tangible results. My track record also includes building relationships with C-level executives, key stakeholders, and clients, reinforcing collaboration and trust. I am dedicated to fortifying cybersecurity, and I am ready to leverage my skills and experience to help organizations thrive in this increasingly complex digital world we live and work in.

Doug Johnson's Current Company Details
ConsultUSA

Consultusa

View
Information Security Engineer @ ConsultUSA | CISSP, CISA, CISM
Lexington, KY, US
Website:
consultusa.com
Employees:
47
Doug Johnson Work Experience Details
  • Consultusa
    Consultusa
    Lexington, Ky, Us
    View
  • Consultusa
    Information Security Engineer
    Consultusa Mar 2024 - Present
    Pittsburgh, Pa, Us
    In support of a major International bank I manage the compliance of privileged user accounts. Working with business leaders, application teams and CyberArk experts I ensure IDs across the business remain compliant. This work involves understanding the business metrics and working with people at many levels.
    View
  • Beacon Hill Staffing Group
    Sr Security Specialist
    Beacon Hill Staffing Group May 2023 - Sep 2023
    Boston, Ma, Us
    As a Senior Security Specialist, I am well-versed in spearheading project leadership, overseeing task execution and adherence to established standards. My responsibilities included the design of Excel scripts for user review processing, vital for internal audit submissions. I automated the review process, streamlining user data input and script execution. Furthermore, I authored documentation encompassing Excel Add-In installation, spreadsheet navigation, script execution, and full-time employee file processing. My commitment to accuracy was evident in the examination of user files, spanning full-time, contractor, hourly, and terminated employees, resulting in the identification and correction of numerous misclassifications.Key Contributions during this tenure include:• Developed Excel scripts for increased functionality and speed.• Developed User Access Review program for quarterly application and active directory user reviews using Excel scripts.• Remedied internal audit failure through rapid completion of access reviews for four critical applications within two weeks.• Minimized human error and streamlined previously time-consuming process into one hour by developing scripts to address business requirements, including validation of current full-time employees and automated removal of terminated employees.
    View
  • Integrity Consulting, Nc
    Identity & Access Management Specialist
    Integrity Consulting, Nc Mar 2022 - Mar 2023
    Greensboro, Nc, Us
    As Identity & Access Management Specialist, I took the lead in mapping IAM tasks and ensuring their seamless alignment with organizational policies and processes. I spearheaded the development of a quarterly guide for privileged user review and user recertification, streamlining our compliance efforts. My efforts also optimized processes and resource allocation, empowering our analysts to efficiently manage technical recertifications. I drove forward an IAM transformation project, fostering productive collaboration between stakeholders involved in Single Sign-On (SSO) and SailPoint. I coordinated effective cooperation between SOC auditors, internal auditors, and the IAM team, ensuring swift responses to auditor requests and maintaining compliance with established standards.Key Contributions during this tenure include:• Addressed IAM risks, leading to closure of multiple issues.• Concluded SOC audit in collaboration with IAM team and auditors.• Remediated and closed 10% of risks in RSA Archer tool for new VP.• Drove process improvement by creating Excel application for data processing automation; saving two weeks of work per quarter and eliminating human errors.
    View
  • Conduent
    Information Security Engineer Iii
    Conduent Jan 2018 - Dec 2021
    Florham Park, New Jersey, Us
    As an Information Security Engineer III, I took charge of the risk management process, which involved overseeing the assessment and approval of risks and exceptions within the RSAM GRC tool in collaboration with senior management and stakeholders. I coordinated the review and enhancement of 15 Standard Operating Procedures (SOPs), ensuring their alignment with Conduent policies during the transition from Xerox. I led the effort to identify control gaps and establish new procedures for endpoint systems in alignment with NIST 800-53 controls. I spearheaded the development of Identity and Access Management (IAM) compliance protocols and crafted training materials to strengthen our security infrastructure.Key Contributions during this tenure include:• Enhanced productivity and performance of new IAM team members by providing effective training and guidance.• Remediated and closed more than 30 risks, decreased risk profile by generating reports for CRO and engaging with stakeholders.• Administered Identity Management for 12,000 users and eliminated over 6,000 obsolete identities; fortifying corporate security and streamlining future reviews.
    View
  • Xerox
    Security Program Manager
    Xerox Mar 2015 - Jan 2018
    Norwalk, Connecticut, Us
    As Information Security Manager, I had the privilege of overseeing security operations across 30 Xerox Business Units, where I spearheaded a variety of audits including PCI, SOC2, Internal Security Assessments, Customer Assessments, and Questionnaires. I conducted auditor site visits, orchestrated SME interviews, and participated in compliance discussions to ensure the timely fulfillment of data requests, resulting in consistently high customer satisfaction rates. I confirmed business unit compliance with NIST 800-53 standards and drove collaborative remediation efforts in close coordination with IT teams. I defined essential parameters related to antivirus (AV), patch management, and inventory data, using this data to generate insightful metrics reports for senior management.Key Contributions during this tenure include:• Enhanced business-wide endpoint compliance reporting; enabling oversight for CISO and effective control implementation.• Secured IS027001 certification for five Xerox data centers through teamwork and facilitation of cross-functional collaboration, while driving certification process forward.• Strengthened security posture by managing compliance for vulnerability scans and identity management across 20 domains.• Recognized company-wide and received monetary reward for automating Privilege Access Reviews using Excel VBA; saving 10 hours monthly.
    View
  • Ibm
    Information Security Advisor
    Ibm Jul 2014 - Mar 2015
    Armonk, New York, Ny, Us
    As an Information Security Advisor, I led a multitude of pivotal IT initiatives, providing invaluable support to the delivery project executive. I oversaw a high-performing Identity and Access Management (IAM) team, ensuring the on-time completion of user reviews and privileged access recertification, thus significantly bolstering compliance efforts and minimizing potential risks.Key Contributions during this tenure include:• Attained weekly time savings of two hours by optimizing PCI data analysis through Excel VBA automation.
    View
  • Ibm
    Staff Security Analyst
    Ibm Jan 2008 - Jun 2014
    Armonk, New York, Ny, Us
    As Staff Analyst, I presented IBM's health check process to both internal corporate auditors and external auditors, showcasing our commitment to compliance and transparency. I played a pivotal role in enhancing security standards by identifying key performance indicators (KPIs) for server baseline configurations, ensuring the enforcement of rigorous security measures. My contributions extended to delivering monthly presentations highlighting critical issues to executive management, providing valuable insights for informed decision-making.Key Contributions during this tenure include:• Improved IAM and Patch compliance through creation of educational materials and training for IT teams.• Established guidelines and interface for health check tool; leading to 20% reduction in server non-compliance.• Attained reduction in IBM's quarterly manual data analysis workload by 300 hours through creation of Excel scripts.• Demonstrated abilities as subject matter expert; contributed to development IBM global services health check process.***ADDITIONAL EXPERIENCE***IBM – Tucson, AZ - Security Program Manager | Delivery Compliance Administrator
    View
  • Ibm
    Security Program Manger
    Ibm Oct 2006 - Aug 2008
    Armonk, New York, Ny, Us
    As the SSO Health Check Process Owner I defined and maintained the process, delivered education, and represented the process to IBM Corporate audit. I Automated reporting for Security Self Assessment Workbook for 100+ accounts, Developed processes around weak security controls (e.g. OSR Access authorization)Received monetary reward for outstanding work on account
    View
  • Ibm
    Delivery Compliance Administrator
    Ibm Oct 2005 - Oct 2006
    Armonk, New York, Ny, Us
    Security Focal to Oversee Windows OS security for 5 IBM customers
    View
  • Chandoo.Org Vba Courses
    Student
    Chandoo.Org Vba Courses 2012 - 2013
  • Ip3
    Student
    Ip3 Aug 2012 - Dec 2012
  • H.L. Yoh (Contractor For Ibm)
    Security Focal (Unix & Intel)
    H.L. Yoh (Contractor For Ibm) Oct 2002 - Oct 2005
    * Manage Security Process execution for Internal IBM Servers in support of customer * Ensured deviations to process were managed to completion to protect IBM brand * Developed Health check process for department * Server support from soup to nuts* Hardening servers * Change management * Patching * Build servers to customer specifications * hardware support, on call
  • H.L.Yoh Co (Contractor For Ibm)
    Windows System Administrator
    H.L.Yoh Co (Contractor For Ibm) Oct 2002 - Oct 2003
    * Hardening servers * Change management * Patching * Build servers to customer specifications * hardware support, on call
  • Siemens / Children'S Hospital Of Pittsburgh
    Network Engineer
    Siemens / Children'S Hospital Of Pittsburgh Feb 1998 - Aug 2002
    * Plan, implement, and execute backup plan for Children's Hospital in Pittsburgh* Support several departments infrastructure and software, including Emergency room critical applications, and Collections users and critical application.* Public relations for disgruntled users* Key role in rolling out of new computers throughout Children's Hospital of Pittsburgh. This involved building an image and retaining user data* Key role in moving data center and assuring all servers were up and running.
  • United Steelworkers Of America (Uswa)
    Network Engineer & Windows Admin
    United Steelworkers Of America (Uswa) Feb 1995 - Feb 1998
    • Built NT4 network and domains.• Built Oracle Financial Forms to overhaul USWA financial department and bring them from mainframe to Windows.• Built information systems to streamline key information for business operations.• Supported USWA executive offices for all computer needs.• Supported USWA end users for all computer needs such as building databases, education and fixing desktops.

Doug Johnson Education Details

  • University Of Pittsburgh
    University Of Pittsburgh
    Information Science

Frequently Asked Questions about Doug Johnson

What company does Doug Johnson work for?

Doug Johnson works for Consultusa

What is Doug Johnson's role at the current company?

Doug Johnson's current role is Information Security Engineer @ ConsultUSA | CISSP, CISA, CISM.

What is Doug Johnson's email address?

Doug Johnson's email address is do****@****ent.com

What schools did Doug Johnson attend?

Doug Johnson attended University Of Pittsburgh.

Who are Doug Johnson's colleagues?

Doug Johnson's colleagues are Michael Colen, Maks Rozanovsky, Marissa Ray, Angelo Misterioso, Austin Pius, Anastasiia Yurchenko, Glenn Giese.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.