Building a cloud-native software platform to deliver knowledge, transparency and confidence to every digital operation in every organization, large or small. Received multiple leadership awards including Triangle Business Journal 2022 CEO of the Year and C-Suite award, Fortress Cyber Security Leadership Award, and Cybersecurity Excellence Awards' Chief Executive Officer of the Year.

I was leading security for several organizations throughout their digital transformation journey. After experiencing firsthand the security team's struggle to keep up with the speed and complexity of DevOps, I built JupiterOne to fill that gap.Everything in IT governance, security, and compliance starts with knowing what assets you have, who owns them, how they are configured, and more importantly, how the dots are connected. JupiterOne is the graph knowledgebase of your entire digital operations. JupiterOne is currently being used by industry leaders like Reddit, Databricks, Auth0, and Addepar. It is the first cloud-native security and compliance platform built on a graph data model. It enables you to create and manage your entire digital infrastructure (not just cloud) as a knowledge base that you can ask questions and get answers.https://jupiterone.com/

Helping make the world-renowned computer science program even better. More about the CSC SAB here: https://www.csc.ncsu.edu/corporate_relations/strategic-advisory-board.php

DSC 495 – 301: Exploring Digital Innovation in AI and Cybersecurity

Responsible for security operations, compliance and privacy, including the following compliance and certifications: HIPAA, HITRUST, GDPR, SOC 2, GDPR, NIST, FedRAMP and FDA (21 CFR Part 11). https://lifeomic.com/securityBuilding a super cool SaaS product for securing Cloud and DevOps -- and yes, I still code! https://jupiterone.com

My team and I led security as an enabler for the digital transformation journey at Fidelity Personal Investing. This included software security architecture, assurance, governance and compliance, vulnerability management, identity and access, threat modeling, and development of customer facing security features -- with everything centered around the adoption of agile development, DevOps, public cloud, and infrastructure as code.

Led strategy, roadmap and execution of IBM security services globally. Enabled consistency, quality, clarity, and innovation in services offerings and delivery. Managed global P&L and development budget. Performed market analysis and developed M&A strategy. Provided leadership and development in areas including:- Critical information and "crown jewels" protection (both consulting and managed data protection)- Security for the "Internet of Things" (IoT), for mobile applications, smart and embedded devices, connected cars, etc. - Secure engineering and application testing- Building organizational security foundation such as governance framework, security awareness program, and overall secure collaboration strategy- Cyber security defense, malware analysis, incident response, proactive APT discovery, and threat intelligence, helping clients achieve early detection and rapid response in combating new waves of cyber attacks- Security for critical industry and industrial controls, focusing on the convergence of OT security- Operational security transformation

Responsible for defining the strategy and developing service offerings for IBM’s Security Services division, with a focus on Cybersecurity Assessment & Response and Security Operations Optimization. Directly engaged in solution design and delivery for complex projects. Consistently achieved above market growth in highly competitive mature and growth markets. - Global Business Management and Strategy - Service Offering Development and Product Management - Complex Solution Delivery - Cybersecurity Intelligence Operations - Incident Response, Forensics, and Case Management - Defense against malware and APTs - Security Operations and Optimization - Application Development - Delivery Best Practices, Methodologies, and Innovation - Process Integration and Efficiency Improvements - Business Partner Management - P&L Management - M&A Strategy

I managed and led a global practice of over 50 practitioners worldwide in data security services (DSS) and emergency response (ERS) within IBM Security. I was in charge of the operations, readiness, and overall results of the WW ERS and DSS practice. Designed and delivered complex security solutions to many Fortune 500 enterprise organizations. Served as key interface between global senior management and the leadership within each geo theater, as well as other key IBM business units such as Managed Security Services and Strategic Outsourcing. Additionally, I provided directions and guidance to drive the overall strategy and products/services roadmap for IBM and key partners.Services my team and I provided include:- Penetration Testing- Incident Response- Cyber Forensics- Data Encryption- Data Loss Prevention- etc.

—————————————————————I joined IBM as a senior consultant and shortly after took over as the delivery leader of IBM’s PCI security practice for US and Asia Pacific. In this role, I provided PCI assessments, remediations, penetration testing and other security services to clients in various types of industries, including finance/banking, energy/utilities, global retail, distribution, healthcare, education, and the public sector.

—————————————————————I joined Magnus at the idea phase of the company with the two cofounders. I architected the first version of Magnus Health Portal. In less than four years, built a core technical team and matured the products to grow the company to sustainable revenue with just over 20 people. The flagship product, Magnus Health Portal, is an online service that uniquely manages medical records and health data for individuals and organizations. We later shifted the focus from electronic health records (EHR) to student medical records (SMR). I was part of the team that had led Magnus to become the premier service provider delivering student medical records management across major US universities, supporting millions of users across over a thousands of schools within a couple of years of launch.

—————————————————————P4 Performance Management is a specialized provider of Remote Infrastructure Management (RIM) Services located in Raleigh, NC. I joined P4 during its most challenging period, immediately resolved major issues with two large clients and recovered both accounts from contract cancellation, effectively brought the company back to life at the edge of a bankruptcy. I ran P4’s NOC/SOC operations with an operations center in Raleigh, NC and a data center in Northern Virginia. In one short year, Erkang designed and implemented the second generation of P4’s proprietary Titan monitoring and management platform, including the P4|Vu customer portal; while effectively and creatively managing resources to complete the project on time and under budget. He also led a team and built a 24x7x365 Security Operations Center for a Fortune-100 insurance company.

—————————————————————Additionally, I led continuous research, design, and development of an innovative security vulnerability assessment product – Refense, which P4 had acquired. Provided leadership for all technical and operational facets both companies and managed overall IT and operations budget to achieve maximum operational efficiency and to enable high business growth.

—————————————————————A member of the founding team, I provided initial vision to the founder and CEO which later became the foundation of an innovative security device management product. I worked closely with the CTO in designing the core architecture and led a team of engineers on development of the core framework. I also led a large outsourced team in India in quality assurance and the development of device support packages to support various security hardware models from vendors such as Cisco, Juniper, Check Point, and SonicWall. I helped with product strategy, features, and directions internally and externally, and was a significant contributor in every phase from securing seed funding to Series A and B, and finally to acquisition of the technology.

—————————————————————Earlier in my career, I worked at Cisco Systems, working on Cisco’s Element Manager Framework (CEMF). In this role, I led the system test team to ensure the quality of this service provider grade network management system and led development of automated testing tools that dramatically reduced QA effort utilizing thousands of simulated core switches, routers, and other network devices.