John Strasser

John Strasser Email and Phone Number

Information Security Leader Driving Business Enabled Security Strategy & Transformation | CISSP, CISM @ Apogee Enterprises, Inc.
John Strasser's Location
Greater Minneapolis-St. Paul Area, United States, United States
John Strasser's Contact Details

John Strasser personal email

n/a
About John Strasser

I am an information security executive that builds and scales programs for rapid growth and highly regulated enterprises. I hold my CISSP and CISM certifications and have applied that knowledge to launch, manage, and transform security programs. In each capacity, I serve as a business partner that finds ways to make things possible while also aligning the technical infrastructure to effectively manage the risks. As a result, I have led globally dispersed teams through periods of rapid growth to exceed expectations. I have a commitment to leveraging my leadership by inspiring and developing cybersecurity talent. I do this by creating a collaborative, inclusive culture focused on the best practices and empowering the people to achieve results. I have also coached and inspired people in the security programs as a thought leader, support to the sales team, and leader of people serving employees at every level of the business.My prior technical experience enables me to build credibility within and with our business partners. I can roll my sleeves up to design and execute the strategies as well as to deliver the long-term results for the business. This means that I hunt for ways to implement flexibility into our operations while also accounting for the people and the emerging threats that they will face. As a result, I found great success in partnering across enterprises and with our vendors to design and deliver programs that are continuously improving information security. I am always open to expanding my network. Let’s connect and continue the conversation. Some of my professional achievements include:• Launched and scaled security programs for enterprises with 2,600+ employees globally as well as shaping the implementation of protocols across entities with over 100,000 employees.• Led the development and championed the adoption of security programs across a private equity firm’s portfolio with 26+ entities.• Reduced post-deployment security weaknesses across 120+ technology products by creating and leading the strategy that focused on predeployment fixes to maximize impact in the process. • Recognized as the leader of the team that rated in the Top 3 Most Satisfied for multiple years in the enterprise with 23 direct and indirect reports that were globally dispersed. Areas of Expertise:Information SecurityRisk ManagementGlobal Program ManagementSecurity StrategyIncident ManagementVendor ManagementBusiness Continuity and Disaster Recovery

John Strasser's Current Company Details
Apogee Enterprises, Inc.

Apogee Enterprises, Inc.

View
Information Security Leader Driving Business Enabled Security Strategy & Transformation | CISSP, CISM
John Strasser Work Experience Details
  • Apogee Enterprises, Inc.
    Senior Director, Information Security And It Compliance
    Apogee Enterprises, Inc. Dec 2023 - Present
    Minneapolis, Mn, Us
    View
  • Sovos
    Chief Security Officer
    Sovos Apr 2018 - Sep 2023
    Wilmington, Ma, Us
    Through the growth of the security program and the business it served, I was promoted repeatedly up to the Chief Security Officer role for a global enterprise. I served in this role that reported to the CEO and contributed to the security governance of other entities within the PE firm’s portfolio until the role was eliminated as part of restructuring.During this time, I set the strategy and led the continuous improvement of the security program. My goal in this role was to design the systems that facilitated the business while providing the needed systems to effectively manage the risks in the process. I also led my team through the operational execution of the vision. In turn, we were able to achieve results that not only satisfied our global clients but that also led to the stability and engagement of people at every level of the operations. My commitment to my team and their growth is what resulted in the success of the security program. I built a culture focused on the people on the team while also seeking out ways to empower them. I did that with trust and appreciation of the value that each person brought to my team. I also championed their growth and value in the organization whenever possible. A few of my recent achievements include:• Led up to 23 direct and indirect reports with ownership of the multi-million dollar annual budget (capital, OpEx, department). • Achieved the Top 3 rating for the most satisfied employees out of the enterprise for multiple consecutive years. • Scaled the existing remote work protocols to enable seamless system utilization that also maintained security through the rapid growth of the program prompted by the COVID-19 office closures. • Paved the way to full CI/CD through the refinement of the technical development deployment processes. • Expanded the ISO 27001 certification globally from 1 system to 52 platforms across EMEA and LATAM.
    View
  • Sovos
    Director Information Security
    Sovos May 2015 - Apr 2018
    Wilmington, Ma, Us
    As the information security program scaled with the business, I was promoted into the role of Director of Information Security. In this role, I continued to report to the CTO as I led the growth of the security program. The company was also going through a period of growth through acquisition, so the complexity of my role and that of my team grew as we served to integrate the data into our systems, processes, and technologies. I sought out ways to enable the business by aligning its security infrastructure with the people and their priorities. I did this by setting the vision and managing the governance of the enterprise security protocols. I also continued to partner with the leaders across the business to ensure that their needs and the needs of the clients were served. As a result, I was regularly in meetings with operational partners, sales, and clients as the trusted security expert that facilitated the desired outcomes. My team also grew during this time. I continued to build a strong culture where people were engaged in the program while also providing them the flexibility needed to meet their goals. This meant that the people on my team were able to grow as individuals while we also collaborated to meet the priorities of our changing, highly regulated enterprise. Results in this role were:• Lead 11 direct reports with ownership of the security program budget. • Standardized the security processes and tools across the enterprise with 6 – 8 acquisitions annually. • Redesigned the risk management program resulting in double digit reduction in maintenance requirements and increased on-time completion for third party assessments. • Shifted from annual to quarterly employee security training, established interactive exercises, and sought out ways to personalize the security training that increased engagement and effectiveness. • Achieved minimal findings through multiple audits by customers annually as well as ISO 27001 and SOX audits.
    View
  • Sovos
    Information Security Manager
    Sovos Jun 2013 - May 2015
    Wilmington, Ma, Us
    I joined the compliance software and consulting firm in the leadership role that launched and scaled the information security program. I reported to the CTO during this time and wrote the policies, programs, and processes to manage the security of the enterprise. My dedication to finding the ways to power the business while protecting its information played a key role in the buy-in by the senior leaders that paved the way for long-term growth of the program. As a result, I was able to not only create the program from the ground up, but to also build upon those early successes to scale it with the rapid growth, highly regulated business. My role changed quickly through this period as I brought on members of my team, and we scaled the security architecture. My team grew to 4 direct reports while I served as the information security manager. We purposefully built a number of the systems and processes internally during this time to add value to the business while also maximizing the security capabilities. This meant that I regularly filled in wherever needed during this time to make the vision a reality while also engaging people in the emerging security threats and technologies.
    View
  • Mattersight Corporation
    Information Security Manager
    Mattersight Corporation Oct 2011 - Jun 2013
    Chicago, Illinois, Us
    I was promoted up to the role of Information Security Manager for a publicly traded company that provides SaaS-based enterprise behavioral analytics software. I joined the organization that was formerly known as eLoyalty and played a key role in the rapid growth of its information security program. I reached a plateau in the company and decided to take the growth opportunity at Sovos when it came up. During this time, I reported to the Director of Security with accountability for the daily management of the information security programs. My team consisted of engineers, analysts and others in the tactical execution of the enterprise programs. I also provided the technical and operational leadership to the security programs and platforms serving the enterprise. A few wins in this capacity were:• Saved $10k in annual training costs through the launch of an internal security program. • Cut management costs by 75% and cycle times by 53% through the streamline of document reviews.• Led the re-architecture of the enterprise IDS solution that cut maintenance costs by 64% annually and reduced the equipment costs.
    View
  • Mattersight Corporation
    Team Lead
    Mattersight Corporation Apr 2011 - Sep 2011
    Chicago, Illinois, Us
    View
  • Mattersight Corporation
    Information Security Engineer
    Mattersight Corporation Aug 2006 - Apr 2011
    Chicago, Illinois, Us
    The Information Security Engineer is responsible for the architectural design, planning, implementation and hands on maintenance of enterprise operational defenses against security breaches and vulnerabilities. This individual is additionally responsible for maintaining and extending the existing suite of defenses, and assisting in the creation and maintenance of information security policies, standards, and procedures in concurrence with industry best practices.
    View
  • Corel
    Network Administrator
    Corel Nov 2003 - Aug 2006
    Ottawa, Ontario, Ca
    Management of Minneapolis Office network, consisting of 80+ users, 300+ computers, and 60+ servers and networking devices, including Cisco VPN 3030, Cisco routers, and various firewall appliances.
    View
  • C-Biz Technologies, Inc
    Field Service Technician
    C-Biz Technologies, Inc Nov 2002 - Nov 2003
    Responsible for the hardware and software at 300 Twin Cities and surronding area Edward Jones branches, including branch server, terminals, phone system, printers and cable runs.

John Strasser Skills

Network Security Security Information Security Firewalls Penetration Testing Enterprise Software Active Directory Vulnerability Management Networking Information Security Management Incident Response Pci Dss Iso 27001 Security Architecture Design Disaster Recovery Cissp Servers Hardware Itil Cisco Technologies Cisco Routers Cisco Ios Ids Vulnerability Assessment Compliance Threat Analysis Risk Management Windows Security Hipaa Log Analysis Ips Computer Hardware Payment Card Industry Data Security Standard Fisma Gcih Gpen Mcse 2003

John Strasser Education Details

  • University Of Minnesota Crookston
    University Of Minnesota Crookston
    Computer/Information Technology Administration And Management
  • Minnesota School Of Business
    Minnesota School Of Business
    Network And System Administration/Administrator

Frequently Asked Questions about John Strasser

What company does John Strasser work for?

John Strasser works for Apogee Enterprises, Inc.

What is John Strasser's role at the current company?

John Strasser's current role is Information Security Leader Driving Business Enabled Security Strategy & Transformation | CISSP, CISM.

What is John Strasser's email address?

John Strasser's email address is st****@****lty.com

What schools did John Strasser attend?

John Strasser attended University Of Minnesota Crookston, Minnesota School Of Business.

What skills is John Strasser known for?

John Strasser has skills like Network Security, Security, Information Security, Firewalls, Penetration Testing, Enterprise Software, Active Directory, Vulnerability Management, Networking, Information Security Management, Incident Response, Pci Dss.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.