John W Graham Email and Phone Number
Florida, United States
John W Graham's Location
Greater Tampa Bay Area, United States, United States
John W Graham's Contact Details
John W Graham work email
- Valid
- Valid
- Valid
John W Graham personal email
n/a
About John W Graham
Open to new opportunities - Over 15+ years of executive and leadership experience, including global Fortune 500. Track record of success in providing vision, strategy, and leadership for worldwide programs. Member of NACD, Masters Degree in Information Assurance, multiple industry certifications. Experienced and highly skilled in communicating with C-level executives at a strategic level, aligning requirements with appropriate technology/security solutions for program management, process improvement, operations, and change management objectives. Established and built reputation for working successfully across multiple functional areas to achieve big-picture organizational goals, including transformation, innovation, M&A integration, security assurance, operational efficiencies, and outsourcing initiatives.Industry Experience: Technology, Retail & Supply Chain, Healthcare, Financial, Payment Card, Managed Service, Consulting, Manufacturing, AviationBreadth includes: Global Enterprise, Startup, Mid Tier, Global Fortune 50, Private EquityStrengths Include: Risk Management; Enterprise Resilience; Innovation; Vision; Strategic Planning & Execution; Risk Management; Outsourcing (Cloud, SaaS, Service Provider); Mobile and BYOD; Business Integration; C-Level Executive Consultations; Global Acquisition & Divestiture; Information Security Assurance; Employee & Consumer Privacy Solutions; eCommerce, Payment Card Industry Standard (PCI); SOX Compliance; Business Continuity.
John W Graham's Current Company Details
John W Graham Work Experience Details
-
Principal, Cybersecurity ConsultingRedw Advisors & CpasFlorida, United States
-
Ai Controls Framework - Working Group Participant / AdvisorCloud Security Alliance Oct 2024 - PresentSeattle, UsParticipant and advisor to the Cloud Security Alliance AI Control Framework working group. Defining Cybersecurity controls for AI globally, through collaboration with NIST and CSA.https://cloudsecurityalliance.org/research/working-groups/ai-controls -
Cybersecurity Graduate Program MentorKennesaw State University Oct 2024 - PresentKennesaw, Georgia, UsServe as volunteer mentor for Master's in Cybersecurity students, providing career guidance and technical expertise while developing emerging talent in the field of cybersecurity -
Nacd Accelerate ProgramNacd (National Association Of Corporate Directors) Jun 2023 - PresentArlington, Va, Us -
Individual Director Member At NacdNacd (National Association Of Corporate Directors) Jan 2020 - Jul 2023Arlington, Va, Us
-
Cio / CisoNetjets Jul 2023 - Aug 2024Columbus, Oh, UsAs Global CIO and CISO July 2023 - August 2024, Led the evolution of the Information Technology department from a traditional functional entity into a Product Management structure, incorporating Agile methodologies and IT Service Management practices. Generated enhanced business performance and alignment by developing and executing the overall strategy, vision, and governance for technology and cybersecurity across NetJets, Inc.'s global operations. Guided the leadership team in implementing new procedures, which resulted in technology solutions being completed within schedule and budget constraints, and successfully addressed two pre-existing multi-million-dollar projects that were significantly delayed. Elevated new CISO through succession plan. Worked alongside top executives at Berkshire Hathaway and aviation sector professionals to enhance technological advancement, improve security maturity, and drive innovation. -
Chief Information Security Officer (Ciso)Netjets Apr 2020 - Jul 2023Columbus, Oh, UsAs Global CISO April 2020 - June 2024, Orchestrated the overarching strategy, provided insights and intellectual guidance, oversaw risk control, and directed program oversight regarding cybersecurity across all global divisions of NetJets, Inc. Initiated cybersecurity risk discussions with the executive committee and board / audit committee, building risk based framework for strategic decisions regarding cybersecurity. Initiated and executed annual table top exercises to build muscle memory with executive team regarding cybersecurity breach response. Aligned and coordinated global Crisis Management, bringing synergies to Aircraft safety, physical security and Cybersecurity with the executive committee. Committed to elevating the cybersecurity stature in the Aviation industry, Spearheaded projects with premier OEM aircraft manufacturers (Textron, Bombardier, Embraer), as well as key players in aviation components (Garmin, Honeywell, Collins), making significant contributions to the industry. Fundamental to creating industry-leading cybersecurity measures within the vast Berkshire Hathaway enterprise, concentrating on advancing the cybersecurity proficiency of the subsidiary companies under the Berkshire Hathaway umbrella.
-
Global Chief Information Security Officer (Ciso)Ebsco Industries, Inc. Jul 2018 - Mar 2020Birmingham, Al, UsCreated the overall strategy, vision, thought leadership, risk management, and program governance for cybersecurity across the EBSCO Industries global portfolio of companies. Created a global cybersecurity capability to include identity and access management, architecture, engineering, threat and intelligence, governance, risk, compliance, security operations, a Computer Security Incident Response Team (CSIRT), and a crisis management process (includes the CEO, COO, CFO, CLO, communications, and BOD).➣ Provides hands-on direction and guidance to a 15-person team geographically dispersed between Birmingham, AL and Ipswich, MA; accountable for a $3M annual budget. ➣ Increased existing under-utilized capabilities and removed duplicative spend across existing solutions.➣ Built an ongoing engagement process with vendors and gained capability across all existing solutions.➣ Initiated a multi-year roadmap for cybersecurity based on risk across a diverse portfolio; the roadmap included process, technology, and governance, creating a comprehensive approach for continual ma-turity. ➣ Staffed and aligned cybersecurity talent to career pathing, new job descriptions, and creating functional areas; identified internal resources with the passion to grow through self-learning and training plans.➣ Created a governance structure to include alignment with BOD, the executive committee, risk committee, and information security management system representing each of the 40 portfolio businesses.. -
Global Chief Information Security Officer (Ciso)Jabil 2013 - 2018St Petersburg, Florida, UsLed the strategy, vision, risk management, and program governance for cybersecurity information assurance across the company’s global enterprise. Created a global cybersecurity information assurance capability that included architecture, engineering, operations, threat/intelligence, governance, compliance, a computer security response team, and a crisis management process (to include the CEO, COO, CFO, CLO, communications, and BOD).➣ Recognized as the Information Security Executive (ISE) Southeast Executive of the Year for 2016.➣ Led the Information Security Executive (ISE) Southeast Project of the Year in 2015.➣ As Jabil's first CISO, defined a balanced cybersecurity vision and roadmap prioritizing across three main areas; customers, and suppliers created a technical plan to increase visibility across Jabil, followed by foundational systemic, baseline controls; accountable for a $15M annual budget. ➣ Supervised and led 78 team members divided between St. Petersburg, FL and Penang, Malaysia.➣ Leveraged managed services and cloud solutions via architecture alignment with the enterprise; utilized SaaS, cloud, and managed services to provide cybersecurity controls where automation was feasible. ➣ Defined and maintained a global cybersecurity budget aligned to the roadmap, defined and led function to within 1% of annual cybersecurity budget vs. actual year over year. ➣ Created a linkage between cybersecurity and sales functions to include marketing, pre-sales support, and positioning cybersecurity as a value add to Jabil's customers. Assisted in new customer acquisition and customer expansion and retention.➣ Reduced potential illegal software fines from $9.8M to $0 through forensic investigation and evidence presentation identifying third-party software vendors as providing illegal software into Jabil. -
Board Of AdvisorsClick Security Jan 2012 - Dec 2014Austin, Texas, UsTechnical & Customer Advisor -
Vp Of Global Information Assurance, & RiskFirst Data Corporation 2011 - 2013Brookfield, Wisc., UsReported to the Chief Security Officer as a successor and trusted advisor; provided strategic thought leadership, enterprise risk management, and program governance for information assurance across the global enterprise. Oversaw a 48-member team dispersed between Atlanta, GA, Denver, CO, and Omaha, NE; instrumental in helping establish a multi-year strategy for a $68M annual budget while directly managing a $9M annual budget. ➣ Information Security Executive (ISE) Southeast Executive of the Year finalist in 2012.➣ Restructured the global security organization (300+ employees), architecture, engineering, and operations functions into services to gain efficiencies and cost savings globally while aligning program funding to business needs to ensure adequate right-sized controls.➣ Reorganized the governance, risk, and compliance function to gain global efficiencies and cost savings while maintaining compliance with industry standards, U.S regulations, and internal/customer audits.➣ Led a global effort to generate revenue through customer-facing security services that included insourcing third-party annual spend of $18M (cost recovery of $16M within the initial 12 months). -
Vp Global Governance, Risk, & ComplianceFirst Data Corporation 2010 - 2011Brookfield, Wisc., Us
-
Board Of Advisors MemberPci Security Standards Council 2010 - 2013Wakefield, Ma, UsThe PCI Security Standards Council is an open global forum for the ongoing development, enhancement, storage, dissemination, and implementation of security standards for account data protection. The Council’s mission is to enhance payment account data security by driving education and awareness of the PCI security standards. Initiated a Mobile Security Task Force with the PCI Standards Council in 2011. -
Director Of It Risk ManagementMckesson 2009 - 2010Irving, Texas, UsLed IT risk management and the compliance program with the unit CIO to influence strategic priorities. Introduced control segmentation services concepts bringing together business need to be aligned to support security and compliance controls (ISO 27001, HIPPA, HITECH) to the transformation efforts of the IT infrastructure.➣ Provided leadership, strategy, vendor management, and architecture guidance transitioning from CISO VPN to Juniper SSL VPN remote access for all U.S. based McKesson employees.➣ Led the management of ISO 27002 certifications across the IT infrastructure service domains of the IT shared services organization. Hired a certification body and aligned corporate governance with IT infrastructure to create an information security management system focused on IT shared services. -
Manager Of Information Strategy, Technology TransformationCapgemini Consulting 2008 - 2009Paris, FrLed an $18M IT shared services infrastructure project (that included 120 team members in Ontario, Canada), focused on transforming the enterprise infrastructure of Loblaw, Canada’s largest food distributor in 1,000 corporate and franchised stores. Introduced stabilization to the current IT infrastructure supporting the national supply chain through risk assessment and remediation. ➣ Introduced IT governance (change control, access control, incident triage), the alignment of controls to business need (impact analysis), and the prioritization of process improvement efforts.➣ Spearheaded effort to design and implement an IT shared services strategy across the Loblaw enter-prise infrastructure to include network, platforms, storage, event management, security, database, data center standards, standard operating procedures, and project governance. -
Technical AdvisorSensible Vision Inc Mar 2004 - Apr 2008Cape Coral, Florida, UsTechnical Advisor supporting CEO/CTO as needed -
Vp | Manager Of Risk Assessment & RemediationSuntrust Banks, Inc. 2006 - 2008Charlotte, Nc, UsDirected the implementation of enterprise-wide IT operational controls against the internal policy, industry best practices, Sarbanes-Oxley, and regulatory standards. Led a 13-person team across Atlanta, making quarter-ly visits to India to manage IT vendor relationships including Infosys, IBM, Wipro, and HP. Developed information security, risk assessment, and business continuity functions for global outsourcing; managed a $1.6M annual budget. ➣ Reduced time to market of outsourced projects by 4-6 months by creating and institutionalizing operational framework to optimize offshore risk analysis, resulting in significant time and cost savings.➣ Developed a global outsourcing risk management program that included a cross-functional group from legal, audit, procurement, operational risk, and vendor management departments. -
Vp | Manager Of Global Outsourcing RiskSuntrust Banks, Inc. 2005 - 2006Charlotte, Nc, Us
-
Director Of Career Development At Issa Metro Atlanta ChapterIssa (Metro Atlanta) Jan 2005 - Dec 2006Director of Career Development with the Metro Atlanta Chapter ISSA (Information Systems Security Association) For more information please see www.gaissa.org. Facilitate Career Day events (professional networking), Resume workshops & resources, CISSP / CISA study groups, Liaison with recruiters.
-
Lead InstructorEfortresses, Inc. 2005 - 2006Atlanta, Georgia, UsLead Instructor for the HISP (Holistic Information Security Practitioner) Certification Course. The HISP covers the fundamentals and principles of the ISO 17799:2005, COBIT and COSO frameworks within a single five day course. The course teaches executives, management, and professionals how to map the requirements of current ever changing government regulations, (Sarbanes Oxley, HIPAA, Gramm Leach Bliley Act, California SB-1386 and others) to a solid framework of international best practices--ISO 17799, COBIT and COSO. The HISP is the only international class that teaches these invaluable skills. -
Board Of AdvisorsTippingpoint Technology Now Owned By Hp Enterprise Security Mar 2002 - Feb 2005Houston, Texas, UsCustomer Advisory Board Member for TippingPoint Technologies IPS solutions. -
Global Information Security Officer | Risk Assessment LeadHp Jan 1993 - Feb 2005Palo Alto, Ca, UsProgressed through increasingly responsible, strategic, and challenging positions. Reported directly to HP's first CISO and assisted in defining and implementing HP's global information security organization.➣ Led the information security due diligence team for the acquisition of Digital Global Soft, based in Bangalore, India. Directed the on-site evaluation of the governance structure and all elements of information security; played a key role in DGS’ secure integration into HP. ➣ Managed a 12-month program with HP’s business-critical systems labs that identified and introduced security measures and ensured tight protection of intellectual property within each of the seven labs.➣ Additional roles included Program Manager, Team Lead, Solutions Specialist, and Support Administrator. -
Head Of Information Assurance (Ciso)Premiere Global Services 2005 - 2005Alpharetta, Ga, UsCollaborated with the company’s CEO, CTO, and COO to define and implement new policies and controls, identify information assets, create governance structure, and develop risk assessments. Managed a 3-person team and a $900K annual budget. ➣ Applied for and gained accreditation for the service as a VISA PCI-compliant (CISP) assessor. Consoli-dated existing information security resources to create a centralized security organization. ➣ Completed HIPPA security assessment and remediation activities for a 500-bed health care facility (with 30 remote offices) working for the CIO, the Director of IT, and the Chief Compliance Officer.
John W Graham Skills
Elk
Coso
Consulting
Printing
Operational Control
Infrastructure
Third Parties
Technology Industry
Cobit
Enterprise Risk Management
Sales
Vendors
Computing
Penetration Testing
Finance
Career Development
Structure
Web Hosting
Cism
Business Administration
Network Security
Natural Resources
Legal
Facilitation
Offerings
Iso 17799
New Service
Customer Support
Assessment
At&t
Hps
Information Security Management
Management
Revenue
Design
Vulnerability Assessment
Csi
Outsourcing
Science
Security
Funding
Assurance
Customer Value
Time To Market
Information Assurance
Integration
It Service Management
Leadership
Auditing
It Strategy
Visa
Bs7799
Strategic Partners
Cissp
Private Industry
Methodology
Northfield
Data Center
Supplier Evaluation
It Audit
Georgia
Ciso
Networking
Business Services
Cell
Atlanta
Offering
Process Analysis
Validation
Sage Act
Map
Engagements
Strategy
Sold
Management Consulting
Risk Analysis
Enterprise Architecture
Acquisitions
Managed Services
Risk Management
New Business Development
Offshore
Training
Policy
Disaster Recovery
Enterprise Software
Critical Systems
Contract Negotiation
Steady State
Intranet
Global Services
Project Management
Pmp
Healthcare Industry
Service Providers
Reporting
Pre Sales
R&d
Analysis
Partnerships
Security Policy
Premiere
Business Continuity Planning
General Practitioner
Advertising Agency
Hospitals
Identifying Opportunities
Producing
Information Technology
Computer Forensics
Information Security
Trusted Advisor
Coordination
Joining
Star
Hipaa
Office Management
Payment Industry
Ericsson
Communication
Business Analysis
Business Integration
Reasonable
Active
Global Engineering
Privacy Law
Digital Imaging
Operations
Contract Labor
Regulatory Requirements
Holding Companies
Data Security
Risk Assessment
Business Partner
Marketing
Change Management
Global Enterprise
Timelines
Glba
Balancing
Sales Trainings
National Security
Technical Support
Offshore Outsourcing
Project Planning
Remediation
Iso 27001
Project
Sarbanes Oxley Act
Business Process Improvement
Governance
Measurements
Intellectual Property
Re Engineering
Process Management
Pci Dss
Cloud Computing
Standardization
Divestitures
Responsibility
Internal Audit
Council
Cisa
Usa
Banners
E Commerce
Fortune
Regulations
Firewalls
Banking
International
Business Units
Nsa
Executive Management
Infragard
Intrusion Detection
Itil
Web Presence
History
Network Connectivity
Government
Regulatory Standards
Computer Security
Academic
Vendor Management
Cisp
Process Improvement
P&g
Software
Technical Architecture
Technology Needs Analysis
Compliance
Customer Experience Management
Business Continuity
Program Management
Professional Services
Business Process
Internal Controls
Hisp
Issa
Invoicing
Saas
Isaca
Process Design
Due Diligence
Risk
Conceptual Modeling
Marketing Strategy
Mergers And Acquisitions
Architecture
Legislation
Americas
Consumer
Sponsorship
John W Graham Education Details
-
Norwich UniversityInformation Assurance -
Georgia Southern UniversityMarketing
-
Lees-Mcrae CollegeNatural & Applied Theoretical Sciences
-
HpIt Business Process Consulting Program
Frequently Asked Questions about John W Graham
What company does John W Graham work for?
John W Graham works for Redw Advisors & Cpas
What is John W Graham's role at the current company?
John W Graham's current role is Principal, Cybersecurity Consulting.
What is John W Graham's email address?
John W Graham's email address is jo****@****ata.com
What is John W Graham's direct phone number?
John W Graham's direct phone number is +140482*****
What schools did John W Graham attend?
John W Graham attended Norwich University, Georgia Southern University, Lees-Mcrae College, Hp.
What skills is John W Graham known for?
John W Graham has skills like Elk, Coso, Consulting, Printing, Operational Control, Infrastructure, Third Parties, Technology Industry, Cobit, Enterprise Risk Management, Sales, Vendors.
Free Chrome Extension
Find emails, phones & company data instantly
Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Aero Online
Your AI prospecting assistant
Select data to include:
Total price:
$0.00
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial