Justin Travis Email & Phone Number

Atlanta, Georgia, United States

• As the Chief Information Security Officer (CISO), I lead the comprehensive information security strategy for BitPay's global operations. I am responsible for safeguarding the company's sensitive data, infrastructure.
• Managed a multi-million-dollar security budget, optimizing resource allocation to enhance security initiatives and support strategic business objectives.
• Developed and enforced comprehensive information security strategies and policies, aligning them with business goals and industry best practices.
• Spearheaded the design of robust security architectures, collaborating with technology and business partners to ensure compliance with NIST CSF, NYDFS Part 500, ISO 27001, DORA, and other regulatory frameworks.
• Led cross-functional teams to identify and mitigate security risks, reduce vulnerabilities, and oversee security technologies and incident response protocols.
• Ensured continuous regulatory compliance by monitoring security controls and overseeing security audits, resulting in successful certifications and minimized regulatory risks.

Tampa, Florida, United States

• I executed security and compliance programs, driving business success and cyber risk reduction for industry-leading organizations.
• Aligned security strategy with business goals, managed risk, and secured stakeholder buy-in to drive improvements.
• Developed security metrics for executive and board-level reporting that were used to make informed security decisions.
• Developed and implemented Information Security policies and objectives that drove regulatory compliance and fostered business growth.
• Solved cloud security challenges using diverse security tools and code (Go, Python, Terraform, and more).
• Ensured security and engineering teams met rigorous compliance requirements and standards (NIST/HIPAA/PCI/ISO/FedRamp).

Birmingham, Alabama, United States

• As a leader in the Cloud Center of Excellence, I designed and implemented security requirements that aligned with business objectives, across the institution's multi-cloud environment.
• Led cross-functional relationships to promote Information Security & cloud adoption
• Introduced comprehensive cloud security & identity strategy for AWS and Azure environments, ensuring the protection of sensitive data and maintaining regulatory compliance
• Owned cloud identity strategy, overseeing the implementation and management of identity and access management solutions (Okta/Azure AD)
• Engineered and implemented cloud automation, resulting in streamlined processes and enhanced operational efficiency (Terraform/Vault/Python)
• Implemented industry-leading security best practices to enhance security posture and protect critical assets in the cloud environment (least privilege/zero trust)

Birmingham, Alabama

• I spearheaded the implementation of authentication technologies for secure customer data access.
• Led major security initiative for customer authentication, resulting in 8-figure savings and improved customer experience for 9MM+ customers
• Created business-specific metrics & owned security vendor relationships
• Negotiated vendor service level agreements and statements of work
• Owned Risk & Compliance requirements for customer authentication
• Developed strategic security plans in line with business goals

Birmingham, Alabama

• I led the strategy and implementation of Identity and Access Management solutions.
• Developed and executed IAM security strategy, overseeing the implementation and authoring relevant code (Python/PowerShell)
• Designed access management strategies and implemented secure measures for protecting sensitive data (encryption/least privilege)
• Engineered security solutions for server and compute platforms (Windows/Linux)
• Implemented a wide range of security tooling, including both in-house solutions and vendor-provided tools, to enhance the overall security posture
• Cultivated strong vendor relationships and provided advisory services to the Executive team, contributing to informed decision-making and effective strategic planning

Birmingham, Alabama

• I implemented solutions that safeguarded critical infrastructure data within a large-scale hospital environment.
• Supplied architecture direction and last-line engineering support in a mission-critical environment
• Improved security reporting by enhancing alert metrics and remediating security vulnerabilities in servers and workflows
• Responsible for all aspects of technical systems, including IAM, Active Directory, DNS, DHCP, and Group Policy, among others
• Engineered highly available and fault-tolerant environments
• Developed and executed strategy action plans for significant technology changes, meeting business needs

Birmingham, Alabama, United States

• I spearheaded the implementation of Information Security initiatives to protect critical infrastructure and data.
• Developed effective architecture and improved engineering processes for high-demand and highly secure networks
• Implemented security best practices for server technologies, Active Directory, and network security devices
• Advised Executive leadership on the current security environment and supplied future vision
• Built out the backup disaster recovery team into a trusted and effective business unit, improving business continuity and incident response
• Mentored junior architecture and engineering team members

Birmingham, Alabama, United States

• As an Engineering Manager at a pivotal sports software company, I developed solutions for high-profile entities, including NFL, ESPN, CBS Sports, and major NCAA universities.
• Led a team of engineers building and servicing end-user applications and solutions on the AWS cloud
• Exceeded strict engineering requirements and communication expectations for high-profile clients
• Introduced security plans and processes for Identity and Access Management
• Managed and mentored Engineering Support employees

Tuscaloosa, Alabama

• In a large enterprise and manufacturing environment, I served as a Systems Engineer, overseeing and administering diverse technological needs to ensure seamless operations and optimal performance.
• Administered servers running critical production operations
• Owned network and server technologies, including Active Directory, Group Policy, DHCP, and DNS
• Led engineering for large-scale Information Technology projects
• Responsible for Identity & Access Management