👾 Michael M. Email and Phone Number
👾 Michael M. work email
- Valid
- Valid
- Valid
👾 Michael M. personal email
Cybersecurity Executive | Information Security Leader | Compliance and Risk Management ExpertI am a seasoned cybersecurity professional with a proven track record of designing and managing robust security programs that align with industry-leading compliance frameworks such as HIPAA/HITECH, SOC 2, NIST 800-53, and the NIST Cybersecurity Framework (CSF). My expertise includes hands-on experience in cloud security (cloud/hybrid-cloud), governance, risk management, and privacy, ensuring that initiatives support business goals while safeguarding critical assets.With a strategic approach to security leadership, I have extensive experience collaborating with both internal teams and external partners to develop high-performance security cultures. My experience spans multiple security domains from incident response to vulnerability management, and I take pride in my ability to contribute to the creation of secure, resilient environments in a way that balances security needs with operational efficiency.Key Areas of Expertise:• Cloud Security & DevSecOps Integration• Governance, Risk, and Compliance (GRC)• Incident Response & Crisis Management• Information Security Leadership & Management• Offensive & Defensive Security Operations• Risk Assessment & Mitigation• Strategic Security Planning & Execution• Threat & Vulnerability Management• Web Application Security
Rhombus
View- Website:
- rhombussystems.com
- Employees:
- 215
-
Security And Compliance Officer • Data Protection Officer (Dpo)RhombusUnited States
-
Information Security And Compliance Officer • Data Protection OfficerRhombus Jul 2024 - PresentSacramento, California, UsAreas of Responsibility:• Information Security (NIST 800-53)• Governance, Risk, and Compliance (SOC 2)• Privacy (GDPR)• Regulatory Compliance (UL, FCC, CE)• Corporate Compliance
-
Interim Director, Information Security • Business Information Security OfficerBluebeam Apr 2024 - Jun 2024Pasadena, California, Us- Defined and executed a multi-year cybersecurity roadmap and key performance indicators, significantly reducing cyber risk.- Partnered with Product & Engineering leadership to align security initiatives with Bluebeam's product roadmap and R&D innovations.- Oversaw product security assessments and the implementation of advanced security technologies.- Developed and coordinated response plans to ensure timely management of information risk-related incidents. -
Manager, Information SecurityBluebeam Feb 2023 - Jun 2024Pasadena, California, UsGlobal Security Leadership:- Orchestrated the development and implementation of robust security solutions, leading a 6-member information security engineering team.Operational Excellence & Security Optimization:- Formulated strategies for operational excellence, optimizing security controls to minimize downtime and business impact.Process Revamp & Efficiency:- Revamped security engineering processes, ensuring their effectiveness and efficiency, resulting in an enhanced overall security posture.Global SOC Management:- Established and managed a 24x7 global security operations center, providing shared SOC services for sister brands and Nemetschek's brand portfolio.Agile Transformation & Collaboration:- Introduced Agile methodology for the Information Security Operations and GRC Teams, enhancing project planning, streamlining security operations, and fostering cross-functional collaboration.Information Security Program Leadership:- Held responsibility for the organization's information security program, implementing technical controls in compliance with NIST RMF (NIST CSF, NIST 800-53), ISO27001, and SOC 2.
-
Manager, Information SecuritySkedulo Sep 2022 - Jan 2023San Francisco, Ca, UsGlobal Cybersecurity Oversight: - Orchestrated and led cybersecurity operations on a global scale, managing a diverse team of 3 IT security engineers across four countries.Incident Response: - Spearheaded cybersecurity incident response efforts globally, ensuring swift containment, response, and mitigation of cybersecurity incidents.Strategic Contingency Steering: - Directed contingency operations, ensuring seamless management of business continuity incidents, disasters, and environmental threats.Compliance Framework Alignment: - Guided the continuous improvement of the Information Security Program and Privacy Program, aligning with diverse compliance frameworks, including HIPAA/HITECH, SOC 2, NIST 800-53, NIST CSF, GDPR, and CCPA.Strategic Vision and Execution: - Played a pivotal role in determining, planning, and executing information security strategic objectives and initiatives.Security Posture Enhancement: - Designed, implemented, and continually improved the company's information security posture. Areas of expertise include secure system design/architecture, incident response, cloud-native security, web application security, threat modeling, and attack surface mapping. -
Senior Information Security EngineerSkedulo Jul 2021 - Sep 2022San Francisco, Ca, UsProgram Development Leadership: - Spearheaded the development of the Information Security Program and Compliance Program, ensuring strict alignment with NIST RMF, GDPR, HIPAA, and SOC 2 standards.Proactive Security Measures: - Led internal audits, risk assessments, penetration testing, and vulnerability assessments, showcasing a commitment to proactive security measures.Incident Response: - Drove incident response efforts, effectively triaging, investigating, responding to, and mitigating cybersecurity incidents.IT Operations Team Development: - Directed the development of the IT Operations Team, contributing to the design of system architecture, implementation of security controls, and provision of comprehensive training.Strategic Planning and Implementation: - Identified key strategic objectives and key results (OKRs), implementing an effective organization-wide information security and continuous compliance strategy.Tooling Procurement and Management: - Successfully procured, implemented, and managed critical IT and application security tooling, including CWPP, CSPM, SAST, DAST, MDM, DLP, AV/EDR.
-
Senior Consultant, Cybersecurity And Risk AdvisoryMoss Adams Jul 2020 - Jul 2021Seattle, Wa, UsTeam Management: - Led a dynamic team of 4, comprising staff and senior-level consultants, fostering collaboration and achieving collective goals.Policy Development: - Developed comprehensive information security policies and procedures, aligning with ISO/IEC 27001, NIST RMF (NIST 800-53 & NIST CSF), and GDPR standards.Client Security Assessments: - Conducted IT security assessments for clients, ensuring compliance with PCI-DSS, HIPAA, HITRUST, and ISGC/ITGC regulations.Program Effectiveness Validation: - Assessed clients' information security programs and IT operating environments, validating the effectiveness of implemented IT security controls against NIST RMF, HITRUST, and PCI-DSS frameworks.Business Process Control Guidance: - Designed and provided clients with strategic guidance for the implementation of robust business process controls.Cybersecurity Campaigns: - Developed and executed social engineering campaigns, including phishing and vishing, utilizing GoPhish to enhance security awareness.Penetration Testing Expertise: - Conducted internal and external penetration testing, evaluating network and web application security.Adversary Attack Simulation: - Developed adversary attack simulation tactics, techniques, and procedures (TTPs) using the MITRE ATT&CK framework, enhancing overall cybersecurity resilience. -
Information Security AnalystUniversity Of California, Davis May 2020 - Jul 2020Davis, California, Us -
Information Security AnalystUniversity Of California, Davis Sep 2019 - Apr 2020Davis, California, Us
-
Security Operations AnalystGridsme Jul 2018 - Sep 2019Folsom, California, Us -
It Service Desk IiPoly Nov 2017 - Jun 2018Santa Cruz, California, Us -
Technical Support Specialist IUniversity Of California, Santa Cruz Apr 2017 - Jun 2018Santa Cruz, Ca, Us -
System AdministratorAmethod Public Schools Sep 2016 - Sep 2017Oakland, California, Us -
Junior System AdministratorAmethod Public Schools Jun 2015 - Sep 2016Oakland, California, Us
👾 Michael M. Skills
👾 Michael M. Education Details
-
University Of California, Santa CruzEnvironmental Studies And Economics
Frequently Asked Questions about 👾 Michael M.
What company does 👾 Michael M. work for?
👾 Michael M. works for Rhombus
What is 👾 Michael M.'s role at the current company?
👾 Michael M.'s current role is Security and Compliance Officer • Data Protection Officer (DPO).
What is 👾 Michael M.'s email address?
👾 Michael M.'s email address is mm****@****ulo.com
What schools did 👾 Michael M. attend?
👾 Michael M. attended University Of California, Santa Cruz.
What are some of 👾 Michael M.'s interests?
👾 Michael M. has interest in Social Services, Children, Economic Empowerment, Education, Poverty Alleviation.
What skills is 👾 Michael M. known for?
👾 Michael M. has skills like Marketing, Sales, Ebay Sales, Online Marketing, Online Research, Social Networking, Marketing Strategy, Social Media Marketing, Strategic Planning, Leadership, Customer Service, Databases.
Who are 👾 Michael M.'s colleagues?
👾 Michael M.'s colleagues are Jonathan Nexsen, Matthew Burns, David Whitaker, Alan Bentley, David M., Benny Calderon, Fang Wang.
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial