Brian Jess
Award-winning Application Security Leader; Team Building and Mentoring People is My Passion
Grand Junction,CO
Overview
20
20
years of professional experience
Work History
Manager of Application Security
USLBM Holdings
Hammonton, NJ
02.2019 - 03.2025
- Architected and implemented the Software Development Life Cycle (SDLC) Process for internal code releases, including creating a greenfield and workflow processes to promote code into a production environment
- Created and moved source code from individual environments to a central GIT/Azure DevOps repository structure with branching and merging standard procedures
- Implemented Whitehat as a Dynamic Application Security Testing (DAST) and Veracode as the Static Application Security Testing (SAST) focusing on the OWASP Top 10
- Established and managed Security Application KPIs
- Architected and improved our Web Facing Applications security posture using Cloudflare as the Web Application Firewall, APIs and security monitoring
- Implemented the security standards and approved code releases, including creating Dev and QA/UAT environment for testing and code promotion
- Designed & deployed Privileged Access Manager (PAM) and Privileged Remote Access (PRA) to secure internal and external access
- That was used by internal teams and vendors to release code into the secure production environments
- Established fruitful working relationships with employees, management and vendors
- Provided regulatory leadership for various compliance standards including DLP, PCI and SOX
- Increased BitSight and Tenable to improve security rating from 540 to 790 across 1,000+ domains through strategic web security improvements
Principal Security Analyst and Technology Specialist I
Mayo Clinic
Rochester, MN
08.2018 - 02.2019
- Lead the team on technical design, selection, and application of information systems resources to satisfy the requirements of the systems and the business
- Designed and documented the code repository and created workflows using GIT and Veracode
- Trained staff to use security best practices to reduce the likelihood of human error leading to breaches
- Served as a consultant or tutor, coaching others in specific technical areas of expertise
Principal Security Analyst
Mayo Clinic
Rochester, MN
06.2016 - 08.2018
- Configured intrusion detection systems to monitor network traffic for malicious activity
- Job duties included integrating multiple disciplines into the Information Security policies, procedure development, and data analysis
- Consulted with senior Mayo leadership to provide information, analysis and recommendations to support and advance strategic and operational initiatives for Mayo Clinic
- Recommended strategies to successfully deter and proactively identify security intrusions
Director of Service Delivery
Crossview
Allen, TX
02.2016 - 06.2016
- Developed and maintained strong relationships with key clients to ensure long-term business growth
- Troubleshot complex customer problems by providing personalized support until resolution
- Conducted regular meetings with clients to discuss service levels, expectations, and opportunities for growth
eCommerce Operations Manager/Senior Software Engineer
Bass Pro Shops Inc.
Springfield, MO
11.2004 - 02.2016
- Managed customer experiences with close eye on team interactions, touchpoints and methods of engagement
- Lead eCommerce team in ensuring web applications were PCI compliant
- Developed and maintained our code repositories and release processes
- Managed and implemented SDLC process to match Bass Pro Shops ITIL directive
Summary
Insightful Manager with experience directing and improving operations through effective employee motivational strategies and strong policy enforcement. Proficient in best practices, market trends and regulatory requirements of industry operations. Talented leader with analytical approach to business planning and day-to-day problem-solving.
Skills
Azure, Azure DevOps, CISSP, Cloudflare, Cybersecurity, DLP, Ecommerce, Git, ITIL, OWASP, PCI, SDLC, SOX, UAT, SQL, Outlook, Visual Studio, C#, Python, Java, CI/CD, NIST, Mitre, Docker, SAAS, PAAS, IAAS, Security, Data Integration, Security Integration, Big Data, Continuous Delivery, Continuous Integration, Net, Azure, Scrum, Mentorship, Mentored, Recovery Planning, Data Loss Prevention, Team Building, Attention to Detail, On Time, OWASP, DevSecOps, Visio
Certification
CISSP
Accomplishments
- Supervised team of 15 staff members.
- Improved Security Posture Enhanced security rating by 46% across 1,000 domains in a 4 month period
- Security Posture Improvement Provided remediation for current and legacy applications that dropped our OWASP vulnerabilities by 58% in a 6-month period
- Regulatory Leadership to ensure that the organizations were 100% compliant with PCI, SOX, HIPPA
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Timeline
Manager of Application Security
USLBM Holdings
02.2019 - 03.2025
Principal Security Analyst and Technology Specialist I
Mayo Clinic
08.2018 - 02.2019
Principal Security Analyst
Mayo Clinic
06.2016 - 08.2018
Director of Service Delivery
Crossview
02.2016 - 06.2016
eCommerce Operations Manager/Senior Software Engineer
Bass Pro Shops Inc.
11.2004 - 02.2016
Similar Profiles
David FlerlageDavid Flerlage
Account Manager at USLBM - Barrons LumberAccount Manager at USLBM - Barrons Lumber
Perry ThomsonPerry Thomson
Truck Driver at Foxworth Galbraith/USLBMTruck Driver at Foxworth Galbraith/USLBM
LISA OLDAKOWSKILISA OLDAKOWSKI
Outside Sales Representative at USLBM/ABC CabinetryOutside Sales Representative at USLBM/ABC Cabinetry
Luanna DeLaraLuanna DeLara
Garden Cashier at Home DepotGarden Cashier at Home Depot
Keanan GarnesKeanan Garnes
Salesman at American Furniture WarehouseSalesman at American Furniture Warehouse