Jason Broz
Cybersecurity Professional
Strongsville,OH
Summary
Strategic cybersecurity leader with over 12 years of experience driving cybersecurity risk management, compliance, and governance initiatives across diverse industries. Recognized as a national lead for NIST CSF services and PCI QSA, consistently delivering high-impact programs that optimize processes and elevate security postures. Combines technical acumen with business insight to develop scalable solutions that enhance operational efficiency while mentoring global teams to achieve excellence. Proven track record in spearheading initiatives that align with organizational goals and foster a culture of continuous improvement.
Overview
16
16
years of professional experience
4
4
Certifications
Work History
Director – Cyber strategy
RSM US LLP
01.2022 - Current
- National Lead NIST Cyber Security Framework (CSF) services
- Lead cross-functional teams training users on standardized procedures and internal workflows, including coordination with international resources
- Led implementation of AI enabled assessment tool and associated process for assessments, gaining approximately 15% increase in revenue and reducing engagement time by 20%.
- Led the revamping of recruiting process and associated tools and processes, increasing efficiency by 10%.
- Collaborate with a cross-functional team to develop a comprehensive training program for all cybersecurity consultants resulting in an increase of CPE compliance by 20%.
- Lead teams through engagements providing high quality output, on time delivery, within budget; exceeding client expectations.
- Provide advisory services to US based and international clients to enhance security posture and reduce risk.
- Direct multi-phase client projects from initiation through successful completion ensuring alignment with objectives, timelines, and exceeding stakeholder expectations
- Provided thought leadership on critical cybersecurity topics through webinars and blog posts offering tactical and strategic insights to industry stakeholders and clients.
- Champion a performance-driven culture through collaborative leadership and goal-oriented project execution.
Manager – Cyber strategy
RSM US LLP
01.2018 - 01.2022
- Oversaw delivery of cyber security services and implementations across diverse client portfolios
- Led global engagement teams to execute tailored cybersecurity strategies, resolving client challenges.
- Advised clients on risk mitigation and partnered to develop actionable business-aligned solutions
- Managed project schedules, budgets, and resources for small and large-scale engagements, ensuring high quality reporting, timely delivery, and cost efficiency.
- Facilitated executive-level presentations, delivering insights, recommendations, and strategic roadmaps.
- Built and nurtured high-performing teams to support engagement execution and client success.
- Developed and implemented repeatable and scalable processes for core and adjacent service offerings.
- Championed continuous improvement initiatives to enhance operational effectiveness and service quality.
- Led annual security training programs for new associates and bi-weekly workshops for strategy and compliance focused resources, fostering knowledge transfer and skill development.
- Authored thought leadership content, delivered presentations, and contributed to expert opinions across multiple media platforms.
- Interviewed potential resources for technical proficiency, cultural alignment, and team fit.
- Mentored peer and junior consultants, fostering professional growth and team cohesion.
- Engaged in negotiation and conflict resolution to support successful project outcomes and client relationships.
Associate Principal
SecureState
01.2016 - 01.2018
- Led engagement teams to design and implement cybersecurity strategies addressing client-specific risks and compliance requirements.
- Delivered tailored governance, risk, and compliance solutions by integrating deep technical experience and strategic business insight.
- Partnered with clients to develop and execute remediation plans in support of strategic objectives and industry best practices.
- Conducted executive level advisory sessions to present risk assessments, mitigation strategies, and prioritized, actionable recommendations.
- Identified industry trends, issues, and developed proactive solution strategies to address evolving client needs.
- Built and mentored high-performing teams fostering collaboration, accountability, and continuous improvement.
- Mentored junior team members, contributing to their professional growth and development.
- Aligned department goals with broader organizational objectives, fostering a cohesive vision for success across teams.
Senior Associate Management Consultant
SecureState
01.2016 - 01.2016
- Led engagement teams to design and implement cybersecurity strategies addressing client-specific risks and compliance requirements.
- Delivered tailored governance, risk, and compliance solutions by integrating deep technical experience and strategic business insight.
- Partnered with clients to develop and execute remediation plans in support of strategic objectives and industry best practices.
- Conducted executive level advisory sessions to present risk assessments, mitigation strategies, and prioritized, actionable recommendations.
- Identified industry trends, issues, and developed proactive solution strategies to address evolving client needs.
- Built and mentored high-performing teams fostering collaboration, accountability, and continuous improvement.
- Revamped assessment service processes for overall alignment, consistency, repeatability, and scalability.
- Authored thought leadership content and contributed expert insights through blogs, presentations, and media engagements.
- Interviewed and evaluated candidates for technical proficiency, cultural fit, and team alignment.
- Facilitated conflict resolution and negotiation to support client relationships and internal team dynamics.
Associate Management Consultant
SecureState
01.2015 - 01.2016
- Revamped assessment service processes for overall alignment, consistency, repeatability, and scalability.
- Authored thought leadership content and contributed expert insights through blogs, presentations, and media engagements.
- Interviewed and evaluated candidates for technical proficiency, cultural fit, and team alignment.
- Led engagement teams to design and implement cybersecurity strategies addressing client-specific risks and compliance requirements.
- Delivered tailored governance, risk, and compliance solutions by integrating deep technical experience and strategic business insight.
- Partnered with clients to develop and execute remediation plans in support of strategic objectives and industry best practices.
- Conducted executive level advisory sessions to present risk assessments, mitigation strategies, and prioritized, actionable recommendations.
- Identified industry trends, issues, and developed proactive solution strategies to address evolving client needs.
- Built and mentored high-performing teams fostering collaboration, accountability, and continuous improvement.
Senior Consultant- Audit and Compliance
SecureState
01.2014 - 01.2015
- Led engagement teams to assess client security posture, identify deficiencies, and provide recommendations for improvement.
- Partnered with clients to develop and execute remediation plans in support of strategic objectives and industry best practices.
- Identified industry trends, issues, and developed proactive solution strategies to address evolving client needs.
- Revamped assessment service processes for overall alignment, consistency, repeatability, and scalability.
- Authored thought leadership content and contributed expert insights through blogs, presentations, and media engagements.
Audit and Compliance Staff Consultant
SecureState
01.2012 - 01.2014
- Supported engagement teams to design and implement cybersecurity strategies addressing client-specific risks and compliance requirements.
- Delivered tailored governance, risk, and compliance solutions by integrating deep technical experience and strategic business insight.
- Partnered with clients to develop and execute remediation plans in support of strategic objectives and industry best practices.
- Authored thought leadership content and contributed expert insights through blogs, presentations, and media engagements.
Computer Operator- IT Operations
Diebold
01.2010 - 01.2012
- Monitored network component, systems, and mainframe environments to ensure seamless IT operations and business continuity.
- Executed daily report generation and distribution across business units, supporting operational transparency and decision-making.
- Collaborated with global team members to troubleshoot and resolve technical issues, contributing to consistent quality and uptime.
Education
Bachelors of Science - Business Information Systems
Indiana Wesleyan University
Associates of Applied Business - Management of Information Systems
Stark State College
Skills
Cyber security governance
NIST CSF
PCI DSS
HIPAA
Privacy
NIST 800-53
NIST RMF
Cyber security audit
Risk management
Problem-solving
Project management
Team management
Certification
CISSP
Military Experience
- Field Artillery Radar System Operator
- Bamberg Area, Germany
- Honorably Discharged as Specialist (E-4)
- Deployed for twelve months to Bosnia-Herzegovina as a part of Operation Joint Endeavor - Task Force Eagle.
Websites
Timeline
Director – Cyber strategy
RSM US LLP
01.2022 - Current
Manager – Cyber strategy
RSM US LLP
01.2018 - 01.2022
Associate Principal
SecureState
01.2016 - 01.2018
Senior Associate Management Consultant
SecureState
01.2016 - 01.2016
Associate Management Consultant
SecureState
01.2015 - 01.2016
Senior Consultant- Audit and Compliance
SecureState
01.2014 - 01.2015
Audit and Compliance Staff Consultant
SecureState
01.2012 - 01.2014
Computer Operator- IT Operations
Diebold
01.2010 - 01.2012
Associates of Applied Business - Management of Information Systems
Stark State College
Bachelors of Science - Business Information Systems
Indiana Wesleyan University