Jason McLellan
Grand Rapids,United States
Summary
Accomplished IT Security leader with extensive experience at Meijer, driving governance, risk, and compliance initiatives. Expert in cybersecurity and strategic planning, I successfully implemented a zero-trust framework, enhancing security posture and operational efficiency. Proven ability to communicate effectively with stakeholders and manage cross-functional teams to achieve organizational goals.
Overview
29
29
years of professional experience
1
1
Certification
Work History
IT Security, Incident Response Coordinator
TEKsystems
01.2024 - 09.2024
- Streamlined and measured incident response program for client efficiency.
- Implemented process improvements to enhance operational efficiency.
- Maintained compliance documentation to meet regulatory requirements.
- Developed and shared regular reports on project progress with stakeholders.
- Managed daily departmental operations, including task scheduling and duty assignments.
Director, Meijer Information Security, GRC, Identity and Privacy
Meijer Stores Ltd
Grand Rapids, USA
01.2022 - 01.2023
- Developed governance, risk, and compliance programs to meet stringent regulatory standards.
- Modernized identity and access management by integrating an identity-as-a-service solution.
- Implemented real-time penetration testing and vulnerability assessment capabilities.
- Created a third-party cyber risk program to manage vendor-related threats.
- Formulated and executed policies enhancing operational efficiency and effectiveness.
- Collaborated with cross-functional teams to align project goals with overarching business objectives.
Director, Meijer Information Security, Engineering, GRC, and Privacy
Meijer Stores Ltd
Grand Rapids, USA
01.2019 - 01.2022
- Developed program safeguarding over 75,000 users and 8 million customers across 270 locations, including Hong Kong and Bangladesh.
- Provided strategic direction to implement best-in-class information security strategies for robust protection of assets.
- Established application security and cloud security programs aligned with Safe Agile development methodology.
- Created privacy program to ensure compliance with emerging legislation in operational regions.
- Implemented privileged identity management system to secure sensitive accounts effectively.
- Adopted zero-trust, no-standing access model for cloud and administrative accounts to enhance security.
Director, Meijer Information Security Engineering
Meijer Stores Ltd
Grand Rapids, USA
01.2015 - 01.2019
- Directed strategy and daily operations of Information Security Department, emphasizing risk management and threat monitoring.
- Served as primary contact for sensitive investigations, advising during critical incidents.
- Delivered security threat briefings to senior leaders, facilitating informed decision-making.
- Implemented multifactor authentication for single sign-on and remote access systems, strengthening security protocols.
- Deployed network access control system, effectively preventing unauthorized device access.
- Established comprehensive whitelisting endpoint security solution, enforcing stringent access controls.
- Oversaw budget planning and resource allocation across business units, optimizing expenditures.
- Directed talent acquisition efforts, successfully building a high-performing leadership team.
Senior Manager, Meijer ITS Security
Meijer Stores Ltd
Grand Rapids, USA
01.2013 - 01.2015
- Implemented strategic initiatives through leadership of cross-functional teams across multiple departments.
- Executed operational plans to enhance effectiveness and efficiency within the organization.
- Collaborated with senior leadership to align departmental objectives with overarching corporate vision.
- Managed budgets and allocated resources to maximize project funding and support.
- Oversaw performance evaluations, ensuring staff accountability and promoting development opportunities.
- Coordinated interdepartmental efforts to ensure timely project execution within budget constraints.
Manager, Meijer ITS Security
Meijer Stores Ltd
Grand Rapids, USA
01.2007 - 01.2013
- Eliminated workstation restages from malicious software, reducing incidents from 40 monthly to zero.
- Managed budget allocations to align resources with project requirements.
- Analyzed market trends to guide decision-making and strategic initiatives.
- Coordinated stakeholder communication to ensure alignment on project deliverables.
- Oversaw performance evaluations while delivering constructive feedback to team members.
- Provided leadership during organizational changes and crisis situations.
Team Leader, Meijer ITS Security Technologies
Meijer Stores Ltd
Grand Rapids, USA
01.2003 - 01.2007
Team Leader, Meijer LAN Technology Services
Meijer Stores Ltd
Grand Rapids, USA
01.1997 - 01.2003
Senior Technologies Architect, Meijer Integration Services
Meijer Stores Ltd
Grand Rapids, USA
01.1996 - 01.1997
Education
BBA - Computer Information Systems
Western Michigan University
Kalamazoo, MI11-2002
Skills
- Executive communication
- Strategic planning
- Contract negotiation
- Business acumen
- Financial management
- Cybersecurity expertise
- Cloud security operations (AWS, Azure, VMware)
- Product security and advocacy
- Enterprise risk management
- Threat modeling and vulnerability management
- Attack surface management
- Identity and access management
- Business continuity and disaster recovery
- Incident response and crisis management
- Zero trust framework implementation
- Regulatory compliance
- NIST 800-53 standards
- ISO 27001 certification
- PCI-DSS compliance
- ITIL framework knowledge
- COBIT governance practices
- HIPAA/HITECH compliance
Affiliations
- Retail and Hospitality ISAC
- InfraGard | Federal Bureau of Investigation
Certification
- ISC2 Certified Information Security Systems Professional (CISSP), No. 589163
- Checkpoint Certified Security Expert/Administrator (CCSE/CCSA)
- Cisco Certified Network Associate (CCNA)
References
References available upon request.
Timeline
IT Security, Incident Response Coordinator
TEKsystems
01.2024 - 09.2024
Director, Meijer Information Security, GRC, Identity and Privacy
Meijer Stores Ltd
01.2022 - 01.2023
Director, Meijer Information Security, Engineering, GRC, and Privacy
Meijer Stores Ltd
01.2019 - 01.2022
Director, Meijer Information Security Engineering
Meijer Stores Ltd
01.2015 - 01.2019
Senior Manager, Meijer ITS Security
Meijer Stores Ltd
01.2013 - 01.2015
Manager, Meijer ITS Security
Meijer Stores Ltd
01.2007 - 01.2013
Team Leader, Meijer ITS Security Technologies
Meijer Stores Ltd
01.2003 - 01.2007
Team Leader, Meijer LAN Technology Services
Meijer Stores Ltd
01.1997 - 01.2003
Senior Technologies Architect, Meijer Integration Services
Meijer Stores Ltd
01.1996 - 01.1997
BBA - Computer Information Systems
Western Michigan University