Jean-Luc Dupont
Buda
Summary
Extensive experience securing complex and regulated organizations, protecting company assets, aligned with business objectives. Successful at various stages of companies' growth cycle: From fast growing environments to merger to well established international environments. Have the functional, leadership, and hands-on practice experience. Proven team leader, creative thinker, strategic planner, and decision maker. Excellent interpersonal, and consensus building skills. Seeking to leverage expertise and innovation in Cybersecurity strategy to drive transformations in high-growth organizations.
Overview
28
28
years of professional experience
Work History
CISO
Kestra Holdings
07.2023 - Current
- Company Overview: A financial institution for broker-dealers
- Rebuilt an entire team from scratch after the previous team resigned under the former CISO
- Initiated a 3-year roadmap after an internal assessment and implementing a risk management program
- New vendors, processes, tools, and policies to enhance security governance and risk management
- Applied NIST framework and established core IT processes
- Achieved the first SOC 2 certification
- Achieved an 80% reduction in incidents while re-establishing a strong, trust-based relationship across business lines and customers
- Introduced AI for event qualification and escalation
- Tight budget management
- A financial institution for broker-dealers
CISO
American Credit Acceptance
06.2022 - 06.2023
- Company Overview: A financial institution providing auto financing serving 50 states
- Initiated a two-year remediation plan, embracing new technologies
- Implementing a true risk/threat management program at the company level
- Restructured the team and mentored new team members
- New vendors, processes, policies, and tools
- 95% of KPI within SLA
- Reduced vulnerabilities by 80%
- Reduced backlog by 70%
- Established excellent relationship with IT and the management board
- A financial institution providing auto financing serving 50 states
Global Head of Cybersecurity
IDEMIA
06.2017 - 06.2022
- Company Overview: A manufacturer in secure transactions and identity
- Led IDEMIA to a complete cyber-security integration between the 2 former companies through a strategic 3-year roadmap
- Audited complex manufacturing system with global teams on more than 100 sites
- 180 audits (PCI, GSMA, state, federal, international standards) a year
- Continuous global internal audits
- Established policies, procedures, tools, organizations and partnership for production, office, manufacturing, and R&D
- Setup a full GDPR program
- Managed a strict $8 million budget
- A manufacturer in secure transactions and identity
Global Chief Cybersecurity Officer
Oberthur Technologies
01.2011 - 06.2017
- Company Overview: Provided solutions for secure transactions, mobile financial services, digital identity, and access control
- Ensured security continuity of manufacturing and R&D following the buyout of the card systems and identity division while migrating the organization to the Cloud
- 100 certifying audits per year
- Implemented a global internal audit program
- Created and implemented the company's new cybersecurity and compliance roadmap
- Developed a team of experts (local and off-shore)
- Provided solutions for secure transactions, mobile financial services, digital identity, and access control
Corporate Cybersecurity Officer
Oberthur Card Systems
12.2004 - 12.2010
- Company Overview: Provided smart cards for financial and mobile entities
- Hired as the first CISO
- Created a full global cyber-security and compliance program, establishing and implementing procedures, tools and organizations
- This implied Manufacturing, R&D, and Office
- Created and managed a team of experts (local and off-shore)
- Implemented a global internal audit program
- Developed and executed operational security
- Provided smart cards for financial and mobile entities
Senior Security Consultant
NSO
03.2003 - 11.2004
Security Service Integrator
Getronics
03.1997 - 12.2002
- Company Overview: Security Service Integrator
- Security Service Integrator
Education
Epita
Skills
- Leadership and hands-on practice
- Direct and transversal management
- Budget Management
- Secure Development
- Secure cloud migration
- Production security
- Office security
- R&D security
- Cloud security
- Coaching and mentoring
- Lead solutions and organizations to certification
- PCI
- SOC2
- GDPR
- NIST
- NYDFS
- HIPAA
- GLBA
- SOX
- ISO27k
- GSMA
- CFPB
- FINRA
- SEC
- Agile project management
- Technical expert
Websites
Languages
French
Native or Bilingual
Timeline
CISO
Kestra Holdings
07.2023 - Current
CISO
American Credit Acceptance
06.2022 - 06.2023
Global Head of Cybersecurity
IDEMIA
06.2017 - 06.2022
Global Chief Cybersecurity Officer
Oberthur Technologies
01.2011 - 06.2017
Corporate Cybersecurity Officer
Oberthur Card Systems
12.2004 - 12.2010
Senior Security Consultant
NSO
03.2003 - 11.2004
Security Service Integrator
Getronics
03.1997 - 12.2002
Epita
Similar Profiles
Jane De CheneJane De Chene
Product Manager of Advisor Platform at Kestra HoldingsProduct Manager of Advisor Platform at Kestra Holdings
Shannon Kayleigh MooreShannon Kayleigh Moore
Assure Patient Specialist at KESTRA MEDICAL TECHNOLOGIESAssure Patient Specialist at KESTRA MEDICAL TECHNOLOGIES
Christa KretzmeierChrista Kretzmeier
ASSURE Patient Specialist at Kestra MedicalASSURE Patient Specialist at Kestra Medical
Jessica RishelJessica Rishel
Substitute Teacher, K-12 at Austin ISDSubstitute Teacher, K-12 at Austin ISD
Sandy DeBlieckSandy DeBlieck
Sales & Operations Support Specialist at OrchardSales & Operations Support Specialist at Orchard