Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Jon West

Jacksonville,USA

Summary

Accomplished Chief Information Security Officer with a strong background in cybersecurity strategy and risk management. Drove initiatives that strengthened incident response and third-party risk assessment processes, cultivating a security-focused organizational culture. Proficient in leading teams and collaborating with stakeholders to achieve compliance and enhance operational performance. Excels in strategic planning, leadership, and communication, ensuring robust security protocols are seamlessly integrated into organizational operations.

Overview

22
22
years of professional experience
1
1
Certification

Work History

Chief Information Security Officer and Privacy Officer

GUIDEWELL SOURCE
Jacksonville, Florida
01.2020 - Current
  • Provides leadership and executive-level decision-making for all aspects of the company's enterprise information security strategy, IT risk and compliance management systems, IT and security operations including threat and vulnerability management, incident response, third party/supply chain risk management, identity management, privacy, and assurance of regulatory and contractual compliance with HIPAA, FISMA, NIST 800-53 controls, in conjunction with the Centers for Medicare and Medicaid Services (CMS) BPSSM and MAC ARS requirements.
  • Leads a highly skilled team of cyber and audit professionals to ensure CMS contractual requirements are met as part of a robust and growing information security and privacy program, as well as highly visible audits (Section 912 audit, FISMA assessment, CFO audits, SSAE 18, etc.) where successful outcomes directly impact company performance and revenue.
  • Serves as the enterprise Privacy Officer and member of the enterprise risk and compliance committee responsible for protecting information of its employees and customers.
  • Manages up-to-date information on security policies and procedures, overseeing approval, dissemination, and training to ensure accountability throughout the company.
  • Leads and manages a cross-functional incident response team to rapidly identify, contain and recover from cyber incident response events.
  • Partners with infrastructure colleagues to modernize technology including developing a cloud security architecture and strategic roadmap for artificial intelligence and generative AI research.
  • Responds to and partners with internal and external auditors and regulatory examiners on a regular basis to satisfy information technology and cyber security risk program inquiries.
  • Creates and delivers information security and risk management awareness training programs for all employees, contractors, and approved system users; lead concerted efforts to embed systems security into all business operations to support security-by-design and privacy-by-design principles.
  • Drives and manages several high-profile projects from budgets to resources in support of internal and government contracting requirements.
  • Maintains relationships with key officials and colleagues in government agencies (CMS, OIG, etc.).

Chief Information Security Officer

KEMPER CORPORATION
Jacksonville, Florida
10.2012 - 12.2019
  • Provided leadership and executive-level decision-making for all aspects of the company's enterprise information security strategy and IT risk management systems, including threat and vulnerability management, incident response, third party/supply chain risk management, identity management, and assurance of regulatory compliance with numerous industry standards and regulations, i.e., Gramm-Leach Bliley (GLBA), Sarbanes-Oxley, HIPAA and PCI-DSS, among others.
  • Hands-on development and enhancement of the company's information security management framework and cyber security operations, guided by the International Organization for Standardization (ISO) 27001/2, COBIT/Risk IT, National Institute of Standards and Technology (NIST) Cybersecurity Framework.
  • Worked in close concert with business units to assess cyber risk and enhance IT risk management processes, enterprise change management, third party risk management, and maintaining an effective liaison among key decision makers to identify acceptable levels of residual risk.
  • Gathered, organized and published up-to-date information on security policies and procedures, overseeing approval, dissemination and training to ensure accountability throughout the company.
  • Led and managed a cross-functional incident response team to rapidly identify, contain and recover from cyber incident response events.
  • As part of strategic enterprise and operational risk management, provided enterprise risk teams, senior business leaders, and Board of Directors with regular written and in-person verbal progress reports on status of current information security programs.
  • Responded to and partnered with internal and external auditors and regulatory examiners on a regular basis to satisfy information technology and cyber security risk program inquiries.
  • Created and delivered information security and risk management awareness training programs for all employees, contractors, and approved system users; lead concerted efforts to embed systems security into all business operations to support security-by-design and privacy-by-design principles.

Enterprise Controls Manager/Business Information Security Officer

KEMPER SERVICES GROUP Division
Jacksonville, Florida
11.2009 - 10.2012
  • Served as leader of business process development for financial systems, controls and security operations for entire company; additionally, managed and supported security compliance and related projects for 2 operating units (GLBA, and PCI DSS).
  • Provided leadership and direction for internal control design and effectiveness for 3 operating companies (Sarbanes-Oxley, COSO and COBIT).
  • Maintained strong line of communications with operating companies under purview, providing timely security and controls compliance updates.

Accounting Systems Manager

KEMPER SERVICES GROUP Division
Jacksonville, Florida
09.2008 - 11.2009
  • Played key role in leading new development efforts for Oracle Financials and other accounting processes; managed Oracle ledger consolidation for three (3) operating companies supporting Kemper's Shared Services implementation.
  • Assisted the Corporate Data Center in organizing and managing system patches, system upgrades and all user acceptance testing; designed new Accounts Payable (A/P) workflow process and monitored the A/P imaging and workflow system project.
  • Supported over 1,000 nationwide users of Oracle Financials e-Business Suite, and monitored reviews for Sarbanes-Oxley controls, partnering with Internal Audit and Deloitte for compliance audits.

Manager, Accounting Systems/Accounts Payable

KEMPER AUTO & HOME Division
Jacksonville, Florida
04.2007 - 09.2008
  • Full-charge responsibility for all Accounts Payable operating activities including management of an average of $8.0 million in monthly cash disbursements.
  • Successfully led numerous and varied projects, from Oracle G/L set of books conversion and implementation of expense reporting system, to assisting with an accounting runoff acquisition of a sister company.
  • Leveraged Microsoft Access application along with other software to achieve an 80% reduction in data processing time.
  • Worked closely with Internal Audit and Deloitte in the management of numerous compliance audits.

Accounting Systems Analyst

KEMPER AUTO & HOME Division
Jacksonville, Florida
10.2005 - 04.2007
  • Played key leadership role in design and implementation of a streamlining of the premium tax process, which was later adopted for company-wide application and is in use to this day.
  • Led multiple process improvement initiatives, analyzing legacy systems for inefficiencies to identify redundancies; coordinated process improvements; assisted in Oracle 11i upgrade and implementation.
  • Developed Microsoft Access training curriculum and delivered formal training on custom MS Access applications for both Accounting and Finance personnel; designed multi-functional Access database applications for multiple users.

Statistical Analyst

CAROLINA CASUALTY INSURANCE COMPANY
Jacksonville, Florida
05.2003 - 10.2005
  • Working in the company's Actuarial Department, performed broad range of financial analysis functions that included analysis of production reports and the creation of reports for executives and support staff; designed and maintained the department's Intranet site.
  • Designed multi-functional MS Access database applications for multiple users.

Education

Bachelor of Science - Business Administration

TOCCOA FALLS COLLEGE
Toccoa, Georgia

Skills

  • Cybersecurity strategy
  • Risk management
  • Incident response
  • Third-party risk assessment
  • Cloud security
  • Information governance
  • Business continuity planning
  • Data privacy compliance
  • Security awareness training
  • Audit coordination
  • Regulatory compliance
  • Project management
  • Team leadership
  • Stakeholder engagement

Certification

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Privacy Technologist (CIPT)

Timeline

Chief Information Security Officer and Privacy Officer

GUIDEWELL SOURCE
01.2020 - Current

Chief Information Security Officer

KEMPER CORPORATION
10.2012 - 12.2019

Enterprise Controls Manager/Business Information Security Officer

KEMPER SERVICES GROUP Division
11.2009 - 10.2012

Accounting Systems Manager

KEMPER SERVICES GROUP Division
09.2008 - 11.2009

Manager, Accounting Systems/Accounts Payable

KEMPER AUTO & HOME Division
04.2007 - 09.2008

Accounting Systems Analyst

KEMPER AUTO & HOME Division
10.2005 - 04.2007

Statistical Analyst

CAROLINA CASUALTY INSURANCE COMPANY
05.2003 - 10.2005

Bachelor of Science - Business Administration

TOCCOA FALLS COLLEGE

Similar Profiles

CREATE PROFILE