Summary
Overview
Work History
Education
Skills
Timeline
Generic

JASON PATTERSON

Parkville,Missouri

Summary

Senior Information Security Executive with over ten years of experience in enterprise governance and cyber risk management. Proven success in implementing ISO27001, SOC 2, and HIPAA standards, significantly improving organizational resilience and compliance. Expertise in developing security frameworks and threat modeling to align with business objectives. Strong leadership in process optimization and operational restructuring, driving efficiency and effectiveness.

Overview

10
10
years of professional experience

Work History

Sr Director - Information Security Operations

Nasuni
Boston, MA
01.2025 - 05.2025
  • Maintained ISO 27001:2022 and SOC 2 Type II certifications for regulatory compliance.
  • Integrated HIPAA and CSA STAR Level 2 controls to ensure adherence to regulations.
  • Developed and implemented threat modeling processes to identify potential risks.
  • Built GRC tracking systems for monitoring compliance and risk posture.
  • Conducted internal and external audits, including vendor risk assessments.
  • Managed SIEM, CNAPP, email protection, and endpoint protection systems.
  • Cultivated relationships with vendors and customers to enhance collaboration.
  • Collaborated with executive leadership to establish long-term security objectives.

Sr. Director – Information Security, Risk, and Compliance

Nasuni
Boston, MA
01.2020 - 01.2025
  • Led IT team in security and risk management for software startup.
  • Achieved ISO 27001:2013 certification on first attempt by implementing controls from scratch.
  • Developed enterprise security tools to enhance client and vendor risk assessments.
  • Established risk council and implemented threat modeling to improve compliance processes.
  • Passed SOC 2 Type II, HIPAA, and CSA Star Level 2 audits for regulatory adherence.
  • Spearheaded IT and security initiatives, overseeing risk assessments and compliance efforts.
  • Pioneered security measures, including GRC tracking, to bolster organizational resilience.
  • Successfully attained ISO 27001:2022, SOC 2 Type II, HIPAA, and CSA Star Level 2 certifications.

Technical Account Manager

Nasuni
Boston, MA
04.2019 - 01.2020
  • Led technical support for enterprise clients, resolving issues promptly and maintaining trust.
  • Collaborated with sales teams to strengthen relationships with key decision-makers.
  • Educated clients on product features, driving operational efficiency and satisfaction.
  • Addressed complex technical inquiries, ensuring swift resolution of client escalations.
  • Analyzed product-related inquiries, delivering tailored solutions to enhance customer satisfaction.
  • Managed enterprise customer support, tackling intricate challenges and fostering client loyalty.

Manager, Enterprise Applications

Black & Veatch
Overland Park, KS
01.2015 - 04.2019
  • Defined IT objectives aligning with organizational goals, enhancing strategic alignment.
  • Collaborated with leaders to establish a comprehensive IT roadmap, fostering cross-department synergy.
  • Developed risk management and recovery plans, ensuring business continuity during major disruptions.
  • Spearheaded IT roadmap creation, aligning business objectives with organizational goals. Implemented cutting-edge risk management strategies and disaster recovery plans.
  • Fostered cross-functional partnerships to develop comprehensive IT strategies. Led team in creating robust business continuity scenarios for critical enterprise applications.
  • Pioneered forward-thinking IT solutions, anticipating future technological needs. Designed adaptable disaster recovery plans, ensuring business resilience in dynamic environments.
  • Conducted in-depth analysis of IT infrastructure to identify optimization opportunities. Developed data-driven risk management procedures, enhancing overall system reliability.
  • Drove significant improvements in IT operational efficiency through strategic planning. Implemented effective disaster recovery solutions, minimizing potential downtime and data loss.

Project Portfolio Management

Black & Veatch
Overland Park, KS
01.2015 - 01.2019
  • Managed $4.2M budget for global mobile security and cloud projects, enhancing operational security.
  • Implemented security training post-phishing, improving user awareness and reducing risks.
  • Configured Azure MFA and Intune for diverse devices, streamlining corporate and BYOD security.
  • Deployed PAM in Azure AD P2, strengthening identity management and access control.
  • Coordinated global resources, efficiently meeting high-volume project demands.
  • Managed $4.2M project portfolio for core business applications, implementing security measures and leveraging global resources for high-volume demands.

Education

Bachelor of Science - Management

Park University
Parkville, MO

MBA - Information Systems Management

Park University
Parkville, MO

Skills

  • HIPAA and ISO27001 compliance
  • SOC2 and information security
  • Enterprise governance and risk management
  • ITIL and cloud security
  • Business continuity and disaster planning
  • Threat modeling and risk assessment
  • Vendor risk management and GRC tracking
  • Cyber risk management and SIEM
  • Project management and strategic planning
  • Security awareness and training
  • Incident management and response
  • Data privacy and protection
  • Regulatory affairs and compliance
  • Internal auditing and policy development
  • Team leadership and coaching

Timeline

Sr Director - Information Security Operations

Nasuni
01.2025 - 05.2025

Sr. Director – Information Security, Risk, and Compliance

Nasuni
01.2020 - 01.2025

Technical Account Manager

Nasuni
04.2019 - 01.2020

Manager, Enterprise Applications

Black & Veatch
01.2015 - 04.2019

Project Portfolio Management

Black & Veatch
01.2015 - 01.2019

Bachelor of Science - Management

Park University

MBA - Information Systems Management

Park University

Similar Profiles

CREATE PROFILE
JASON PATTERSON
Want your own profile? Create for free at Resume-Now.com