Summary
Skills
Publications
Overview
Certification
Work History
Education
Security Frameworks And Technologies
Awards
Affiliations
Work Availability
Work Preference
Quote
Timeline
81
Nigel Sampson

Nigel Sampson

Lyman,USA

Summary

Tech-savvy innovator with hands-on experience in emerging technologies and passion for continuous improvement. Skilled in identifying opportunities for technological enhancements and implementing effective solutions. Adept at leveraging new tools and methods to solve problems and enhance productivity. Excels in adapting to fast-paced environments and driving technological advancements. Proactive and goal-oriented professional with excellent time management and problem-solving skills. Known for reliability and adaptability, with swift capacity to learn and apply new skills. Committed to leveraging these qualities to drive team success and contribute to organizational growth. Demonstrates strong analytical, communication, and teamwork skills, with proven ability to quickly adapt to new environments. Eager to contribute to team success and further develop professional skills. Brings positive attitude and commitment to continuous learning and growth. Experienced leader with strong background in guiding teams, managing complex projects, and achieving strategic objectives. Excels in developing efficient processes, ensuring high standards, and aligning efforts with organizational goals. Known for collaborative approach and commitment to excellence.

Skills

  • Strategic planning
  • Innovative thinking
  • Creative problem-solving
  • Project management
  • Risk assessment
  • Visionary leadership
  • Cross-functional collaboration
  • Process improvement
  • Strategic partnerships
  • Budget management
  • Change management
  • Continuous improvement
  • Business growth
  • Customer focus
  • Cybersecurity
  • Problem-solving

Publications

  • Inside a Lockbit Ransomware Attack, Information Security Buzz, 01/01/18, https://lnkd.in/gc8Nnbdz, A first hand account of a Ransomware Double Extortion attack. Restoring business operations through ingenuity, persistence, preparedness, and planning.
  • Understanding the Benefits of the Capability Maturity Model Integration (CMMI), 02/2025, https://www.tripwire.com/state-of-security/understanding-benefits-capability-maturity-modelintegration-cmmi, "Cybersecurity is the leading corporate governance challenge today, yet 87% of C-suite professionals and board members lack confidence in their company's cybersecurity capabilities. Many CISOs and CSOs focus on implementing standards and frameworks, but what good is compliance if it does not improve your overall cybersecurity resilience?" - The CMMI Institute

Overview

24
24
years of professional experience
2
2
Certification

Certification

Certified Information Systems Security Professional, ISC2, 02/2026, 591210

Cisco Advanced Routing and Switching Certification

Work History

Head of Cybersecurity and IT

Dosespot
02.2024 - 02.2025
  • Aligned cybersecurity strategy with company goals to minimize risk by 85%
  • Supplied hands-on technical support for security solutions
  • Global Administrator for Microsoft M365, and E5 licenses
  • Overseeing EntraID, Compliance Manager, and Enterprise Application permissions
  • Achieved multiple SOC 2 and HITRUST certifications
  • Developed incident response plan and conducted tabletop tests for preparedness
  • Saved $8500 per month by eliminating underperforming Service Providers
  • Minimized exposed asset risk by 75%
  • Launched Single Sign-On and Passkey authentication to lessen user login time by 50% and increase user satisfaction scores by 80%
  • Negotiated contracts with key IT vendors, resulting in a 20% cost reduction and bettered service delivery and support response times

Director of Global Cybersecurity

International Data Group, Inc.
02.2022 - 02.2024
  • Submitted, and received approval for, a multiyear, multi-million dollar global cybersecurity strategy to the IDG Board
  • Led the development and deployment of the cybersecurity program across 7 business units, with diverse tech stacks, in 65 countries, encompassing 4,500 employees
  • Cultivated strong relationships with key stakeholders, admitting executive management, legal teams, and HR
  • Directed regular risk assessments and devised risk mitigation strategies to effectively reduce security vulnerabilities
  • Selected and implemented cutting-edge security technologies, including Zero Trust Network Access, Attack Surface Management, Patch Management, Asset Management, Managed Detection and Response, Secure Access Service Edge, brand protection, and Third-Party Risk Management
  • Decreased attack surface by 30% and vulnerabilities by 80%
  • Enhanced global IT risk profile by 40%
  • Superintended the response to various security incidents, coordinating investigations that reduced average investigation time by 75%, and implemented corrective actions that decreased recurrences by 40%
  • Diminished mean-time-to-recovery from 277 days to 140 days
  • Evolved and delivered comprehensive global security awareness and training programs for 4,200 employees worldwide
  • Reduced vulnerabilities by 90% and minimized the attack surface by 30%
  • Mitigated insider threats by 30%

Director of Information Security

Alegeus, Inc.
03.2020 - 02.2022
  • Managed and heightened the Information Security Program for Alegeus
  • Maintain the Compliance program that for PCI certification, HIPAA, and SOC 1 & 2 compliance
  • Participated in Board-level presentations
  • Expanded team of security professionals from 2 to 6 to cover key security domains aligned to business objectives
  • Supervise Security Operations, Engineering, GRC Including; Incident management, Data loss and fraud prevention, Vulnerability Program Management
  • Migrated On-prem SPLUNK (SIEM) housed on 7 servers to online administered SIEM using Deepwatch, saving $12k per month
  • Applied multiple security solutions that led to a 75% increase in compliance with industry regulations

Vice President Enterprise Risk Management & Information Security Officer

Salem Five Bank
11.2019 - 02.2020
  • Responsible for sustaining, and carrying through the Information Security program to guarantee the confidentiality, integrity, and controlled availability of customer, employee, and business information
  • Supervised the governance and management of information and technology risks across the enterprise and establishes information technology policies
  • Worked with internal stakeholders on mortgage fraud
  • Trained new hires in security awareness
  • Worked with FDIC bank examiners on findings and remediation
  • Saw to it the bank conformed to banking standards and regulations for risk management

Director Information Security & CISO

Cotiviti
08.2018 - 10.2019
  • Oversaw the development, maintenance, and implementation of the Information Security Management program to ensure confidentiality, integrity, and controlled availability of customer, employee, and business information
  • Collaborated with major healthcare clients on Security Assessment calls to address security concerns and strengthen relationships
  • Established and enforced global information security policies, standards, and procedures to effectively manage risks associated with business activities
  • Led enterprise-wide initiatives to educate users on information security responsibilities and foster a culture of security awareness
  • HITRUST certification successfully achieved for six lines of business
  • Created a solution for Client Assurance and Vendor Risk Management to enhance security measures
  • Deployed 11 Risk and Compliance based solutions to mitigate security risks
  • Quarterly updates to the Board on information security initiatives and progress
  • Consolidated 27 security solutions to optimize ROI and reduce operational costs
  • Created Application Security Program to enhance overall security posture

Manager Security Operations

Charter Communications
05.2017 - 08.2018
  • Renders security subject matter expertise in cloud security technologies, solutions and capabilities
  • Handling a global team of security engineers and security analysts, assuring continuously improved fulfillment of all aspects of security services, such as configurations, ongoing operation support for security tools
  • Continuously monitored, evaluated and ameliorated implementation and operational support processes
  • Guaranteeing appropriate configuration, testing, reporting, alerting and overall process flows are efficient
  • Developed related standard operating procedures and documentation
  • Expanded relationships with Security Service vendors, to understand their technology road maps
  • Furnished oversight on vendor risk management
  • Responsible for evolving a Security Operations Center for enterprise wide incident handling and threat management across 8 global Data-centers, and 97 supervised security clients
  • Established a Security Operations Center
  • Developed threat management Policies and Procedures

Senior Manager for Information Security

Aspen Technology, Inc.
10.2014 - 04.2017
  • Superintended and handled the deployment of key security technologies, including: Network Access Control (NAC), Data Loss Prevention (DLP), Security Information and Event Management (SIEM), Web Application Firewall (WAF), Mobile Device Management (MDM), and Security Email Gateway (SEG)
  • Conducted 4 workshops with 300 Developers to implement comprehensive DLP solution: Digital Guardian
  • Successfully tagging all Source Code repositories and preventing tagged data from exfiltration
  • Reducing Data Loss by 80% within 8 weeks
  • Guided risk, compliance, and security operations across all 39 global offices across 29 countries
  • Exhibited key metrics to Executive leadership
  • Collaborated with cross-functional groups to deploy multiple security solutions
  • Bettered IT operational workload by 75% through threat mitigation

Information Security Project Manager

MBTA & Mass DOT
04.2012 - 09.2014
  • Responsible for deploying 3 enterprise-wide security solutions
  • Produced a vendor selection model based on federal grant requirements and departmental technical requirements for each solution
  • Consulted with the Mass DOT IT department to assist in PCI Compliance initiative
  • Delivered technical guidance in PCI Compliance and supplied required artifacts and strategy to fulfill PCI compliance for Mass DOT
  • Lead in obtaining PCI compliance for the MBTA

Owner

Network Systems Consulting
02.2001 - 04.2010
  • Executed security assessments, penetration testing, and FDIC audit preparation for over 70 community banks throughout California
  • Advised on technical matters for various financial institutions, encompassing directing 10 SOC 2 type 2 audits
  • Supplied consulting services to law firms on security assessments and compliance requirements

Education

High School Diploma - General Studies

East Barnet School

Security Frameworks And Technologies

  • HITRUST
  • SOC 2
  • PCI DSS
  • NYDFS
  • NIST CSF
  • FDIC
  • SASE
  • AZURE security controls
  • GCP Security tools
  • CSPM
  • EDR
  • MDR
  • DLP
  • ASM
  • SIEM
  • ASM

Awards

Innovator of the Quarter, MassDOT, 05/2014, Presented by the Massachusetts Secretary of Transportation. From a recommendation to replace paper based RFP's to a digital based submission model.

Affiliations

  • ISC2 2018-Present
  • SecureWorld Advisory Board Member 2021-2024
  • Boston CISO Executive Network 2020-Present
  • Aphinia CISO Network 2023-Present
  • Vigitrust Global Advisory Board Member 2023-Present

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Work Preference

Work Type

Full TimeContract Work

Work Location

RemoteHybrid

Important To Me

Company CultureFlexible work hoursWork from home optionPaid time offHealthcare benefitsPaid sick leave401k matchStock Options / Equity / Profit Sharing

Quote

If you really look closely, most overnight successes took a long time.
Steve Jobs

Timeline

Head of Cybersecurity and IT

Dosespot
02.2024 - 02.2025

Director of Global Cybersecurity

International Data Group, Inc.
02.2022 - 02.2024

Director of Information Security

Alegeus, Inc.
03.2020 - 02.2022

Vice President Enterprise Risk Management & Information Security Officer

Salem Five Bank
11.2019 - 02.2020

Director Information Security & CISO

Cotiviti
08.2018 - 10.2019

Manager Security Operations

Charter Communications
05.2017 - 08.2018

Senior Manager for Information Security

Aspen Technology, Inc.
10.2014 - 04.2017

Information Security Project Manager

MBTA & Mass DOT
04.2012 - 09.2014

Owner

Network Systems Consulting
02.2001 - 04.2010

High School Diploma - General Studies

East Barnet School

Similar Profiles

CREATE PROFILE