Profiles search
Jason Thorn
Information Security Engineer at Guaranteed Rate
Chicago, IL, United States
Details
Experience:
2020 : Present
Guaranteed Rate
Information Security Manager
The GIAC Advisory Board is made up of GIAC certified professionals who wish to give back to the security community by taking an active role in the GIAC program.
Participation is by invitation only, and is offered to GIAC certification holders who earn a score of 90% or better on at least one certification exam.
https : //www.giac.org/certified-professionals/advisory-board
2017 :
SANS Institute
SANS/GIAC Advisory Board Member
2018 : 2020
Guaranteed Rate
Information Security Engineer
• Manage communications throughout departmental levels, maintaining continuous host and network IPS/IDS and DNS security utilizing current information technology to achieve solutions in alignment with operational procedures.
• Execute leadership in coordinating technology research, engineering, testing, and monitoring within organizational services. Serve as the Incident Handler for all cyber security incidents.
• Facilitate quality support for technology teams, coordinating training for cross functional teams for all information security systems and IT policies. Maintain technical and engineering support, championing the release of technology improvements.
• Establish vulnerability management focused on leading risk assessment and mitigation efforts against Cisco IOS DHCP vulnerability, WPA Krack, Slowloris, Meltdown-Spectre, and additional exploits.
• Develop standard operating procedures based upon security policies, achieving the development of cyber incident response procedures.
• Coordinate communications between the FBI and third-party Incident Response Retainers during cyber security incidents, achieving timely problem resolution.
• Slashed the length of monthly patch cycles from 35 days to 10 days utilizing current business acumen and technology knowledge in support of policy modification.
• Designed and implemented SIEM alerts with the goal of ensuring endpoint compliance leading to the effective identification of suspicious server behavior.
• Deployed Network Access Control policies developed to improve endpoint security compliance achieving a 30% increase in operational success.
• Successfully assisted in the creation and deployment of SSL/PKI solutions, launching enterprise wide implementations of Comodo Certificate Manager and Venafi Trust Protection Platform.
2017 : 2018
Adtalem Global Education
Senior Information Security Engineer
• Delivered technical leadership throughout the development and launch of technology security policies for Network Access Control and Cisco Umbrella.
• Maintained continuous quality support in product qualification and report tracking, effectively mitigating the damage and recovery time for technical systems.
• Utilized working knowledge of Tufin SecureTrack and SecureChange in addition to InfoBlox Tools for DHCP and DNS to support operational goals.
• Effectively reduced Information Security FY OpEx spending by $515,000, using MSA reviews and VAR replacement to ensure continuous cost reductions.
• Provided detailed documentation to senior level management resulting in reduction resolution time.
• Designed incident outcome results based upon cyber security incidents, analyzing problems to introduce operational improvements from security outcomes.
2015 : 2017
Adtalem Global Education
Information Security Engineer
Guaranteed Rate
Information Security Manager
The GIAC Advisory Board is made up of GIAC certified professionals who wish to give back to the security community by taking an active role in the GIAC program.
Participation is by invitation only, and is offered to GIAC certification holders who earn a score of 90% or better on at least one certification exam.
https : //www.giac.org/certified-professionals/advisory-board
2017 :
SANS Institute
SANS/GIAC Advisory Board Member
2018 : 2020
Guaranteed Rate
Information Security Engineer
• Manage communications throughout departmental levels, maintaining continuous host and network IPS/IDS and DNS security utilizing current information technology to achieve solutions in alignment with operational procedures.
• Execute leadership in coordinating technology research, engineering, testing, and monitoring within organizational services. Serve as the Incident Handler for all cyber security incidents.
• Facilitate quality support for technology teams, coordinating training for cross functional teams for all information security systems and IT policies. Maintain technical and engineering support, championing the release of technology improvements.
• Establish vulnerability management focused on leading risk assessment and mitigation efforts against Cisco IOS DHCP vulnerability, WPA Krack, Slowloris, Meltdown-Spectre, and additional exploits.
• Develop standard operating procedures based upon security policies, achieving the development of cyber incident response procedures.
• Coordinate communications between the FBI and third-party Incident Response Retainers during cyber security incidents, achieving timely problem resolution.
• Slashed the length of monthly patch cycles from 35 days to 10 days utilizing current business acumen and technology knowledge in support of policy modification.
• Designed and implemented SIEM alerts with the goal of ensuring endpoint compliance leading to the effective identification of suspicious server behavior.
• Deployed Network Access Control policies developed to improve endpoint security compliance achieving a 30% increase in operational success.
• Successfully assisted in the creation and deployment of SSL/PKI solutions, launching enterprise wide implementations of Comodo Certificate Manager and Venafi Trust Protection Platform.
2017 : 2018
Adtalem Global Education
Senior Information Security Engineer
• Delivered technical leadership throughout the development and launch of technology security policies for Network Access Control and Cisco Umbrella.
• Maintained continuous quality support in product qualification and report tracking, effectively mitigating the damage and recovery time for technical systems.
• Utilized working knowledge of Tufin SecureTrack and SecureChange in addition to InfoBlox Tools for DHCP and DNS to support operational goals.
• Effectively reduced Information Security FY OpEx spending by $515,000, using MSA reviews and VAR replacement to ensure continuous cost reductions.
• Provided detailed documentation to senior level management resulting in reduction resolution time.
• Designed incident outcome results based upon cyber security incidents, analyzing problems to introduce operational improvements from security outcomes.
2015 : 2017
Adtalem Global Education
Information Security Engineer
Company:
Guaranteed Rate
About
Dynamic information technology professional with repeated success managing security and control throughout network infrastructures. Talented collaborator and communicator with the ability to monitor compliance and technology services, enforcing operational policies while introducing successful change management. Skilled in assessing internal and external IT security threats and vulnerabilities, integrating strategic tactical and actionable directives to ensure organizational success.
Areas of expertise include:
Cyber Security, Strategic Business Planning, Risk Assessment, Vulnerability Management, Incident Handling, Cross-Functional Team Leadership, and Endpoint Security.
With my extensive experience in the field of information security I have the ability to help your organization achieve its goals.
Profile Photo
