Profiles search

Randall J.

Information Security Leader, CISSP
Seattle, WA, United States

Details

Education: ISC2



SANS
Experience: 2023 : Present

Hyssop Security

Information Security Consultant

2022 : 2023

Dapper Labs

Security Risk & Compliance Lead

2019 : 2022

Globys

Information Security Officer

2018 : 2019

Globys

Sr. Security Engineer

2016 : 2018

Mutual of Enumclaw

Information Security Program Manager
Company: Hyssop Security
Years of Experience: 26

Skills

Active Directory, Application Security, Awareness Programs, Business Continuity, CISSP, Computer Forensics, Cyber Security, Data Center, Data Security, Disaster Recovery, Firewalls, GIAC, GWAPT, Information Security, Information Security Management, Internet Security, Intrusion Detection, ISO 27001, Networking, Network Security, PCI DSS, Penetration Testing, Privacy Law, Risk Assessment, Risk Management, SDLC, Security, Security Architecture Design, Security Audits, Security Incident & Event Management, Security Management, Security Metrics, Security Operations, Security Operations Management, SEIM, software development life cycle (sdlc), System Deployment, Vendor Management, VMware, Vulnerability Assessment, Vulnerability Management, Web Security, Computer Security, Database Security, System Monitoring, Windows Server, information assurance, Infragard, Infrastructure, payment card industry data security standard (pci dss), Security Incident, Security Architecture

About

As an Information Security Leader, I provide solutions-driven and customized services to clients across various industries, helping them achieve their security and business objectives. I leverage my credentials as a CISSP, GWAPT, and GSLC, as well as my extensive experience in IT and Information Security, to deliver high-quality results and value.



With over 20 years of valuable experience, I have developed core competencies in security strategy development, risk management, business continuity, IT strategic planning, regulatory compliance, security operations, secure system development life cycle, security program definition and deployment. IT controls definition, policies and standards, and technology evaluation. I am also well-versed in governance, risk, security standards, and frameworks, such as CSF, ISO 27001:2013, SOC2, PCI DSS, and privacy laws, such as GDPR and CCPA. My mission is to enable business, manage risk, protect assets, and address privacy concerns while mentoring team members and building and maintaining key relationships.