EXPERIENCE
Jonathan White started his IT career in the United States Marine Corps as a Computer Programmer. After the Marine Corps, he started a job as a Computer Operator and advanced to serve as Manager of the company’s 24 X 7 data center. This is when he realized that providing solutions to issues and customer interaction was his passion. The next step in his career was as a Network Engineering Consultant for one of the national credit bureaus. In this role, he was responsible for the IP network for as many as 14 local offices in the Southern Region.
EDUCATION & CERTIFICATIONS
- Bachelor of Science in Business and Information Systems
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- System Security Certified Practitioner (SSCP)
- Qualified Security Assessor (QSA)
- ISO 27001 Lead Auditor
PROFESSIONAL AFFILIATIONS
- Information Systems Audit and Control Association (ISACA)
PASSION FOR SECURITY
During his tenure at the national credit bureau, he was exposed to various regulatory compliance frameworks, developing an appreciation for the need to protect customers’ personal information. He secured a position with an Application Service Provider company as an IT Security Compliance Auditor responsible for monitoring their control environment and handling areas of both logical and physical security. He served in this capacity for over six years becoming familiar with several compliance frameworks, including SSAE18 SOC 1 and SOC2, ISO 27001, NIST, PCI DSS, and GLBA.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
GDPR // Five Important Considerations
The EU General Data Protection Regulation (GDPR) is a regulation that was approved in 2016 and scheduled to be enforced by May 25, 2018. Many customers ask,…
Cloud Compliance: Picking a Framework and Simplifying Your Approach
Join GRC Principal Security Consultant Chris Camejo and Senior Security Consultant Jonathan White as they help organizations traverse this IT-disrupting shift.
Actionable Purple Team Simulation Online Training (November 7-8)
Learn how to create specific detections to identify early Indicators of Compromise (IOCs) in our online course. Designed for those looking to improve their…
Ask Me Anything: Proactive Threat Hunting
As threat actors become more sophisticated, organizations' approaches to finding malicious activity must become more proactive and refined. Dive into the…
Black Hat USA Training - Applied Threat Hunting and Detection Engineering
Registration is now open for our Black Hat training on August 3-6, 2024
Lapse of Control: Applauding PCI SSC for FAQ 1572
I want to applaud the PCI Security Standards Council (PCI SSC) for FAQ 1572 published in March of 2024 for simply and effectively answering a question asked by…
ISC2 Cleveland Chapter Member Meeting July 2024
ISC2 Cleveland Chapter July MeetupCome join us for our monthly meetup! The ISC2 Cleveland Chapter is hosting an exciting in-person event for all cybersecurity…
Specula: A Red Team Chronicle
Microsoft Outlook is often used as the primary email client in corporate environments, making it a high-value target for threat actors. Any potential to…
Ask Me Anything: Remediation
Join the TrustedSec Remediation Team as they discuss how to prioritize and identify deficiencies in your cloud platform and examine best practices to harden…
TrustedSec Tech Brief - July 2024 Week 3
Director of Security Intelligence Carlos Perez goes over the top news for the third week of July 2024, including the latest on the CrowdStrike outage.
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
