EXPERIENCE
Jonathan White started his IT career in the United States Marine Corps as a Computer Programmer. After the Marine Corps, he started a job as a Computer Operator and advanced to serve as Manager of the company’s 24 X 7 data center. This is when he realized that providing solutions to issues and customer interaction was his passion. The next step in his career was as a Network Engineering Consultant for one of the national credit bureaus. In this role, he was responsible for the IP network for as many as 14 local offices in the Southern Region.
EDUCATION & CERTIFICATIONS
- Bachelor of Science in Business and Information Systems
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- System Security Certified Practitioner (SSCP)
- Qualified Security Assessor (QSA)
- ISO 27001 Lead Auditor
PROFESSIONAL AFFILIATIONS
- Information Systems Audit and Control Association (ISACA)
PASSION FOR SECURITY
During his tenure at the national credit bureau, he was exposed to various regulatory compliance frameworks, developing an appreciation for the need to protect customers’ personal information. He secured a position with an Application Service Provider company as an IT Security Compliance Auditor responsible for monitoring their control environment and handling areas of both logical and physical security. He served in this capacity for over six years becoming familiar with several compliance frameworks, including SSAE18 SOC 1 and SOC2, ISO 27001, NIST, PCI DSS, and GLBA.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
GDPR // Five Important Considerations
Understand GDPR: Discover how to strengthen individual rights, protect personal data, and comply with EU regulations, with expert guidance and resources.
Cloud Compliance: Picking a Framework and Simplifying Your Approach
Join GRC Principal Security Consultant Chris Camejo and Senior Security Consultant Jonathan White as they help organizations traverse this IT-disrupting shift.
Security Advisory: React2Shell (CVE-2025-55182) - Critical RCE Vulnerability
A critical vulnerability affecting React Server Components (RSC) is being actively exploited. Here's what to look for and what to do next.
Holy Shuck! Weaponizing NTLM Hashes as a Wordlist
Password reuse is common in Active Directory (AD). From an attacker’s perspective, it is a reliable path to lateral movement or privilege escalation. Most IT…
Security Noise - Hacker Family Feud
Our security experts compete to see which team can guess the most popular answers to cybersecurity industry questions on this episode of the TrustedSec…
Research on Windows Accessibility: Narrator.exe
Join us for our next Discord Livestream "Research on Windows Accessibility: Narrator.exe" on December 4 at 11:00AM ET! During this exclusive session, Principal…
What is a TrustedSec Program Maturity Assessment (PMA)?
The TrustedSec PMA is a tactical approach to evaluating the components, efficiency, and overall maturity of an organization’s Information Security…
NIST CSF 2.0 - From Compliance to Confidence
During our next webinar, our experts will cover the latest evolution of the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF),…
KTVU Fox 2 San Francisco - Too good to be true? Cyber Monday Warning
Protect your purchases this Cyber Monday! Director of Advisory Services Chris Camejo speaks with KTVU Fox 2 to share essential tips on how to safeguard your…
Schwab Network | Morning Movers - Zscaler (ZS) Earnings Preview and Cybersecurity Outlook
Advisory Solutions Director Alex Hamerstone joins Morning Movers to preview Zscaler (ZS) earnings and discuss the overall cybersecurity software space. He…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
