EXPERIENCE
Jonathan White started his IT career in the United States Marine Corps as a Computer Programmer. After the Marine Corps, he started a job as a Computer Operator and advanced to serve as Manager of the company’s 24 X 7 data center. This is when he realized that providing solutions to issues and customer interaction was his passion. The next step in his career was as a Network Engineering Consultant for one of the national credit bureaus. In this role, he was responsible for the IP network for as many as 14 local offices in the Southern Region.
EDUCATION & CERTIFICATIONS
- Bachelor of Science in Business and Information Systems
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- System Security Certified Practitioner (SSCP)
- Qualified Security Assessor (QSA)
- ISO 27001 Lead Auditor
PROFESSIONAL AFFILIATIONS
- Information Systems Audit and Control Association (ISACA)
PASSION FOR SECURITY
During his tenure at the national credit bureau, he was exposed to various regulatory compliance frameworks, developing an appreciation for the need to protect customers’ personal information. He secured a position with an Application Service Provider company as an IT Security Compliance Auditor responsible for monitoring their control environment and handling areas of both logical and physical security. He served in this capacity for over six years becoming familiar with several compliance frameworks, including SSAE18 SOC 1 and SOC2, ISO 27001, NIST, PCI DSS, and GLBA.
Featured Blogs And Resources
Discover the blogs, analysis, webinars, and podcasts by this team member.
GDPR // Five Important Considerations
Understand GDPR: Discover how to strengthen individual rights, protect personal data, and comply with EU regulations, with expert guidance and resources.
Cloud Compliance: Picking a Framework and Simplifying Your Approach
Join GRC Principal Security Consultant Chris Camejo and Senior Security Consultant Jonathan White as they help organizations traverse this IT-disrupting shift.
Perspectives on AI in the Cybersecurity Industry in 2026
Join us for this exclusive webinar where our experts will decode the complex relationship between artificial intelligence and cybersecurity in 2026. What will…
Adventures in Primary Group Behavior, Reporting, and Exploitation
If you’ve administered Active Directory (AD) for any significant time, chances are you’ve come across the primaryGroupID attribute. Originally developed as a…
News 5 Cleveland - Social Security numbers may have been exposed in data breach connected to local car dealership
A Massillon car dealership reports that an unauthorized actor accessed its network, potentially exposing customer names and Social Security numbers. Advisory…
Colonel Clustered: Finding Outliers in Burp Intruder
TL;DR, gimme the goods: https://github.com/hoodoer/ColonelClusteredExtension has been submitted to the Bapp store, awaiting approval.This is a Burp Suite…
Discord Livestream - Crash Course: Building an Analysis Strategy
In this livestream, we will cover the components of an incident response attack plan from a high level —including scoping, building an analysis strategy,…
CMMC Scope – Understanding the Sprawl
The CMMC program contains complex, and potentially confusing, scope requirements. Contractors that are preparing for a CMMC assessment will need to pay close…
WWL First News with Tommy Tucker - What to know about the big Verizon outage on Wednesday
A widespread Verizon outage left many without service, sparking conversation about digital dependence. Advisory Solutions Director Alex Hamerstone joins WWL…
Tips for Incident Response Planning: Prepare Before Crisis Strikes
During our next webinar, our Incident Response experts will cover what organizations should do to prepare so they can respond quickly and be on the way to…
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
