Jake Neal
Edmonton,AB
Summary
Dynamic Security leader with a proven track record of building and leading security programs from the ground floor. Highly technical with a background in software engineering with a love for secure system design. Looking for new challenges to continue my growth and add depth to my existing skillsets, and to help protect users and their PII in an increasing complex threat landscape.
Overview
7
7
years of professional experience
Work History
Security & Privacy Lead
Ezoic
01.2020 - Current
- Own the security program and team reporting to CTO or CEO situationally, including hiring, mentorship, cyber insurance and budget.
- Keep the organization aligned with frameworks, including SOX, SOC2, and ISO-27001.
- Develop and implement security programs and policies, such as bug bounty programs, vulnerability and patch management, disaster recovery, incident response plan & playbooks (including executive and leadership training, as well as tabletop exercises), continuous security awareness training, etc.
- Source and engage third party vendors for external risk assessments as well as pen tests.
- Engage with internal and external stakeholders globally, including governments, DPAs, and organizations such as the IAB to provide feedback on frameworks such as the GDPR and the technical implementations including the TCF.
- Led a cross team FinOps initiative to reduce annual cloud spend by roughly 20% over a 6 month period. (startup life, multiple hats at times)
Sr Security Engineer
Ezoic
08.2017 - 01.2020
- Reduced risks of cyber attacks by routinely conducting vulnerability assessments and penetration testing.
- Developed comprehensive incident response plans for efficient containment and recovery from security breaches and lead tabletop exercises with various team members and executives.
- Evaluated emerging security technologies and made recommendations for implementation in alignment with company objectives in a cloud first environment.
- Designed custom intrusion detection systems tailored to specific business needs, increasing threat visibility and response efficiency.
- Established effective cybersecurity awareness training programs for employees, reducing human error-related incidents significantly.
- Led forensic investigations into security incidents, providing detailed analyses and actionable insights for future prevention measures.
- Roadmap a transition from an AWS mono-account to a multi account organization, with a heavy emphasis on least privilege.
Skills
- Golang, Javascript, PHP
- DevSecOps
- Application Security
- Various Datastores(Redis, memc, sql, nosql, redshift, clickhouse)
- SOC2, PCI-DSSv4, ISO 27001
- Data Privacy & Regulations(GDPR, CCPA, PIPEDA)
- Secure Systems Design
- Efficient and Scalable Systems Design
- Code Reviews
Timeline
Security & Privacy Lead
Ezoic
01.2020 - Current
Sr Security Engineer
Ezoic
08.2017 - 01.2020
Similar Profiles
Ashwin ChepuruAshwin Chepuru
Consultant at Ezoic Inc.Consultant at Ezoic Inc.
Phoenix Le BretonPhoenix Le Breton
Retail Sales Associate | Cashier at The Sour Moose Candy StoreRetail Sales Associate | Cashier at The Sour Moose Candy Store
Katy ShieldsKaty Shields
2nd Year Plumber Apprentice at Empire Mechanical Contractors Inc.2nd Year Plumber Apprentice at Empire Mechanical Contractors Inc.
Tiffany MenaTiffany Mena
Customer Service at La PatronaCustomer Service at La Patrona
Rhea Saragoza Goc-ongRhea Saragoza Goc-ong
Data Entry Clerk at Accident Support Services International LtdData Entry Clerk at Accident Support Services International Ltd