Stebin John
Surrey,BC
Summary
Results-oriented Senior Cybersecurity and IT Risk Management Leader with 12+ years of experience, including 3+ years in senior leadership roles focused on control effectiveness testing, audit, and risk management. Proven expertise in developing and managing robust control testing programs, aligning with regulatory requirements and industry best practices. Adept at leading cross-functional teams, collaborating with senior executives, and interfacing with internal and external auditors. Seeking to leverage deep knowledge of agile delivery practices, cybersecurity standards, and risk management frameworks to enhance TD's control effectiveness testing program and drive continuous improvement.
Overview
16
16
years of professional experience
Work History
Principal Technical Program Manager, Office of the CISO
Okta
01.2024 - Current
- Developed and automated executive dashboards for Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs), leveraging Tableau and Snowflake to provide real-time security insights, presented reports to Board and C-level
- Led cyber risk quantification initiatives, ranking risks based on probability and financial impact, aligning with enterprise risk appetite discussions
- Established governance frameworks for security metrics, reducing high-risk indicators by 20-30% through data-driven security improvements
Senior Manager, Western Canada Leader, Cybersecurity Risk Advisory
Grant Thornton
Vancouver, Canada
01.2023 - 01.2024
- Managed Cloud and Application Security Engineers and Architects towards the successful delivery of complex Cloud security risk engagements, implementing strategic security solutions and developing policies, resulting in a 25% increase in portfolio adoption through enhanced service offerings
Senior Manager, Cloud Security, Risk Advisory
Deloitte Canada
Vancouver, Canada
01.2022 - 01.2023
- Led comprehensive cloud architecture audits and reviews, implementing robust IAM policies and network segmentation strategies, resulting in reducing potential attack surface by 25%, significantly improving clients' overall cloud security scores and compliance posture
- Integrated SAST/DAST tools into CI/CD workflows, providing automated vulnerability scanning and reporting, resulting in decreased time to remediation for critical vulnerabilities by 50%, enabling faster and more secure software releases
- Identified critical security vulnerabilities across diverse cloud (AWS, GCP) and container (Kubernetes, Docker) environments during comprehensive audits
- Conducted in-depth security audits, collaborated directly with development teams to prioritize and remediate identified vulnerabilities, and provided detailed remediation guidance, resulting in reducing critical and high-severity vulnerabilities by 40% within audited environments, significantly strengthening the security posture
Senior Program Manager, Cloud Professional Services
IBM Canada Ltd
Vancouver, Canada
01.2013 - 01.2022
- Orchestrated end-to-end cloud migrations, implementing robust encryption strategies and network security configurations (including VPC segmentation and security groups), successfully migrating over 50 enterprise applications to Cloud Infrastructure, by drafting project plans, managing cross-functional stakeholders, achieving a 99.9% uptime during and after migration, and a customer satisfaction score averaging 8.0/10.0 across engagements
Product Lead, Multi-Channel retailing
Skill-Net Inc.
Mumbai, India
01.2010 - 01.2012
Co-Founder
Wishyourdish.com
Chennai, India
01.2009 - 01.2010
- Company Overview: [Startup Founder]
- [Startup Founder]
Education
Master of Business Administration (MBA) - Strategy and General Management
Ivey Business School, Western University
London, ON, Canada04-2013
B-Tech - Electrical Engineering
National Institute of Technology Calicut
India07-2007
Skills
- Control Effectiveness Testing
- Risk Quantification
- KRIs/KPIs
- Risk Appetite
- IT Audit
- ISO 27001
- ISO 27701
- ISO 27018
- SOC 2
- NIST Cybersecurity Framework
- NIST 800-53
- Risk Oversight
- Policy Frameworks
- Control Design
- Risk-Based Decision-Making
- AWS
- IAM
- EC2
- KMS
- VPC Segmentation
- SCPs
- Azure
- GCP
- Kubernetes Security
- Container Security
- SAST/DAST
- Tableau
- Snowflake
- Docker
- Kubernetes
- CI/CD pipelines
- Stakeholder Management
- Team Leadership
- Presentation Skills
- Report Generation
Timeline
Principal Technical Program Manager, Office of the CISO
Okta
01.2024 - Current
Senior Manager, Western Canada Leader, Cybersecurity Risk Advisory
Grant Thornton
01.2023 - 01.2024
Senior Manager, Cloud Security, Risk Advisory
Deloitte Canada
01.2022 - 01.2023
Senior Program Manager, Cloud Professional Services
IBM Canada Ltd
01.2013 - 01.2022
Product Lead, Multi-Channel retailing
Skill-Net Inc.
01.2010 - 01.2012
Co-Founder
Wishyourdish.com
01.2009 - 01.2010
Master of Business Administration (MBA) - Strategy and General Management
Ivey Business School, Western University
B-Tech - Electrical Engineering
National Institute of Technology Calicut
Similar Profiles
Amit SaklaniAmit Saklani
IT Senior Support Engineer at OktaIT Senior Support Engineer at Okta
Tanner DaleTanner Dale
Sr. Sales Development Representative at OktaSr. Sales Development Representative at Okta
Gopinath SivalingamGopinath Sivalingam
Enterprise Data TPM at OktaEnterprise Data TPM at Okta
Aman PatnaikAman Patnaik
Manager, Deal Strategy at OktaManager, Deal Strategy at Okta
Ahmad RafaqatAhmad Rafaqat
Front-Line Team Member / Cook at Popeyes Louisiana KitchenFront-Line Team Member / Cook at Popeyes Louisiana Kitchen