Profiles search

Brian Castagna

CISO | Advisor | BOD member
North Andover, MA, United States

Details

Education: Master of Science

Accounting Information Systems (AIS)

Bentley University

2004 : 2006

Bachelor of Science, Summa Cum Laude

Computer Information Systems (CIS)

Bentley University

2000 : 2004
Experience: Global CISO for PerkinElmer. Executive leading the information security program for the PerkinElmer, operating in 40+ countries, with 5500+ employees. Recently divested as a New Mountain Capital Portfolio Company.

2023 : Present

PerkinElmer, Inc.

Chief Information Security Officer

2022 :

Security Tinkerers

Board Member

2017 :

.406 Ventures

Cyber Executive Council

2019 : 2023

Seven Bridges

Chief Information Security Officer (Aquired by Summa Equity)

2017 : 2019

Oracle

Director of Information Security (Acquired Dynamic Network Services - Dyn)
Company: PerkinElmer, Inc.
Years of Experience: 17

Skills

assurance, auditing, business continuity, cisa, cism, cissp, cobit, computer forensics, Contract Negotiation, Corporate Development, corporate governance, coso, Cybersecurity, Data Privacy, disaster recovery, English, financial risk, General Data Protection Regulation (GDPR), Information Security, information technology, internal controls, iso 27001, it audit, Microsoft Azure, NIST, payment card industry data security standard (pci dss), pci dss, risk assessment, risk management, sarbanes-oxley, sarbanes-oxley act, sas70, Security, Security Architecture Design, security awareness, Security Incident Response, soc 1, ssae 16, ssae16, U.S. Federal Information Security Management Act (FISMA), Vulnerability Management

About

I am an information security executive with a proven track record of successfully building information security programs at cloud technology companies. I built high performing cloud security teams at Seven Bridges, Oracle Cloud (Dyn), Acquia and Jumptap. I’m a cloud native security leader. At Seven Bridges, our team protects human genomic data in AWS and GCP and at Acquia, we protected 4000+ customers that spanned 17,000 Internet facing instances in AWS. I believe in a customer first mentality servicing internal and external stakeholders, and covering security disciplines including: security architecture and engineering, vulnerability management, incident response, threat intelligence, risk, controls, compliance, third party vendor due diligence, and security contract negotiation. I have applied my skill set to strategically grow organizational revenue through security and compliance.



My professional interests extend beyond information security and include marketing, sales, corporate development, and operations management. I have a strong desire to assist in scaling organizations.



Specialties:

Cloud Security – AWS, GCP, Securing IaaS & SaaS & PaaS, Security Incident Response, Threat Intelligence, Vulnerability Management, Compliance, Governance, Audit & Due Diligence, EU Data Privacy, EndPoint Security, Security Awareness Training, Security Contract Negotiation, Security Sales.



SOC 2, ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 9001, GxP, Sarbanes Oxley-404 (SOX-404), PCI DSS, SOC 1, SOC 3, FedRAMP, HIPAA, HITRUST CSF, GDPR, FDA 21 CFR Part 11.