Profiles search
Jason L.
Cyber Security Leader with over 15 years of working experience.
Atlanta, GA, United States
Details
Education:
Bachelors
Accounting
University of Georgia - Terry College of Business
1998 : 2002
Masters
Georgia State University - J. Mack Robinson College of Business
2003 : 2003
Accounting
University of Georgia - Terry College of Business
1998 : 2002
Masters
Georgia State University - J. Mack Robinson College of Business
2003 : 2003
Experience:
2023 : Present
McKesson
Director Information Security
2019 : 2023
McKesson
Senior Manager, Information Security
Part of the IT Security Leadership team reporting to the Global CISO responsible for :
- IT Compliance (internal and external audits, remediation, user access reviews)
- IT Security Risk Management (GRC tool, risk register, acceptance, and reporting)
- Customer Assurance (security audits, primary contact for security matters, contract compliance reviews)
- Vendor Due Diligence as part of TPRM (security audits, primary contact for security matters, contract compliance reviews)
- IT Security Policy Governance (identification, creating, reviewing)
- Security Awareness (phishing campaigns, videos, communications)
Notable Accomplishments :
- Expanded and transformed function to a global team
- Matured TPRM program; enhancing vendor due diligence process through use of automation
- Matured IT security risk management processes
- Enhanced security awareness program; implemented phishing awareness
2015 : 2019
Crawford & Company
Director, IT Security Risk and Compliance
Notable Accomplishments :
- Streamlined and reduced audit burden across multiple audit requests
2013 : 2015
Crawford & Company
IT Compliance Manager
2011 : 2013
Children's Healthcare of Atlanta
IT Risk Leader
McKesson
Director Information Security
2019 : 2023
McKesson
Senior Manager, Information Security
Part of the IT Security Leadership team reporting to the Global CISO responsible for :
- IT Compliance (internal and external audits, remediation, user access reviews)
- IT Security Risk Management (GRC tool, risk register, acceptance, and reporting)
- Customer Assurance (security audits, primary contact for security matters, contract compliance reviews)
- Vendor Due Diligence as part of TPRM (security audits, primary contact for security matters, contract compliance reviews)
- IT Security Policy Governance (identification, creating, reviewing)
- Security Awareness (phishing campaigns, videos, communications)
Notable Accomplishments :
- Expanded and transformed function to a global team
- Matured TPRM program; enhancing vendor due diligence process through use of automation
- Matured IT security risk management processes
- Enhanced security awareness program; implemented phishing awareness
2015 : 2019
Crawford & Company
Director, IT Security Risk and Compliance
Notable Accomplishments :
- Streamlined and reduced audit burden across multiple audit requests
2013 : 2015
Crawford & Company
IT Compliance Manager
2011 : 2013
Children's Healthcare of Atlanta
IT Risk Leader
Company:
McKesson
Years of Experience:
22
Skills
Accounting, Auditing, Business Process, Business Process Improvement, CISA, COBIT, CPA, ERP, Financial Audits, Financial Risk, Governance, Information Security Awareness, Internal Audit, Internal Controls, IT Audit, IT Compliance, IT GRC, IT Risk Management, Leadership, Management, Oracle Database, Oracle Enterprise Manager, Process Improvement, Risk Assessment, Sarbanes-Oxley, Sarbanes-Oxley Act, SAS70, Security Controls, Security Risk, SOX 404, SSAE 16, Supervision, Tax, Third Party Vendor Management, US GAAP
Profile Photo
