John Coffee
Details
Aeronautical Engineering
Massachusetts Institute of Technology
Bachelor’s Degree
Aeronautical Engineering
Massachusetts Institute of Technology
- Continuous improvement by managing risk and implementing technical and process security controls to reduce risk and close compliance gaps.
- Implemented secure software development policies; deployed code and container scanning and penetration testing services.
- Implemented and operated security tools for vulnerability scanning, intrusion detection, DLP, etc.
- Defined a PCI compliance strategy and led implementation and successful compliance attestation.
- Led implementation of CCPA privacy compliance across Legal, Marketing, and Operations teams.
- Leading SOC 2 Type 2 implementation.
2017 : Present
Nextiva
Director of Information Security
Operated and governed the ISMS I previously put in place for the division. Built a new Security Office team, performed internal audits, risk management, project management of vulnerability remediation, and supported sales.
2016 : 2017
Trimble Inc.
Consultant and Security Manager
Delivered customer value and enabled sales by transforming information security into a market advantage. Ensured confidentiality, integrity, and availability of customer data by running ISO 27001 certified Information Security Management Systems (ISMS) with global team of 8 security professionals.
• Established an ISMS and achieved ISO 27001 certification for a new Trimble acquisition, providing a market advantage and opening the door to international, large enterprise and government sales opportunities.
• Incorporated security into customer engagement and RFP cycle, ensuring timely and quality responses and resulting in multiple sales wins.
• Identified and closed critical risks to the business by performing security and risk assessments on vendors and business partners.
• Ensured application security objectives were met by working with Engineering to establish a process for automated third party vulnerability scanning on new releases.
• Oversaw SOC 2 Type 2 audit reporting for a SaaS product, achieving a successful audit.
2015 : 2016
Trimble
Director of Security Operations
Established and held full P&L responsibility for internal division that provides IT infrastructure and operations for Trimble’s customer facing SaaS applications, including infrastructure, security, database, and service desk.
• Expanded US-centric organization into global team of 70 IT professionals with operations in US, Canada, UK, India, and China, supporting a dozen Trimble divisions and 20 different applications with chargeback revenue of nearly $20MM.
• Saved $30K per month in data center costs by moving infrastructure from physical to 95% virtual.
• Replaced disparate in-house management tools with commercial SaaS-based IT Service Management suite (ServiceNow), streamlining workflows and metrics reporting.
• Implemented and operated an ISO 27001 certified ISMS, enabling compliance with customer requirements for service operations.
• Automated new server builds by implementing infrastructure DevOps/DevSecOps automation with VMware vCAC, eliminating manual build and audit and reducing delivery time from 2 days to less than an hour.
• Developed and implemented public cloud strategy that interconnected VMware private infrastructure to Amazon AWS in a hybrid cloud architecture, enabling Trimble divisions to move quickly to the public cloud.
• Supported multiple agile development teams; promoted DevOps infrastructure automation with Puppet and vCAC; scrum daily meetings; Kanban board work management.
2009 : 2015
Trimble
General Manager, Trimble Hosting Servcies
Managed Infrastructure and Service Desk operations for SaaS products, including capacity planning, system acquisition, system monitoring, and incident, problem, and availability management.
• Collaborated with engineering in a DevOps model, increasing product scalability by a factor of 10 and stabilizing production services.
• Built redundant VPN connections between wireless carriers, such as AT&T, the application infrastructure, and customer data feeds, providing secure, highly available communication of data.
• Reduced downtime by implementing automated performance and uptime monitoring and creating incident management and troubleshooting procedures.
• Optimized monitoring and automated manual tasks to reduce Service Desk workload, allowing team to scale to support 3x the number of applications.
2003 : 2009
Trimble
Systems Engineering Manager
Skills
Business Continuity, Business Process Improvement, Cloud Computing, Cross-functional Team Leadership, Data Center, Disaster Recovery, Engineering Management, Enterprise Software, Integration, IT Service Management, IT Strategy, Process Improvement, Product Development, Product Management, Program Management, Project Management, SaaS, Six Sigma, Software as a Service (SaaS), Software Development, Start-ups, Systems Engineering, Vendor Management
About
Information Security & Information Technology Operations Leader
Enabling sales through Information Security and effective SaaS cloud operations.
Leverage extensive experience in Information Security, Management, and Operations with a strong engineering background. Execution in complex environments through collaboration, transparency, and focus on goals. Industry experience includes Heavy Construction, Field Service, and Real Estate/IWMS.
Effective in global, multicultural, professional engagement, and leadership. Serve as effective leader with strong decision making and creative, pragmatic problem solving skills, thriving in dynamic and fast-paced environment with focus on quality and productivity. Maintain a commitment to customer success, building productive relationships, resolving complex issues creatively, and winning customer trust and loyalty.
Expertise:
• Cloud Operations
• Information Security, Privacy
• DevOps, DevSecOps
• Risk Management, GRC
• Software as a Service (SaaS) Development
• Global Team Leadership
Technical Skills:
Frameworks: ISO 27001, ITIL, SOC 2
Platforms: Amazon Web Services (AWS), VMware
Mobility: GPS, Telematics, Cellular, IoT
Profile Photo
