Profiles search
John Focht, CISSP
Principle, Information Security Architect at Prime Therapeutics
Minneapolis, MN, United States
Details
Experience:
Collaborates with architects, developers, and engineers to develop overall solutions, including options analysis and trade-offs that properly balance both IT and business constraints. Work directly with Developers and Engineers to mentor, guide, and evaluate them on reusability techniques, best practices, and desired or required patterns. Provides technical estimates for specific tasks of architectural significance. Ensures the developed project solution is in line with Prime’s Enterprise Architecture including established standards and principles
2019 : Present
Prime Therapeutics
Principle, Information Security Architect
Responsible for ensuring Prime meets regulatory and client security reporting requirements (HITRUST, SOC2, SOC1) through effective policy management, continuous controls monitoring, and security training and awareness.
2017 : 2019
Prime Therapeutics
Manager, Information Security GRC
Responsible for conducting security risk assessments, governing the policy review and policy exception processes, validating that PHI is de-identified in non-production environments for offshore use, and providing security advisory and consulting to internal project teams. Managed activities and reviews of up to two analysts.
Led the facilitation of multiple bi-annual HIPAA Security Risk Assessments. Interim remediation effort decreased observed gaps by 82%.
Led Prime through a HITRUST Readiness Assessment, subsequent remediation effort, and HITRUST Certification project that included two core business applications and supporting infrastructure. Remediation effort achieved an average 20% per domain improvement in maturity score from readiness to certification.
Led a corporate volunteer effort to mentor math at a local elementary school, providing over 200 hours of mentoring to 2nd, 3rd, and 4th graders for four years.
2014 : 2017
Prime Therapeutics
Lead IT Risk Analyst
Tivoli Identity Manager (TIM) 4.6. Develop and maintain provisioning policies. Use Tivoli Directory Integrator to exchange information with various systems where adapters are not available. Coordinated and orchestrated an upgrade to TIM 5.0. Leveraged TAM and TFIM to provide centralized authentication services to many internal and external applications. Maintain policy framework to match COBIT and ISO 17799 standards. Provide security architectural services to internal projects to ensure compliance with IT Security policies, standards and patterns. Key architect of Role Based Access Control (RBAC) project.
2008 : 2014
Prime Therapeutics
IT Security Engineer
DEC14 - APR14 : National Program Manager for new Sailors transitioning from Active Duty school to Navy Reserve units. Responsibilities include : ensuring consistent communication across three schoolhouses, setting expectations for Regional Coordinators, developing and maintaining metrics for executive leadership team.
DEC10 - NOV13 : IDC Region Midwest Senior Enlisted Leader. Responsibilities included : setting expectations for Leading Chiefs of 17 units and holding them accountable to high standards, executing regional enlisted awards program, conducting site visits to brief unit leadership on the state of the region and emerging topics.
1988 : 2016
US Navy Reserve
Master Chief Petty Officer
2019 : Present
Prime Therapeutics
Principle, Information Security Architect
Responsible for ensuring Prime meets regulatory and client security reporting requirements (HITRUST, SOC2, SOC1) through effective policy management, continuous controls monitoring, and security training and awareness.
2017 : 2019
Prime Therapeutics
Manager, Information Security GRC
Responsible for conducting security risk assessments, governing the policy review and policy exception processes, validating that PHI is de-identified in non-production environments for offshore use, and providing security advisory and consulting to internal project teams. Managed activities and reviews of up to two analysts.
Led the facilitation of multiple bi-annual HIPAA Security Risk Assessments. Interim remediation effort decreased observed gaps by 82%.
Led Prime through a HITRUST Readiness Assessment, subsequent remediation effort, and HITRUST Certification project that included two core business applications and supporting infrastructure. Remediation effort achieved an average 20% per domain improvement in maturity score from readiness to certification.
Led a corporate volunteer effort to mentor math at a local elementary school, providing over 200 hours of mentoring to 2nd, 3rd, and 4th graders for four years.
2014 : 2017
Prime Therapeutics
Lead IT Risk Analyst
Tivoli Identity Manager (TIM) 4.6. Develop and maintain provisioning policies. Use Tivoli Directory Integrator to exchange information with various systems where adapters are not available. Coordinated and orchestrated an upgrade to TIM 5.0. Leveraged TAM and TFIM to provide centralized authentication services to many internal and external applications. Maintain policy framework to match COBIT and ISO 17799 standards. Provide security architectural services to internal projects to ensure compliance with IT Security policies, standards and patterns. Key architect of Role Based Access Control (RBAC) project.
2008 : 2014
Prime Therapeutics
IT Security Engineer
DEC14 - APR14 : National Program Manager for new Sailors transitioning from Active Duty school to Navy Reserve units. Responsibilities include : ensuring consistent communication across three schoolhouses, setting expectations for Regional Coordinators, developing and maintaining metrics for executive leadership team.
DEC10 - NOV13 : IDC Region Midwest Senior Enlisted Leader. Responsibilities included : setting expectations for Leading Chiefs of 17 units and holding them accountable to high standards, executing regional enlisted awards program, conducting site visits to brief unit leadership on the state of the region and emerging topics.
1988 : 2016
US Navy Reserve
Master Chief Petty Officer
Company:
Prime Therapeutics
Profile Photo
