Profiles search

RJ Friedman

Chief Information Security Officer (CISO), vCISO, CEO & Founder
Miami, FL, United States

Details

Experience: dayONE Cyber is a Managed Security Service Provider (MSSP) which provides our customers with the best service in the industry, coupled with the most advanced, holistic cybersecurity services on the market.

Our goal is to be a seamless extension of your team by being easy to reach, easy to work with, and proactive with our problem solving. When you combine our commitment to customer service with the unparalleled, cutting edge technologies that we use, we will truly make you look like the hero at your organization for partnering with us.

2018 : Present

dayONE Cyber

Chief Executive Officer

RJ is currently the Virtual Chief Information Security Officer (vCISO) for multiple organizations, and has been the vCISO for over a dozen companies over the years. In this capacity, he has helped diverse organizations design, implement, and maintain robust cybersecurity strategies in line with their business goals.

vCISO services can vary widely, but generally speaking a vCISO is brought into an organization to help build or mature a cybersecurity program when a full-time CISO is unaffordable, too difficult to find, or on temporary leave.

RJ's experience as a vCISO has included establishing the first holistic cybersecurity program at banks, manufacturing companies, and hospitals, as well as helping much more established organizations, like one of the 5 busiest airports in the world, with consulting around specific objectives. In his capacity as a trusted advisor, he has assisted one of the world's 5 largest banks create a due diligence strategy around M&A, and a large cybersecurity insurance vendor develop their due diligence questionnaire.

RJ has also contributed to national election security programs, helping Google write a best-practices white paper for US campaigns, and additionally helping a US Presidential race in the capacity of a cybersecurity risk manager through a relationship with the Defending Digital organization.

RJ has worked with various frameworks and compliance regulations, including CIS, NIST 800-53, CMMC / NIST 800-171, GDPR, HIPPA, HITRUST, GLBA, SOX, PCI, FFIEC, etc.

2018 :

Various Companies

vCISO : Virtual Chief Information Security Officer

I volunteer with ICMCP because I believe that the Cyber Security industry is the best industry in the world in which to build an extremely lucrative career ... regardless of background and heritage. If you have the aptitude and are willing to work hard, the barrier to entry into Cyber Security is minuscule. With the help of organizations like ours, it's non-existent.

My role within the organization is to help bring in new members and to organize and run our monthly member Webinars.

2017 :

International Consortium of Minority Cybersecurity Professionals (ICMCP)

Membership Committee

Charged not only with the internal security as the first CISO of a 34 year old MSP, but with the creation, development, growth and maintenance of the Managed Security Services business unit.

Internal role entails selection of and adherence to security framework(s), oversight of internal audits, and leadership of all internal security operations in order to protect all company and customer data.

Customer facing role involves the creation and leadership of the Managed Security Services division. This involves :

-Virtual Chief Information Security Officer for multiple clients' organizations

-Helping sales and marketing with training, and conversations with all new prospects

-Security content creation

-Public speaking and conference appearances

-Creating over 20 cybersecurity services and bringing them to market

-Hiring and maintenance of our security operations team

-Creation and development of our customer facing Security Operations Center

-Creation of SOC playbooks and SOPs

-Oversight of all incident response activities

-Leading R&D around new security services

-Creation and support of security mentorship and training program

-Creation and growth of cybersecurity vendor and partner relationships

2020 : 2022

Buchanan Technologies

CISO & Practice Leader, Managed Security Services

Forcepoint, powered by Raytheon, safeguards users, data and networks against the most determined adversaries, from accidental or malicious insider threats to outside attackers, across the entire threat life-cycle. Forcepoint protects data everywhere – in the cloud, on the road, in the office – simplifying compliance and enabling better decision-making and more efficient remediation.

My team works with our company's largest clients on the West Coast and in Canada, helping them build their security environments as they relate to Forcepoint's solutions.

We help protect against three main vectors of attack : web, email, and data loss. Whether we are protecting your users from visiting webpages we deem malicious in real time, are keeping them safe by stopping threats before they hit their inbox, or preventing the exfiltration of your company's data by compromised or hostile users, Forcepoint is focused on protecting your organization at it's most vulnerable and valuable point : the Human Point.

2017 : 2018

Forcepoint™

Leader, Enterprise Accounts
Company: dayONE Cyber
Spoken Language: Arabic, English, Spanish

About

RJ's career has been centered around causes which he is passionate about. A Learner and Ideator (Gallup Strengthsfinder), there are few topics which do not attract RJ's curiosity and problem solving abilities. He's at his best when leading teams which are handed complex problems which need solutions. Chief among his passions is his interest in helping organizations of all shapes and sizes protect themselves from cyber crime.



As a Chief Information Security Officer (CISO), founder of multiple cybersecurity companies, Virtual Chief Information Security Officer (vCISO), head of Managed Security Services for a global corporation, and volunteer for cybersecurity non-profits, RJ has been fortunate enough to have succeeded at bringing his vision and passion to life, and leading large teams as well as mentoring others in their quest to do the same.



RJ's experience as a CISO and vCISO has included establishing the first holistic cybersecurity program at banks, manufacturing companies, and hospitals, as well as helping much more established organizations, like one of the 5 busiest airports in the world, with consulting around specific objectives. In his capacity as a trusted advisor, he has assisted one of the world's 5 largest banks create a due diligence strategy around M&A, and a large cybersecurity insurance vendor develop their due diligence questionnaire.



RJ is in his element while being interviewed on podcasts, conducting webinars, and public speaking. He has contributed to United States election security programs, helping Google write a best-practices white paper for US campaigns, and additionally helping a US Presidential race in the capacity of a cybersecurity risk manager through a relationship with the Defending Digital organization.



In his free time, RJ can be found in the water with his Golden Retriever, Lincoln, riding dirtbikes, or at industry and networking events.