Profiles search

Theo Peterson

Director of Information Security and Chief of Staff to the CTO at Roofstock
Bozeman, MT, United States

Details

Education: M.B.A.

Information Security concentration

James Madison University

2008 : 2010

Graduate Certificate

Information Assurance

Iowa State University

2008 : 2009

B.S.

Computer Engineering, Information Assurance concentration

Iowa State University

2001 : 2004
Experience: Roofstock is the first online marketplace and community created exclusively for investing in leased single-family rental homes that generate cash flow day one. Created by investors for investors, Roofstock provides research, analytics and insights to evaluate and purchase independently certified properties at set prices.

For more info go to www.roofstock.com.

2022 : Present

Roofstock

Director of Information Security and Chief of Staff to the CTO

6pillars is Australia's 1st automated cyber security and continuous compliance platform and service.

In August 2021, 6pillars participated as a global launch partner for the inaugural AWS Managed Security Service Provider Program as an AWS Level 1 Managed Security Service Competency Partner.

My role includes developing and implementing security strategy, while supporting key partnerships and investment.

2021 :

6pillars.io

Virtual Chief Information Security Officer

Co-founded Build as a software nearshoring firm in Costa Rica in an effort to address the challenges often faced with outsourced development groups, where the focus is on their bottom line rather than on quality and client needs. Scaled the software and infrastructure engineering orgs with a focus on infosec and a DevOps and customer-focused mindset, achieving success with Build's customer base in building scalable, efficient, and secure web and mobile applications.

2018 :

Build

Founder / CISO

Founded BRM as a cybersecurity firm with a focus on the implementation of effective ISMS and risk management programs. Clients include firms in the healthcare, ecommerce, financial services, and security automation spaces.

2017 :

Blackmore Risk Management

Owner

Created and scaled Chewy's Platform Engineering organization from 3 to 30+ members, leading it through the implementation of Chewy's secure and scalable hybrid cloud eCommerce platform, and the adoption of this platform as the single platform supporting Chewy's technology organization.

Drove InfoSec efforts related to public cloud, managing governance, risk, and compliance in line with Chewy’s legal and regulatory compliance regime (including SOX, PCI, etc.), including the development and maintenance of technical and administrative controls in support of Chewy's risk appetite.

2019 : 2022

Chewy

Associate Director, Platform Engineering
Company: Roofstock
Years of Experience: 20

Skills

Amazon Web Services (AWS), Architecture, Business Process Improvement, Cloud Computing, Computer Hardware, Consulting, Cybersecurity, Enterprise Risk Management, Identity & Access Management (IAM), Information Assurance, Information Security, Information Technology, Infrastructure, ISO 27001, IT Audit, IT Operations, IT Operations Management, Linux, Medical Devices, Organizational Leadership, Payment Card Industry Data Security Standard (PCI DSS), Program Management, Project Management, Regulatory Compliance, Risk Management, Security, Security Audits, Service Delivery, Software as a Service (SaaS), Software Development, System Architecture, Systems Engineering, Unix, Vulnerability Assessment, Business Process

About

Highly self-motivated and passionate platform engineering and information assurance leader with a strong and varied background in numerous technical and business disciplines.



Proven ability to build and lead global teams in the delivery of technical projects at scale, with a focus on building scalable, secure, and cost-efficient platforms that dramatically accelerate development velocity. History of success in designing, implementing, and managing sound security architectures for cloud and on-premise systems, as well as in developing and managing information security and risk management programs and teams closely aligned with, and supportive of, business needs.



Robust educational background in engineering, business, and information security, specifically as relates to risk, people, product, and process management and the judicious application of security best practices to information systems and business processes.



Current areas of focus include platform engineering, cloud security, security automation, machine learning, and GRC as relates to the development and management of risk management programs, while previous work includes the development and management of security infrastructure and processes for electronic identity verification services in the data fusion industry and the hardening of implantable medical device systems.