Experienced senior leader with a proven track record of "getting the job done" in the competitive InfoSec and IT industry. Skilled in leading diverse teams of engineers and operators, with a hands-on approach to systems engineering and project management.
Years of Experience
Million Dolloars IT Budget Managed
Engineers Under Management
Projects Delivered
Authored a comprehensive Information Security Program, resulting in the successful attainment of a SOC 2 Type II report.
Established a streamlined ITSM-focused InfoSec/IT department, encompassing DevOps, AppSec, GRC, IT, and SOC teams.
Conducted security and technical due diligence during the vendor selection process for business services and technologies.
Advocated for thorough documentation and ticket logging, leading to the creation of over 3,000 ITSM tickets and 250+ Confluence articles within a year.
Oversaw multiple construction projects for the development of the head office and satellite offices.
Conducted monthly company-wide Information Security training and onboarding security sessions for new employees.
Played a key role in scaling the workforce from 40 to 120 employees within a single fiscal year.
Implemented a modern IT infrastructure seamlessly integrating HRIS, Okta, Jamf Pro, Google Workspace, Slack, AWS, Jira, Datadog, IaaS, and various open-source tools.
Led the development of policies, standards, and technical safeguards for the Information Security Program, ensuring alignment with ISO 27001 and SOC 2 certification requirements.
Managed an annual InfoSec/IT budget exceeding 5 million dollars.
Proficient in AWS services including ECS, EC2, VPC, ELB, RDS, Route 53, CFN templates, and EKS.
Experienced in CircleCI, GitHub Actions, Terraform, and ArgoCD.
Implemented 165 SAML and SWA SSO applications in Okta and developed automation using Okta Workflow.
Implemented a zero-trust access policy utilizing an identity provider, network zones, device trust certificates, MFA, VPN, and ZTNA.
Developed a self-healing and auto-patching software update policy utilizing MDMs and various open-source tools.
Integrated a variety of metrics and logs into Splunk and Datadog for logging and monitoring purposes.
Contact Me
david@yoon.ai