About


Information Security & IT Infrastructure

Experienced senior leader with a proven track record of "getting the job done" in the competitive InfoSec and IT industry. Skilled in leading diverse teams of engineers and operators, with a hands-on approach to systems engineering and project management.


  • SaaS: Okta, Google Workspace, Slack, O365,
  • Infra as Code: AWS, Azure, GCP, GitHub Actions, Terraform, CircleCI, Atlantis, Docker, Kubernetes
  • Client Platform Engineering: Jamf Pro, Workspace ONE
  • Networking pfSense, Ubiquiti, Cisco Meraki, Various Next Gen VPNs and ZTNAs
  • Documentation: Jira, Confluence, Stack Overflow
  • Security: Vanta, TugBoat Logic, Veracode, Snyk, HackerOne, Splunk, Tines, Datadog

Years of Experience

Million Dolloars IT Budget Managed

Engineers Under Management

Projects Delivered

Qualifications


  • York University: Computer Science
  • Humber College: Music Performance

Career Highlights

Compliance:

Authored a comprehensive Information Security Program, resulting in the successful attainment of a SOC 2 Type II report.

Entrepreneurship:

Established a streamlined ITSM-focused InfoSec/IT department, encompassing DevOps, AppSec, GRC, IT, and SOC teams.

Partnership

Conducted security and technical due diligence during the vendor selection process for business services and technologies.

Advocacy

Advocated for thorough documentation and ticket logging, leading to the creation of over 3,000 ITSM tickets and 250+ Confluence articles within a year.

Leadership

Oversaw multiple construction projects for the development of the head office and satellite offices.

Communication

Conducted monthly company-wide Information Security training and onboarding security sessions for new employees.

Results

Played a key role in scaling the workforce from 40 to 120 employees within a single fiscal year.

Engineering

Implemented a modern IT infrastructure seamlessly integrating HRIS, Okta, Jamf Pro, Google Workspace, Slack, AWS, Jira, Datadog, IaaS, and various open-source tools.

Integrity

Led the development of policies, standards, and technical safeguards for the Information Security Program, ensuring alignment with ISO 27001 and SOC 2 certification requirements.

Accountability

Managed an annual InfoSec/IT budget exceeding 5 million dollars.

Infra as Code

Proficient in AWS services including ECS, EC2, VPC, ELB, RDS, Route 53, CFN templates, and EKS.

CI/CD

Experienced in CircleCI, GitHub Actions, Terraform, and ArgoCD.

IdP

Implemented 165 SAML and SWA SSO applications in Okta and developed automation using Okta Workflow.

Zero-Trust

Implemented a zero-trust access policy utilizing an identity provider, network zones, device trust certificates, MFA, VPN, and ZTNA.

Client Platform Engineering

Developed a self-healing and auto-patching software update policy utilizing MDMs and various open-source tools.

Monitoring

Integrated a variety of metrics and logs into Splunk and Datadog for logging and monitoring purposes.

Experience


Ledn

Director, Information Security and IT

Aug 2021 - Present

  • Manage more than 5 million dollars annual technology budget.
  • Lead 15 InfoSec/IT engineers and operators including 5 direct reports.
  • Established Zero-Trust security controls for virtual workspace environment.
  • Establish InfoSec Program, built GRC function, Deployed Vanta, obtain SOC 2 Type I and II report and completed CIMA audit.

Scotiabank

Senior Infrastructure Architect

Jan 2020 - Aug 2021

  • Deploy and manage 3000+ macOS and 25,000+ iOS devices.
  • Systems architecture, systems engineering, configure Zero Touch Deployment workflow, patching, client platform engineering.
  • Implement technical security controls on all Apple devices based on compliance and regulatory requirements.

HCS Technology Group

Senior Professional Services Consultant

Oct 2019 - Jan 2020

  • Architect and deploy systems in enterprise environment.
  • Infrastructure build and migration.
  • Manage cloud infrastructure and SaaS applications.
  • Deliver Professional Services Engagements to Enterprise Customers: Bell Canada, Staples, KPMG, Nasdaq, etc.

Amaris Group

Professional Services Consultant

July 2018 - Oct 2019

  • Design and deliver professional services engagements to enterprise customers.
  • Architect and deploy systems in enterprise environment.
  • Deliver training and workshops to enterprise customers.
  • Manage third party relationships: Apple Canada, Softchoice, CDW, Insight Canada.

Hootsuite

Systems Administrator

Aug 2017 - July 2018

  • Manage and deploy SaaS applications.
  • Provide L2, L3 support.
  • Manage IT related projects.

Sid Lee

IT Manager

Aug 2014 - July 2017

  • Manage IT support team.
  • Manage annual IT budget.
  • Manage IT related projects.

AI


Resume AI

Ask AI about David.

YOONGPT

Assign a task and the AI will persist.

General AI

General purpose built AI that can do many things.

Contact

Contact Me

Social Profiles

Email Me

david@yoon.ai