Professional Headshot Photo

Jacob DJ Wilson

Cybersecurity | Compliance | Application Security | AI | Embedded IoT | Opensource

Professional Background

$ whoami

Jacob Wilson is a Servant Leader, blending the ability to foster trust and stewardship with executive presence. He has served as Security Director, Principal Consultant, and Speaker with 16 years of proven IT experience and 12 years cybersecurity experience within Financial Services, Application Security Consulting, Open Source Development, Automotive, Government, and ISP/MSPs. He has led teams and advised clients on Strategic Security Initiatives including Capability Maturity Models, Competency Development, Financial Forecasting, Regulatory Compliance, IT Governance, and GTM Requirements. Jacob has focused on the unique challenges of cloud software, APIs, and embedded product security with previous roles in Software Consulting, Product Development Engineering, Security Incident Response, and Threat Intelligence. These roles include the software stacks, embedded products, as well as the manufacturing and enterprise systems which support them. He has worked extensively with the software supply chain security of leading cryptocurrency exchanges and automotive manufactures, spearheading teams to define and execute cybersecurity strategy, adding risk based rigor to Cybersecurity and EUC operations.

Leadership

Inclusion, stewardship, and empathy are the bedrock behaviors of building world class teams.

Strategist

Extreme ownership and definition of vision from ideation to iterative optimization aligned to the mission.

Advocate

Cultivate talent and diversity while democratizing opportunity in STEM and cybersecurity fields.

Speaker

Humility and authenticity of technical knowledge, covering meaningful issues and ideas.

Professional Experience

$ history | grep work
  • APRIL 2022 - PRESENT
    Logo

    Gemini Trust Company

    Principal Security Technical Program Manager

    • Responsible for the design and successful implementation of a comprehensive Data Governance Program, overseeing data integrity, security, and compliance across the organization.

    Associate Director of Governance Risk and Compliance

    • Manages a team of GRC employees responsible for security standards, training and awareness, third party risk, vendor risk, contract reviews, entitlement reviews, control frameworks, internal and external audit, regulatory compliance, and ISO PCI and NYDFS certifications.
    • Oversee the implementation of comprehensive security policies, procedures, and guidelines, incorporating NIST SP 800-53 controls and CIS Critical Security Controls. Oversee the management of Security Risk Assessment, Control Library, and associated work products.

    Associate Director of Application Security

    • Established a client security advisory practice enabling our customers to better understand and protect software interfacing with the exchange.
    • Designed, implemented, and evolved a risk framework for clients to ensure the security of third parties interacting with the Gemini trading platform and APIs.
  • JULY 2019 - APRIL 2022
    Logo

    Synopsys Inc.

    Associate Principal Consultant

    • Responsible for Open Source consulting offerings including: Open Source Maturity Planning, Securing Open Source instructor led training, and ISO5230 compliance certification.

    Senior Consultant

    • Responsible for client management of the North American Automotive vertical: job profitability analysis, work breakdown structures, resource forecasting, RFP responses, and client delivery.
    • Technical embedded expertise: IoT Penetration Testing, Architectural Risk Assessments, Threat Modeling, Vulnerability Assessments, Web Application and Network Penetration Tests.
  • SEPTEMBER 2018 - JULY 2019
    Logo

    Fiat Chrysler Automobiles

    Cyber Security - Design Responsible for UConnect Systems

    • Design Responsible for leading the Cyber Security work streams on UConnect infotainment products.
    • Responsible for establishing security roll out plans, validation of security requirements, penetration testing, and delivery of security KPIs.
    • Managed multiple radio suppliers, third-party security testing vendors, and program managers to ensure work is accomplished on time, to a high quality.
  • AUGUST 2011 - SEPTEMBER 2018
    Logo

    Ford Motor Company

    Connected Vehicle Security - Red Team Lead

    • Managed scoping, proposal selection, and delivery of global security penetration testing in 2018.
    • Extensive experience with vendor relationship management, RFQs and SOWs including negotiation.
    • Responsible for Red Team competency development framework and training plan.
    • Specialization in building product security teams focused on Embedded Systems and Bluetooth Low Energy BLE.
    • SANS SEC564 Red Team Ops, Metasploit Certified Specialist, Nexpose Certified Administrator.

    Cyber Security - Threat Intelligence Lead

    • Led the global implementation of our corporate Threat Intelligence Platform (TIP) and integrations with corporate Governance Risk and Compliance Platform (GRC).
    • Led a global team of analysts, establishing procedures and metrics to gather, maintain, and correlate strategic and tactical threat intelligence.
    • Developed annual threat report, quarterly executive intelligence briefings, tactical briefings, and internal training material.
    • Multiple external presentations as threat intelligence SME.

    Security & Controls Analyst - Manufacturing SystemsSecurity & Controls Analyst - Manufacturing Systems

    • Maintain customer relationship with Internal/External Auditors, Application Development, Application Management, and Remote Site teams.
    • Identify control gaps, assess risk, championing security awareness and policy compliance..

    Network Engineer

    • Firewall, Load Balancer, Content Filtering, Intrusion Prevention/Detection Systems

    Remote IT Site Analyst

    • Maintenance and troubleshooting all of Ford's multi-site video conferences on an international scale.
  • MAY 2011 - AUGUST 2011
    Logo

    Los Alamos National Laboratory

    Application Developer

    • Developed the Module Display web interface utilizing BASH, TCSH, PHP, MySQL, built on the CAKE PHP framework. The interface identifies inconsistencies across clusters within classified and unclassified networks, and incorporates multi-factor authentication.
  • SEPTEMBER 2009 - MAY 2011
    Logo

    REMC1

    IT Site Management

    • Duties of the REMC1 SupportNet team include providing IT and technical support to local school districts, managing internet access, maintaining technology infrastructure, troubleshooting technical issues, and integration of technology.
  • JUNE 2007 - MAY 2011
    Logo

    Pathfinder Networks

    Network Technician

    • Provided comprehensive network management services, including Windows server/workstation configuration, router/firewall administration, data backup, and disaster recovery, virus/malware prevention, laptop repairs, and hardware sales.

Education

$ cat /etc/*-release
Logo

University of Michigan-Dearborn

Master of Business Administration concentration in Information Systems Management

JANUARY 2014 - DECEMBER 2017

Logo

Michigan Technological University

Bachelor of Science in Computer Networking System Administration

AUGUST 2008 - MAY 2012

Achievements and Awards

$ openssl x509 -in certfile.pem

Below are a list of honors and awards both given and received from professional societies and associations, including formal publication of papers and patents.

Professional Associations

  • Society of Automotive Engineers (2021)
  • Infragard Michigan Alliance (2015)
  • Epsilon Pi Tau - Delta Zeta Chapter - International Honor Society for Technology Professionals (2012)
  • Association of Information Technology Professionals (2010)

Scholarships and Awards

  • Berrien Community Foundation - Scholarship Endowment (2022)
  • Michigan Gateway Community Foundation - Scholarship Recipient (2011)
  • Dr James A Black - Scholarship Recipient (2011)
  • George Robbe Memorial - Scholarship Recipient (2011)

Patents and Publications

Media Coverage

$ git fetch news

Below are a list of articles and blogs which were written by or quote Jacob.