Robert Chojnacki
Details
Greater Texas Credit Union
AVP - Information Security Officer
Cohesion is a cloud-based smart building IoT company. Our SaaS products vertically integrate tenant experiences and building operations to deliver green, healthy, and autonomous buildings.
- Successfully lead the initiative to achieve SOC 2 compliance
- Created and managed corporate security policies, procedures, standards, and guidelines
- Started an application security program
- Managed our security awareness program
- Oversight of Azure and Microsoft 365 Security
- Managed both IT security and cloud security
- Matured Vulnerability, Vendor and Cyber Incident Management programs
- Performed IT management for the enterprise
- Wrote security blog posts for company website
2021 : 2023
cohesion
Director of Cybersecurity
Lead a team of security automation engineers and vulnerability management engineers.
Managed the implementation of CIS benchmarks for corporate and government systems.
Responsible for the rollout of several NIST SP 800-53 / FedRAMP controls.
2019 : 2020
Relativity
Manager, Security
2019 : 2019
Sabbatical
.
Jellyvision is a 400 person company offering SaaS services to our clients that explain complex topics such as health insurance and other employee benefits.
- Run Jellyvision’s security program
- Review vendor and client contracts for legal team
- Perform risk assessments and control self-assessments
- Planning and outsourcing external audits, assessments, and penetration testing
- Interface with client legal and security teams
- Respond to client security attestations
- Implement vendor management
- Maintain DR/BCP
- Review policies
- Investigate and oversee HIPAA, PCI and other contractual, regulatory, and industry compliance needs
- Initiated and continue to manage Jellyvision’s application security development training program
2015 : 2019
Jellyvision
VP of Information Security
Skills
Agile Methodologies, Amazon Web Services (AWS), Apache, business continuity, Buzzword Flinging, C++, CISA, ciso, Cloud Computing, Cloud Security, Compliance, Cybersecurity, disaster recovery, Donut Eating, FedRAMP, Hadoop, HTML, Information Security, Information Security Management, information security officer, Information Technology, ISO 27001, IT Security Assessments, Java, LAMP, Leadership, Linux, Management, MapReduce, Microsoft Azure, MySQL, NIST, PHP, Project Management, Python, Risk Assessment, risk management, Security, Security Automation, Security Policy Development, SOC 2, Software as a Service (SaaS), Software Development, Software Project Management, SQL, Threat & Vulnerability Management, Unix, vendor management, Web Development, XML, C, Amazon Web Services, Software Project
About
As a seasoned information security officer and software developer, I thrive on designing secure systems and bringing a creative approach to technological challenges. This problem-solving mindset has produced several patents relating to the collection and securing of data. I also designed a secure data storage system that reduced the time needed to execute client contracts by several months for each contract. As one who appreciates evolving best practices, I spearheaded a project that moved customer systems from a traditional data center to the cloud and introduced distributed load testing for an employer to proactively ensure that the traffic demands of its customers would be met. I have managed system administrators and full-stack and embedded engineers, consulted in IT on three continents, and represented the company at international consortia.
Profile Photo
