Cam Johnson, CISSP

Experience

• 

  Best Buy

  Oct 2015 - Mar 2016

  Computer Sales Associate
• 

  ADP

  May 2017 - Aug 2017

  Application Developer

  -Automation Tester leveraging C#'s Coded UI- Full stack developer

• 

  ADP

  Aug 2018 - Jun 2021

  Maintained multiple performance tracking dashboards in Splunk. Provided KPI’s for applications with > 1 mil/sec request via Splunk.Designed and maintained performance tracking alerts that allowed for streamlined CIRT responses and the identification of performance hinderances.Designed cloud and 3rd party based authentication solutions for Self Service Branding tools.Created POC applications with React and Node JS that allowed for the visualization of permissions at an organizational level. Researched and implemented token based authentication for Java,Node, and Typescript application API’s.Maintained multi regional branding systems. Devised a self-service multi regional branding application . Gathered, Managed, and Approved deployment for over 2 years of development cycles as a team Project Manager. Show less

  • Risk Scenario Manager

    Mar 2021 - Jun 2021

  • Application Developer

    Aug 2018 - Mar 2021
• 

  Warner Bros. Discovery

  Jun 2021 - Oct 2023

  Senior Business Information Security Officer

  • Led programs to drive Tenable FA adoption by structuring data, creating training and documentation, creating remediation reports, and streamlining adoption across WBD, resulting in a 60% increase in visibility for cloud assets. • Prioritized data from Splunk and Brinqa to update stakeholders on critical findings and threats. • Assessed applications to determine data classifications for GDPR, CCPA, and SOX compliance, improving asset inventory and risk register. • Conducted Emerging Threat workshops to support security tool adoption and educated engineers on emerging security threats. • Managed code hygiene campaigns by deploying CICD and repo scanning tools, implementing repo archival processes, and creating asset tagging strategies. • Drove monthly vulnerability remediation by analyzing Tenable and WhiteHat findings, addressing common issues, and documenting remediation actions, achieving a 60% reduction in findings. • Designed and automated MFA project engagements by structuring HR data with Python, standing up a SharePoint site, and leveraging Power Automate, saving 500 hours of manual labor and onboarding over 700 applications with MFA. • Led infosec programs connecting engineers and infosec teams to support high-visibility events, prioritizing risk, driving threat modeling sessions, deploying tools, and aligning incident response teams. Show less

• 

  Pearl Consulting Group

  Dec 2023 - Sept 2024

  Application Security Engineer

  • Led engineers to create integrations with ServiceNow to support employee verification workflows leading to a more secure ticketing process.• Improved SIEM functionality through data ingestion analysis leading to expedited SOC response times.• Managed multi firewall configurations to restrict outbound SSH traffic by analyzing historical data via traffic analysis, correlating host and whitelisting approved traffic leading to a reduced threat landscape.• Created an operationalization strategy for the adoption of Wiz.io in a phased approach by tying tool functionality to existing workflows.• Created Python automations scripts to validate web application status prior to Invicti scans leading to sanitized results and more efficient findings for engineers.• Created middleware with docker and Azure Pipelines to automate the provisioning of security tools such and SNYK and LEGIT, leading to more efficient vulnerability dissemination to stakeholders.• Drove the deployment and prioritization of playbooks in the IBM SOAR Environment Show less

• 

  NBCUniversal

  Jan 2025 - now

  Cyber Security Manager