Ken Brown

Chief Information Security Officer

Experienced Chief Information Security Officer with 15+ years in cybersecurity, specializing in building high-performing teams and implementing security frameworks that align with business objectives. Proven track record in executing multi-year security strategies, optimizing budgets, and driving innovation while managing risk. Skilled at bridging technical and business stakeholders to ensure security enhances, rather than impedes, growth. Expertise in AI-driven monitoring, zero-trust architectures, and cloud asset protection.

15+

Years Experience

Leadership Roles

Cyber Security Programs Established

Certifications

Professional Experience

Chief Information Security Officer

Smartlinx Solutions

May 2024 - Present

Supervise cybersecurity professionals and manage multi-year security strategies. Exceeded SOC 2 Type II compliance goals, deployed Azure Entra and Okta solutions reducing unauthorized access attempts by 75%, and developed LLM-driven risk assessment tools.

Head of Information Security

Cypress

May 2023 - May 2024

Oversaw cybersecurity team and embedded secure coding practices in SDLC. Implemented Panther SIEM infrastructure cutting false positives by 74% and reducing mean time to detect threats by 40%.

Head of Information Security

Villanova Tech

November 2019 - May 2023

Launched firm's inaugural security program aligning with ISO 27001 and GDPR. Implemented infrastructure-as-code best practices and cut average incident response times by 40%.

Director, Cybersecurity Services

KPMG

September 2014 - May 2016

Guided Fortune 500 healthcare clients in achieving HIPAA, HITRUST and SOC 2 compliance. Led vulnerability assessments and penetration testing, lowering incident rates by 30% across client engagements.

Senior Managing Consultant

IBM

June 2012 - September 2014

Oversaw deployment of large-scale cybersecurity initiatives for major clients, prioritizing compliance standards like HIPAA and PCI DSS. Executed vulnerability assessments using advanced SAST/DAST tools.

Executive Director, Technology Risk

Comcast NBCUniversal

July 2008 - May 2012

Led technology risk function and served as interim CISO. Designed network segmentation plan for PCI DSS compliance resulting in 60% reduction in time and resources to maintain compliance.

Technical Skills

Leadership & Strategy

Executive CommunicationTeam LeadershipStrategic PlanningSecurity TransformationCulture BuildingProgram Execution

Cybersecurity

Zero-Trust ArchitectureCloud SecurityApplication SecurityCompliance & Risk ManagementIncident ResponseThreat Intelligence

AI & Automation

LLM-driven SecOpsLLM Risk ModelingAI-driven MonitoringSecurity AnalyticsSIEMThreat Detection

Cloud Platforms

AzureAWSOktaMicrosoft Edge for BusinessTerraformInfrastructure-as-Code

Compliance

SOC 2HIPAAHITRUSTPCI DSSGDPRISO 27001

Certifications

Certified Information Systems Security Professional (CISSP)
Information Systems Security Engineering Professional (ISSEP)
Project Management Professional (PMP)
Certified Public Accountant (CPA) - Inactive

Key Achievements

Led teams through multiple SOC 2 Type II compliance achievements ahead of deadlines
Designed network segmentation reducing PCI DSS compliance resources by 60%
Implemented SIEM solutions reducing false positives by 74% and MTTD by 40%
Developed LLM-driven risk assessment tools reducing high-impact threats by 50%
Established security governance frameworks for Fortune 500 healthcare clients
Master's degree in Management of Information Technology from University of Virginia

Let's Connect

Interested in collaborating on AI security projects or discussing the latest developments in the field? I'd love to hear from you.

LinkedIn GitHub Twitter