Resume

Jason Croteau
Manchester, NH 03103
(see LinkedIn)@gmail.com
603-000-0000

https://www.linkedin.com/in/jasoncroteau/
https://github.com/jdturbeau/

Experience

Client Technology Security Manager 03/2023-02/2025
Mainstay Technologies, Manchester, NH

• Led a 10 person engineering, SOC, and support team, fostering a proactive, security first mindset
• Identified and mitigated critical insider threats, enhancing security posture and risk resilience
• Aligned IT strategy for compliance with regulatory mandates CMMC, SOX, CJIS, ITAR, SOC 2
• Orchestrated semi-annual budget and forecast reviews, optimizing expense management
• Implemented and managed IAM controls SSO, MFA, NAC with risk-based attributes
• Reduced manual effort 30% by automating IT workflows using PowerShell and Python
• Contributed to the creation of guidelines for Copilot Artificial Intelligence AI usage
• Spearheaded optimization initiatives to improve redundancy and low maintenance costs
• Included Azure migrations, Veeam backups, Axcient BCDRs, equipment consolidation

Director of Information Security and Operations 12/2019-03/2023
Fresenius Medical Care, Waltham, MA

• Directed internationally cross-functional teams of up to 15 employees
• Mentored team for professional development and to ensure operational efficiency
• Integrated 3,000 employees into a 62,000 person organization,ensuring seamless transition

• Unblocked and resolved stalled initiatives, with measurable success over 18 months
• Streamlined operations through corporate standard adoption and strategic advocacy
• Reduced unnecessary expenses while fortifying security and ensuring minimal disruption
• Developed a scalable approach to smoothly integrate 8 acquisitions

• Created and enforced security policies, conducting training, and tracking performance
• Built risk metric dashboards to enhance executive decision-making
• Unified audit protocols, boosting compliance and reporting precision
• Defined guidelines to strengthen DevSecOps and shorten deployments within the CI/CD pipeline
• Provided key updates and decision points to senior leadership, ensuring alignment

IT Project Manager 03/2016-12/2019
Fresenius Medical Care, Waltham, MA

• Optimized processes for Quality, Manufacturing, and IT business intelligence programs by:

• Implemented SDLC framework with change management, testing, validation
• Developed role-based access control RBAC to streamline management of access
• Integrated SaaS BI tool with Okta SSO to reduce related support and user frustration
• Automated ETL using PowerShell and web services for more frequent data consumption

• Assessed team strengths, guided development, and optimized project strategies
• Facilitated meetings with senior stakeholders to define project scope, gather high-level requirements, assess resource availability, and track progress

Security Analyst 11/2014-03/2016
Tufts Health Plan, Watertown, MA

• Served as IAM, encryption, data de-identification, and endpoint hardening SME, strengthening cybersecurity measures to support HIPAA compliance
• Evaluated and deployed Risk-Based Access RBA and Privileged Access Management PAM solutions and strategies to protect subscribers and mitigate insider threats
• Engaged in Scrum meetings to drive continuous enhancements to subscriber web portals
• Safeguarded sensitive data such as PII / PHI with technical controls prioritized with stakeholders
• Deployed and managed IBM EIM access controls, ensuring secure authentication with SSO
• Implemented and configured access profiles for a modular, CMS-compliant cloud solution
• Automated security tasks in Java, Bash, and PowerShell, to streamline risk assessments

Security Analyst 04/2014-11/2014
NxStage Medical, Inc, Lawrence, MA

• Applied expertise of security domains leveraging NIST 800-53, HITRUST frameworks
• Partnered with business to conduct BIA and RA, identify gaps, and define mitigation strategies
• Investigated incidents using Security Information and Event Management SIEM, IDS/IPS, and DLP, fine-tuning detection to minimize false positives and false negatives
• Developed and managed IRPs for common threats, streamlining efforts of support team
• Designed and upheld policies to address evolving risks, technologies, and employee training
• Conducted trainings about social engineering and phishing in personal and professional realms
• Assessed and advocated for innovative technologies to enhance cloud and on-prem security
  

Network Security Engineer I and II 01/2008-04/2014
NxStage Medical, Inc, Lawrence, MA

• Led projects as an SME and project manager across multiple initiatives, including:

• Deployed and managed DLP solutions for on-prem and cloud platforms
• Implemented, managed IAM platform with SSO securing access for 1,000 user
• Deployed and maintained SIEM tools to enhance security monitoring
• Implemented and managed NIDS/IDS/IPS/XDR solutions for threat detection
• Migrated internal PBX/CC systems to cloud-based VoIP for 500 users
• Transitioned internal Exchange environment to Google Apps for 750 users
• Established and enforced Mobile Device Management for 300+ devices
• Designed and delivered training programs to support system migrations

• Standardized auditing for SOX compliance to provide consistent, timely reporting
• Authored FAQs for common issues to streamline IT workload and accelerate response times
• Automated repetitive tasks and monitor failure points using PowerShell and Bash scripting

Skills

Leadership Strategy

• Spearhead IT integration of acquisitions
• Led multiple teams, internal and external MSP / MSSP with clear objectives and communication
• Articulate status and decision points to senior leadership
• Effectively present and simplify complex topics
• Align business goals to technical solutions

Technology Expertise

• Cybersecurity & Risk Management - Insider Threat Detection, Risk Mitigation, Incident Response, NIST 800-53, HITRUST
• Identity & Access Management IAM - RBAC, PAM, ZeroTrust, authentication, authorization
• Automation & Infrastructure - PowerShell, Python, IaC, PaaS, CI/CD
• Security Operations & Monitoring - SIEM - Splunk, Azure Sentinel, AWS Security Lake and Detective, XDR, SOAR, IDS / IPS / DLP

Certifications

ISC2 Certified Information Systems Security Professional CISSP                        05/2025-04/2028

EC-Council Certified Ethical Hacker CEH                                        12/2014-02/2017

Education

ITT Technical Institute                                                                 02/2012 - 09/2014

• BS, Information Systems Security

Portfolio

Coming soon