Ron Matthews Cissp, Crisc
About Ron Matthews Cissp, Crisc
Ron Matthews is a Senior Information Security and Compliance professional with over five years of experience in the field. He currently works remotely at a confidential organization and holds certifications in CISSP and CRISC, demonstrating his expertise in information security and risk management.
Work at Confidential
Currently, Ron Matthews serves as the Senior Information Security & Compliance professional at Confidential. He has held this position since 2021, contributing to the organization remotely for three years. In this role, he focuses on ensuring compliance with various information security standards and practices.
Previous Employment History
Ron Matthews has a diverse employment history in the information security field. He worked at American Red Cross as a System Administrator for three months in 2012. He then served as the Information Security Manager at IMAGINE from 2018 to 2019. Prior to that, he was the Lead Information Security Engineer at Piedmont Natural Gas / Duke Energy for two years. His experience also includes roles at DLA Piper, TruShield Security Solutions, SPX FLOW, Inc., and Wargaming.net.
Education and Expertise
Ron Matthews studied Cybersecurity Management & Policy at the University of Maryland University College, where he earned a Bachelor of Science degree. He holds certifications in CISSP and CRISC, demonstrating his expertise in information security and risk management. His skill set includes strong capabilities in Active Directory and Identity and Access Management.
Specializations in Information Security
Ron Matthews specializes in Governance, Risk, and Compliance (GRC). He has extensive knowledge of multiple compliance frameworks, including PCI, SSAE16, ISO27001, NIST, SOX, HIPAA, and GDPR. Additionally, he is proficient in ITIL, which encompasses best practices for IT service management.
Leadership and Management Skills
Ron Matthews possesses a strong background in leading both technical and non-technical staff. He has over five years of experience in the information security sector, where he has contributed to business success with minimal training. His experience includes developing policies, processes, and procedures for compliance.