expert
security
assessments
and Solutions
Cybersecurity
Risk Assessments
Inventory critical data and business assets, evaluate existing controls, assess residual risks, and recommend mitigations.
Compliance
Advisory Services
Identify business-relevant regulations and/or desired compliance frameworks, and establish a roadmap for achieving compliance.
vCISO and Exec
Advisory Services
Engage with internal stakeholders to translate and communicate technical risk needs to business leaders to aid in resource prioritization.
Solution Selection
Services
Assist with researching and recommending technical security solutions that will mitigate known cybersecurity risks and control gaps.
I’m an experienced executive leader, working in information assurance and security for over 20 years, most recently as the Chief Information Security Officer (CISO) for Modernizing Medicine, a healthcare technology provider that offers specialty-specific, SaaS technology solutions to medical practices. At ModMed, I set the company’s overall strategic security direction through policies, procedures, standards, workforce training, and information security compliance initiatives. Additionally, I was responsible for security operations practices, including security testing, monitoring, active defense, incident response, and other related functions.
Prior to ModMed, I held several information security leadership roles at companies in highly regulated industries, such as insurance, healthcare and technology sectors where protection of sensitive personal and business information has never been more essential. In these roles, I developed and enforced security standards and IT controls to protect confidential information, focusing significantly on maintaining compliance with HIPAA Security requirements and the Payment Card Industry Data Security Standard, and evolving to keep pace with constantly advancing threats.
My career began as a U.S. Air Force officer, where I was last assigned as the Deputy Operations Chief of the Air Force Computer Emergency Response Team. During that time, I honed foundational technical skills monitoring the Air Force’s global computer networks for intrusion and illicit activity and equally vital communications skills, preparing the cyber situation reports to flag level Air Intelligence Agency command..
I am a Certified Information Systems Security Professional (CISSP) with an Information Security System Management Professional concentration (CISSP-ISSMP), and a Certified Information Security Manager (CISM). I earned a B.S. in Electrical Engineering from the Pennsylvania State University, University Park and an M.S. in Engineering Management from the University of Massachusetts at Amherst. I’m currently based in the Orlando, Florida area.
Jay Schwitzgebel, Owner
and Chief Consultant
vantagerisksec@gmail.com
PHONE
240.720.7076
