Joshua C Sorenson
$25/hr
Joshua leads My Tech Buddy and loves finding innovative ways to solve problems using Technology!
My Tech Buddy+1 --
November 2020 – Present
Security Consultant
Responsibilities
⮚
⮚
⮚
⮚
Atlanta, GA
Accomplishments
Conduct client assessments, including risk, compliance,
program maturity, and technical security
November 2018 – October 2020
Senior Director, Global Security
Responsibilities
⮚
Rausch Advisory
⮚
Engaged with the team to conduct a network penetration test
& Azure security review for a property management firm
Equifax – Global Security
Accomplishments
Lead key technical & process remediation efforts, on Equifax’s
core business platform, resulting from the 2017 data breach
Develop & execute a strategy to globally transform mainframe
security architecture, engineering, and operations while
positioning mainframe as “Just Another Platform”
Lead multiple geographically diverse teams comprised of 15
total people
Solve Equifax’s Mainframe Security talent pipeline challenges;
delivering sustainability
⮚
⮚
⮚
⮚
Consulted on development of the FTC Consent Order controls
framework design
Redeployed Tripwire FIM solution, globally, in two weeks;
meeting post-breach regulatory deadline
Developed and executed against a three-year transformation
strategy
Developed the “Big Iron Apprenticeship” to train college
students in mainframe security, form a sustainable talent
pipeline, lower service delivery cost, & increase diversity
March 2017 – November 2018
Delta Air Lines – Information Security
Manager, Information Security Officers (ISO)
Responsibilities
Accomplishments
⮚ Report directly to the CISO
⮚ Create & lead the ISO organization comprised of 4 individual
contributors
⮚ Identify & execute on strategic opportunities to leverage
security innovation to solve business problems
⮚ Form strategic security partnerships with key international
business partners (SkyTeam, JV Partners, etc.)
⮚ Report directly to the CISO
⮚ Provide internal security consulting services
⮚ Develop transformation strategies for the organization and
specific security domains
⮚ Architect and deploy security solutions
⮚ Pioneer the KineticThreat (Operations Technology / IoT)
Atlanta, GA
⮚ Founded Delta’s ISO organization from initial strategy
development through recruiting and operationalization
⮚ Founded the Strategic Fraud Detection Program to proactively
identify fraud through data analytics – identified $5.5 Million in
the first three months vs an annual goal of $750K
⮚ Designed and implemented the Information Security Reporting
Data Warehouse; enabling the first InfoSec KPIs and KRIs
May 2014 – March 2017
Delta Air Lines – CyberSecurity
Security Advisor, CyberThreat, KineticThreat, & Security Strategy
Responsibilities
Accomplishments
Security Practice
Atlanta, GA
Atlanta, GA
⮚ Authored the Enterprise ZeroTrust Security Strategy
⮚ Grew the CyberThreat Unit, as interim manager, from 5
members to 30 professionals
⮚ Led, architected, & deployed the $12 Million SIEM deployment
– completed in 90 days
⮚ Led the $15 Million APT & IDS redeployment project
⮚ Developed 5-year strategies for Information Security
January 2013 – May 2014
Senior Systems Auditor
Delta Air Lines – Corporate Audit
Atlanta, GA
March 2011 – January 2013
Principal IT Auditor
The Coca-Cola Company – Corporate Audit
Atlanta, GA
March 2009 – March 2011
Senior IS Auditor
John Deere – Internal Audit
Moline, IL
(Global)
July 2006 – March 2009
Tech Lead & App DBA
John Deere – Parts Distribution Center
Milan, IL
June 2005 – July 2006
Product Supply Analyst
Kimberly-Clark – Beech Island Mill
Beech Island, SC
University of London
2025 (Projected) – MSc – Information Security
⮚
GCHQ Certified Program
⮚
Focus in Penetration Testing & Digital Forensics
Georgia Institute of Technology
2017 – Certificate, PE – Cyber Security
University of Iowa
2005 – BBA – Management Information Systems
2004 – BBA – Finance
⮚
Graduated at age 19; Youngest graduate ever from the College of Business
Information Systems Audit & Control Association (ISACA)
⮚
⮚
2013 Certified Information Security Manager (CISM)
2011 Certified Information Systems Auditor (CISA)
Academic
⮚ 2018 – Present University of West Georgia – College of Business, Information Security Program
⮚ Awarded 2020 UWG Executive in Residence
Professional
⮚ 2019 – Present Broadcom – Mainframe Strategic Advisory Council
⮚ 2016 – 2017
Cisco – Strategic Security Threat Defense Advisory Forum
⮚ 2014 – 2016
Deloitte – Aviation Executive Roundtable
Academic
⮚ 2019 University of West Georgia – Introduction to Information Security
⮚ 2018 Georgia Institute of Technology – Solving the Biggest Problems
⮚ 2018 Georgia State University – CyberSecurity Projects & The Kinetic Threat
Professional
⮚ 2019
⮚ 2019
⮚ 2016
⮚ 2015
⮚ 2014
⮚ 2014
⮚ 2013
⮚ 2012
Africa
Asia/Pacific
Europe
Middle East
North America
South America
Hacker Halted – Demystifying & Securing Big Iron: Making the Mainframe Just Another Platform
ISACA Atlanta Geek Week – Demystifying & Securing Big Iron: Making the Mainframe Just Another Platform
IBM InterConnect – A Day In The Life Of The SOC
ISACA Atlanta Geek Week– Darkest Before the Dawn – The State of CyberSecurity
ISACA Atlanta Geek Week – Help, My Castle is Broken! The Case for Zero Trust
ISACA Atlanta Geek Week – White Hat Auditing 2.0 – Breaking Windows Domain Authentication
ISACA Atlanta Geek Week – White Hat Auditing – Breaking Windows Authentication
ISACA Atlanta Geek Week – Hacktivism
Egypt, South Africa
Australia, China, India, Japan, North Korea, South Korea, Sri Lanka,
Taiwan, Thailand, Vietnam
Austria, Denmark, England, Finland, France, Germany, Iceland, Italy,
Netherlands, Norway, Russia, Sweden, Switzerland, Vatican City
Israel, Jordan, United Arab Emirates, West Bank
Bahamas, Canada, Haiti, Jamaica, Mexico, United States (48 States)
Argentina, Brazil, Chile, Ecuador, Peru, Venezuela
