SK

Sam Kassoumeh

Investor at Various

Miami, Florida

Overview

Work Experience

  • COO & Founder

    2013 - Current

    SecurityScorecard provides precise global threat intelligence and risk awareness continuously and non-intrusively so businesses and their partners can collaboratively predict and remediate data security issues. SecurityScorecard customers are Fortune 500 leaders in financial services, retail, healthcare and manufacturing industries. SecurityScorecard is headquartered in New York. Its investors include Sequoia Capital, GV, Evolution Equity Partners, Boldstart Ventures, and others. Solution use cases include: Third-party vendor and business partner risk assessment and monitoring M&A security risk due diligence Cyber-liability insurance underwriting and risk modeling Self-monitoring and remediation

  • Angel Investor

    2021

    Investor and advisor in several companies including Vicarius.io, Solidus Labs, Olympix.ai, Phaselab, Corgea and more unannounced.

  • Cyber Security Advisor

    2018 - 2020

    Collaborated closely with the leadership and technical team at Billy to create and scale a robust, holistic information security program. Billy was lead to a successful exit in 2020.

  • Head of Security and Compliance

    2011 - 2014

    Driving all security and compliance initiatives for Gilt Groupe, Gilt City, Gilt.jp, Jetsetter, Gilt Taste, Park & Bond

  • Technology Compliance Manager

    2009 - 2011

    Specialize in scaling data protection, regulatory compliance, and privacy best practices across both agile, start-up environments and enterprise-level infrastructures. Built and scaled information security program from the ground up, encompassing web application assessment, regulatory compliance, log management, user access and password management, alerting and automation, intrusion prevention, corporate IT infrastructure security, penetration testing, fraud mitigation, privacy and PII protection, social engineering, and security awareness training. Developed PCI compliance initiative from inception, successfully exceeding annual Level 1 audits and DSS requirements. Continue to protect sensitive cardholder data by implementing creative, security-driven solutions. Authored several global security policies and procedures, PCI compliance documentation, training and blog content, and practical user guidelines. Establish cross-departmental trusts to help build and promote a fluid, unified security program throughout the entire organization. Example includes partnering with legal team to establish a security checkpoint in order to provide risk assessment, security guidance, and contract amendments for all engagements involving PII. Manage annual budget, growth and development projections, vendor partnerships.

  • Global Information Security Team Lead

    2009 - 2009

    Lead worldwide InfoSec team, managing global security infrastructure for over 85 applications and 45,000 employees. Improved global Information Security knowledge transfer throughout the organization by designing and executing policy and best practices deliverables and communication framework. Collaborate with Compliance group to analyze and deliver security reports and recommendations to Internal Audit team in preparation for Sarbanes-Oxley.

  • Global Information Security Analyst

    2006 - 2008

    Provisioned and maintained 1700+ account and development requests for over 85 global information systems, including Active Directory, MFGPro, Oracle, and AS/400. Planned and managed migration of several Information Security systems to strategic partner, including development of a standardized and centralized administration processes, authoring request process and procedure, and coordination of training. Led six-month Asia-Pacific Information Security and SAP Security training and support initiative, instilling process knowledge, technology utilization, and best practices to key IS and business executives. Participated in Federal-Mogul mentoring program, using past and current experience to educate interns on business values, time management, and provide guidance when to contribute to their continuous success and development.

  • Global Information Security Intern

    2006 - 2007

    Administration of Information Security systems, including the creation of over 500 VPN instances, over 600 Active Directory requests, and over 500 legacy system requests. Engaged in the global migration from Novell to Active Directory through the evaluation and maintenance of user login statistics for over 40 locations. Participated in the development and implementation of the Identity Management (IDM) tool through debugging of 12 language translation sites, development of a SharePoint presence, and user acceptance testing.

Relevant Websites