Sam Kassoumeh
Investor at Various
Sam Kassoumeh
Investor at Various
Miami, Florida
Overview
Work Experience
COO & Founder
2013 - Current
SecurityScorecard provides precise global threat intelligence and risk awareness continuously and non-intrusively so businesses and their partners can collaboratively predict and remediate data security issues. SecurityScorecard customers are Fortune 500 leaders in financial services, retail, healthcare and manufacturing industries. SecurityScorecard is headquartered in New York. Its investors include Sequoia Capital, GV, Evolution Equity Partners, Boldstart Ventures, and others. Solution use cases include: Third-party vendor and business partner risk assessment and monitoring M&A security risk due diligence Cyber-liability insurance underwriting and risk modeling Self-monitoring and remediation
Angel Investor
2021
Investor and advisor in several companies including Vicarius.io, Solidus Labs, Olympix.ai, Phaselab, Corgea and more unannounced.
Cyber Security Advisor
2018 - 2020
Collaborated closely with the leadership and technical team at Billy to create and scale a robust, holistic information security program. Billy was lead to a successful exit in 2020.
Head of Security and Compliance
2011 - 2014
Driving all security and compliance initiatives for Gilt Groupe, Gilt City, Gilt.jp, Jetsetter, Gilt Taste, Park & Bond
Technology Compliance Manager
2009 - 2011
Specialize in scaling data protection, regulatory compliance, and privacy best practices across both agile, start-up environments and enterprise-level infrastructures. Built and scaled information security program from the ground up, encompassing web application assessment, regulatory compliance, log management, user access and password management, alerting and automation, intrusion prevention, corporate IT infrastructure security, penetration testing, fraud mitigation, privacy and PII protection, social engineering, and security awareness training. Developed PCI compliance initiative from inception, successfully exceeding annual Level 1 audits and DSS requirements. Continue to protect sensitive cardholder data by implementing creative, security-driven solutions. Authored several global security policies and procedures, PCI compliance documentation, training and blog content, and practical user guidelines. Establish cross-departmental trusts to help build and promote a fluid, unified security program throughout the entire organization. Example includes partnering with legal team to establish a security checkpoint in order to provide risk assessment, security guidance, and contract amendments for all engagements involving PII. Manage annual budget, growth and development projections, vendor partnerships.
Global Information Security Team Lead
2009 - 2009
Lead worldwide InfoSec team, managing global security infrastructure for over 85 applications and 45,000 employees. Improved global Information Security knowledge transfer throughout the organization by designing and executing policy and best practices deliverables and communication framework. Collaborate with Compliance group to analyze and deliver security reports and recommendations to Internal Audit team in preparation for Sarbanes-Oxley.
Global Information Security Analyst
2006 - 2008
Provisioned and maintained 1700+ account and development requests for over 85 global information systems, including Active Directory, MFGPro, Oracle, and AS/400. Planned and managed migration of several Information Security systems to strategic partner, including development of a standardized and centralized administration processes, authoring request process and procedure, and coordination of training. Led six-month Asia-Pacific Information Security and SAP Security training and support initiative, instilling process knowledge, technology utilization, and best practices to key IS and business executives. Participated in Federal-Mogul mentoring program, using past and current experience to educate interns on business values, time management, and provide guidance when to contribute to their continuous success and development.
Global Information Security Intern
2006 - 2007
Administration of Information Security systems, including the creation of over 500 VPN instances, over 600 Active Directory requests, and over 500 legacy system requests. Engaged in the global migration from Novell to Active Directory through the evaluation and maintenance of user login statistics for over 40 locations. Participated in the development and implementation of the Identity Management (IDM) tool through debugging of 12 language translation sites, development of a SharePoint presence, and user acceptance testing.
Education
BBA
2002 - 2007