Donald F. Cesaretti, MSIA
Information Security - Risk Management

 

Deputy Chief Information Security Officer - Radius Global Solutions LLC 
Nov 2024 - Present 

Member of the Information Security Department, reporting to the Chief Information Security Officer.

​

Duties consist of data protection, Information System audits, vulnerability assessments, management and enforcement of Information Security policies and protection of assets through a variety of tools/applications, vendor services and Information Security standards/procedures.

 

​

Senior Risk Analyst  - MIAX Exchange Group

Aug 2024 - Nov 2024

​

Member of the Risks and Control Team within the MIAX Cybersecurity Department as a Senior Risk Analyst.

 

​

​

Information Security Specialist I - Radius Global Solutions LLC

2019-Present

​

Information Security Specialist for Radius Global Solutions LLC, a firm specializing in financial entities and debt collection companies, in the Information Security Department.

 

My duties consist of these and many others:

​

- Project Management of Standards audit process for PCI-DSS v3.2.1 and V4, SSAE 16 SOC 1 and SOC 2 and ISO 27001:2013

-  Develop, implement and support NIST and CISecurity hardening baseline standards

-  Perform internal audits and risk assessment

-  Assist with the development updating, execution and monitoring of all global IT  security policies and procedures

-  Assist with client-based audits as required

-  Regularly test security systems and processes

-  Adhere to the practices outlined in the Radius Global Solutions Compliance Management and Information Security Management System

-  Knowledge, understanding, and compliance with all Federal, State, and Local laws  and regulations, with functional area, and with company policies and procedures

-  Monitors security incident and event management (SIEM) and logging   environments for security events and alerts to potential (or active) threats,  intrusions, and/or compromises

-  Collaborate with technical teams to identify, resolve, and mitigate events

-  Assists with service requests from customers and internal teams

-  Assists with containment of threats and remediation of environment during or after an incident

-  Perform internal and external vulnerability assessments utilizing internal vulnerability management and external PCI compliant vendors services.

-  Develop, implement and support incident response plans and testing

-  Assist with documentation and testing of Business Continuity and Disaster Recovery (BCDR) Plans

- Maintain regular attendance and timeliness are required due to the production-based nature of the business and client requirements

 

 

Adjunct Instructor - Rowan University

​2018 - Present

 

​Part-Time Adjunct instructor for Rowan University's Computer Science Department, where I teach courses on interactions in technology and society, specifically ethics, NIST Standards, ISO, HIPPA, Sarbanes-Oxley Act, cybersecurity/cybercrime, privacy laws, etc:

​

-Computers and Society, INTR 45339

​

Adjunct Instructor - Rowan College at Burlington County

2018-2021

​

Part-Time Adjunct instructor for Science, Technology, Engineering and Mathematics (STEM) Department, where I teach courses on Network Systems Administration (Windows and Linux platform) and Digital Forensics for the Cybersecurity program:

​

-CIS 165 : Network and System Administration

-CIS 207 : Intro to Computer Forensics

​

​

 

 

Information Technology staff / Teacher of Computer Repair Technology (CRT) and Technical Security Instructor - New Jersey Juvenile Justice Commission

​2004 - 2018

​

• created, administered, automated and secured Windows (2000, 2012, 2016) and Linux (CentOS, Ubuntu) networks

• created, administrated and secured databases involving computer repair workshop inventory, tool accountability, customer job tickets using MS SQL Server, Oracle 12c.

• taught computer repair, database admin and programming skills to inmates

• As a Technical Security Instructor, create and present IT security-related courses and materials throughout the State in the areas of: desktop security, application security and information security awareness.

 

 

Teacher of Electronics & Computer Technology - Hunterdon County Polytech

​2001 - 2004

 

- Instructed high school students in:

• basic and digital electronics,

• computer repair (A+ Certified curriculum),

• computer network administration (Network+ Certified curriculum),

• MS Office productivity software applications,

• computer programming in Python and MS Visual Basic,

• SQL database creation and administration (MS SQL Server and PostgreSQL),

• wireless network administration and security and

• introductory fiber optic networks.