Cyber Security Expert
Jeremy Smillie

With 20+ years of protecting sensitive data and counting, I continuously drive excellence in cyber security by mentoring future leaders and implementing cutting-edge security strategies that elevate organizations to the highest security and compliance standards.

Learn more
cyber security professional

About Me

Leveraging over 20 years of cyber security expertise to mentor and lead organizations in creating robust security cultures, transforming compliance practices, and achieving world-class security standards.

Cultivating Security Cultures with Global Insight

With over 20 years of experience in the IT industry, specializing in cyber security, I have held esteemed positions such as Security Analyst, Security Officer, Director of Security, and VP of DevSecOps. My professional journey is marked by the creation and implementation of comprehensive security awareness training programs, transforming security cultures from the ground up, and leading large, diverse teams across various disciplines including application development, QA, sales, marketing, C-suite, support, operations, and DevOps.

My expertise extends to application security (AppSec) and AppSec training, where I have instilled a shift-left security culture, ensuring security is integrated from the onset of development processes. My strategic initiatives have resulted in substantial cost savings, amounting to millions of dollars in security-related expenses.

Contact Me

Beyond my professional life, I am an avid traveler, having explored numerous countries around the globe. My love for wine and gourmet food complements my passion for cooking, where I take pride in creating dishes that consistently impress. Cycling is a significant part of my lifestyle, dedicating many hours each week to riding. I am fortunate to have a wonderful circle of friends and family who support and inspire me.

I am deeply curious about the inner workings of various systems and enjoy learning how things are built. This curiosity fuels my approach to both personal and professional challenges, driving me to continually innovate and excel.

I am passionate about mentoring and teaching, guiding teams and individuals to achieve their highest potential. My leadership philosophy revolves around empowering others, fostering a culture of continuous improvement, and integrating security seamlessly into every aspect of the business. I look forward to bringing my experience, passion, and dedication to new opportunities where I can continue to drive excellence in cyber security and beyond.

computer on the counter

What Services I’m Providing

I offer comprehensive security awareness training to educate and empower your team to effectively recognize and respond to security threats. As a compliance program architect, I design and implement robust programs tailored to regulatory needs such as PCI, SOC, and HIPAA, ensuring seamless integration and continuous adherence. Additionally, I provide expert leadership in cyber security, bringing strategic vision and hands-on expertise to oversee and elevate your organization’s security initiatives.

Computer Icon
Security Awareness Training

Enhance your organization’s resilience with comprehensive security awareness training designed to educate and empower your team. Our programs focus on practical, real-world scenarios to ensure employees recognize and respond to security threats effectively. Build a proactive security culture where every team member contributes to safeguarding your enterprise.

Ads Icon
Compliance Program Architect

Design and implement robust compliance programs tailored to your specific regulatory needs, including PCI, SOC, HIPAA, and more. Our expertise ensures that your organization meets and exceeds industry standards, mitigating risks and avoiding costly penalties. Build a culture of compliance that seamlessly integrates into your daily operations, ensuring continuous adherence and peace of mind.

Settings Icon
Security Leader

Hire a seasoned security leader to oversee and elevate your organization’s security initiatives. With extensive experience in managing comprehensive security programs, I bring strategic vision and hands-on expertise to protect your assets and ensure compliance. Drive your company’s security posture forward with leadership that fosters a culture of vigilance and continuous improvement.

Working Process

I believe in a collaborative and immersive approach to security. I start by working closely with your teams to thoroughly understand your business and gather critical insights from employees. This knowledge transfer is essential in designing and architecting a customized plan that includes clear timelines and achievable milestones. When it comes to security awareness training, my focus is on practical integration, ensuring that security practices seamlessly become part of your team’s everyday work streams. This holistic and inclusive methodology not only strengthens your security posture but also fosters a culture of continuous improvement and vigilance.

Work Experience

With over two decades of experience in the IT industry, specializing in cyber security, I have successfully transformed security cultures and led large, diverse teams. My expertise spans creating robust security awareness programs, integrating security into development processes, and ensuring compliance with industry standards.

VP of DevSecOps

2024-Present

Oversaw the integration of security practices into the DevOps pipeline, ensuring secure software development and deployment processes. Established robust security training programs and shift-left-security practices that empowered developers to embed security from the earliest stages of the development lifecycle. Achieved substantial cost savings by preventing security breaches and optimizing security operations. Managed budgeting and hiring, successfully combining the DevOps and SecOps teams into a unified, cohesive unit. Focused on developing security pipelines and implementing measures to prevent vulnerabilities from entering the environment, enhancing the overall security posture of the organization.

Sr. Director of Security

2023-2024

Led comprehensive security initiatives across the organization, managing risk assessments, incident response, and compliance programs. Directed the implementation of advanced security technologies and practices to protect sensitive data and systems. Fostered a culture of security awareness and vigilance, ensuring all employees were educated on best practices and emerging threats. Collaborated with cross-functional teams to align security measures with business objectives, enhancing the overall security posture and resilience of the organization.

Director of Security

2022-2023

Built and led a dedicated SecOps team, enhancing the organization’s ability to proactively manage and respond to security threats. Implemented advanced monitoring and threat detection systems, significantly improving the company’s ability to detect and mitigate potential security incidents. Developed strategic security policies and procedures, ensuring robust protection of sensitive data and compliance with industry standards. Fostered a culture of continuous improvement in security practices across the organization.

Security Officer

2020-2023

Designed and implemented a comprehensive microservice architecture in AWS using EKS, ensuring scalability, resilience, and security. Spearheaded the development of a shift-left-security framework, emphasizing security integration from the initial stages of development through to deployment and infrastructure. Led initiatives to enhance security awareness and practices among all team members, fostering a proactive security culture across the organization.

Sr. Security Analyst

2015-2020​

Conducted thorough security assessments and audits to identify vulnerabilities and implement effective mitigation strategies. Developed and maintained comprehensive security policies and procedures, ensuring compliance with industry standards. Built the company’s security awareness training program. Collaborated with IT and development teams to integrate security controls into systems and applications, significantly enhancing the organization’s security defenses.

My Blog Content

I love to create content that reflects my passions and insights, covering various topics that resonate with my experiences and interests. Whether it’s deep dives into cybersecurity, best practices for compliance, or tips on leading with purpose, the blog section of my website offers a wealth of knowledge and practical advice. Explore the articles and join me on this learning, growth, and innovation journey.

Why Cyber Security?

Cyber security chose me as much as I chose it. Over the decades, this field has become increasingly vital, evolving alongside the technology it protects. I’ve witnessed the early adoption of many security standards and watched them grow and mature. However, I’ve always believed that no security standard is perfect. We should always strive to exceed these standards, understanding that the bare minimum is insufficient in today’s threat landscape.

Security isn’t just about one person leading and implementing strategies; it’s about fostering a culture of security within an organization. Much like how we go to school to learn to read and write, we must instill security practices as fundamental teachings in everything we do.

Protecting personal information is critical for everyone’s privacy and safety. It’s not enough to resign ourselves to the notion that our information is already compromised. We must be proactive, continually working to prevent breaches and reinforcing trust in the companies that hold our data. By striving for excellence in security, we can create a safer, more trustworthy digital world for everyone.

Jeremy Smillie - Located in Vancouver

Early in my career, I worked for a company that produced point-of-sale (POS) systems for gas stations. I was part of the team implementing the first EMV payments at gas pumps in Canada, working with vendors such as Gilbarco and Dresser Wayne. During this period, PCI-DSS was newly established, and I conducted my first PCI-DSS audits, laying the foundation for my expertise in payment security.

From there, I joined a subcontractor for the Ministry of Transportation, where I implemented tolling systems and call centers for the now-defunct Treo, responsible for tolling the Port Mann and Golden Ears bridges. Over the years, I single-handedly implemented, ran, and maintained six data centers, gaining invaluable experience in managing and securing complex infrastructures.

After leaving Treo, I pursued security consulting contracts before joining E-xact Transactions (Canada) Ltd. as the sole security officer. In this role, I leveraged my expertise to transform the company’s security landscape from the ground up. I have made significant accomplishments throughout my career and have accumulated extensive experience in various aspects of cybersecurity.

These experiences have shaped my career path, solidifying my passion for cyber security and my commitment to protecting sensitive information. My journey has been driven by the desire to exceed security standards and foster a security culture within every organization I work with.

What My Coworkers Say

Throughout my career in the Fintech sector, I have had the privilege of working with many truly talented individuals. Each of them has left a significant mark on my professional journey, just as I have strived to leave a positive impact on theirs. Below, you will find reviews and recommendations from some of my esteemed coworkers, reflecting our shared experiences and mutual growth.

Phil Levy - CEO

Jeremy is an exceptional leader who has built, managed and evolved a world class DevSecOps program for Exact Payments. He keeps our team on the leading edge of data security, PCI compliance and sophisticated observability tooling. Jeremy has a strong passion for learning and collaborating across the team. He truly leads by example.

Phil Levy – CEO – Exact Payments

Dharsan Ramesh - Security Engineer

Jeremy is a remarkable security leader. His in-depth product knowledge, combined with his ability to lead and inspire his team, has been instrumental in fortifying our security posture.

Dharsan Ramesh – Principal Security Engineer

Alagappan Venkatachalam

Under his guidance, the DevSecOps team has excelled, ensuring that our products and infrastructure meet the highest security standards. His strategic vision and meticulous execution have been key drivers in our ability to pass rigorous security audits and maintain compliance with industry standards.

Alagappan Venkatachalam – Lead Architect & Engineer

Stay In Touch

Subscribe to my email list to stay updated with the latest blog articles, insights, and tips on cybersecurity, compliance, and more. Be the first to learn about new content and gain expert advice and industry updates. Join our community and stay informed on all things security-related!

Email
The form has been submitted successfully!
There has been some error while submitting the form. Please verify all form fields again.
Scroll to Top