Tom Jackson's Resume
Thomas (Tom) Jackson
+1.972.740.7367 [email protected]
PROFILE
Results-oriented Cybersecurity executive with a robust background in industry leadership, business development, strategic planning, and comprehensive solution delivery. Leveraging a strong engineering foundation, I excel in building and leading high-performing teams, driving program management, and executing strategic marketing and operations initiatives. I specialize in developing and nurturing client relationships to deliver tailored cybersecurity solutions across OT/ICS, IT, and IIoT environments, encompassing Cloud security, Governance, Risk, and Compliance (GRC), Risk Modeling and Analytics, and Risk Management Frameworks (RMF). Proven track record in both internal strategy development and successful external execution to achieve organizational goals and enhance security postures.
“Delivering on internal strategy development and external strategy execution”
CORE SKILLS / COMPETENCIES
EXECUTIVE LEADERSHIP / STRATEGIC INITIATIVES
PROFESSIONAL EXPERIENCE
DMI – Dallas, TX Present
Senior Principal, Industrial Control System (ICS) SME
Senior Principal ICS/OT Subject Matter Expert (SME) for the U.S. Government’s National Institute of Health (NIH) Cybersecurity Modernization Program II and FISMA Program Lead.
ACCENTURE – Dallas, TX 2020-2022
Senior Manager, Technology Security Consulting
Global Practice Lead driving resilient cybersecurity ecosystems for industrial and commercial markets.
ERNST & YOUNG, LLC – Dallas, TX 2016 – 2020
Senior Manager, Technology Consulting, OT Cyber Security
Practice leader, developing and delivering OT / IIoT cybersecurity solutions for industry.
SCHNEIDER ELECTRIC – Dallas, TX 2013 - 2016
Director, OT Cyber Security Services 2015–2016
Director, Global Cyber Security Advisory Services. Empowering top performing teams, delivering client value.
Principal Consultant, OT Cyber Security Consultant 2013-2015
Principal Consultant, Global Cyber Security Advisory Services driving client relationships as trusted advisor.
INVENSYS Control Systems – Dallas, TX 2010 - 2013
Principal Consultant, OT Cyber Security Solutions
Principal Consultant, Global Cyber Security Advisory Services delivering cross sector value based cyber security solutions.
EDUCATION
CERTIFICATIONS / ORGANIZATIONS
CYBER STANDARDS / INDUSTRY FOCUS
INDUSTRY SECTOR EMPLOYMENT
Thomas (Tom) Jackson
+1.972.740.7367 [email protected]
PROFILE
Results-oriented Cybersecurity executive with a robust background in industry leadership, business development, strategic planning, and comprehensive solution delivery. Leveraging a strong engineering foundation, I excel in building and leading high-performing teams, driving program management, and executing strategic marketing and operations initiatives. I specialize in developing and nurturing client relationships to deliver tailored cybersecurity solutions across OT/ICS, IT, and IIoT environments, encompassing Cloud security, Governance, Risk, and Compliance (GRC), Risk Modeling and Analytics, and Risk Management Frameworks (RMF). Proven track record in both internal strategy development and successful external execution to achieve organizational goals and enhance security postures.
“Delivering on internal strategy development and external strategy execution”
CORE SKILLS / COMPETENCIES
- IT, OT, IIoT, Transformation
- Risk Management Framework
- Artificial Intelligence (AI)
- Digital Convergence
- Security & Governance GRC
- Solution Development
- Cyber Resiliency
- Supply Chain Risk
- Risk Mitigation & Remediation
- Third Party Partnership
- OT / ICS Cybersecurity
- Artificial Intelligence
- RMF / Assessments
- Project Management
- Roadmap Development
EXECUTIVE LEADERSHIP / STRATEGIC INITIATIVES
- Directed and mentored multidisciplinary teams in the development and implementation of cutting-edge OT/ICS cybersecurity strategies, driving operational excellence and securing critical infrastructure across various industries.
- Engaged with C-suite executives and Boards of Directors, providing critical insights and guidance on cybersecurity risks, compliance, and resilience, which led to the adoption of robust cybersecurity frameworks and enhanced organizational security posture.
- Developed and executed "land and expand" strategies, significantly growing long-term client relationships and expanding service offerings, resulting in increased client retention and profitability.
- Led high-stakes negotiations with key stakeholders, securing favorable contract terms, pricing strategies, and service-level agreements that supported the organization's strategic goals and financial objectives.
- Championed the adoption of advanced technologies such as Artificial Intelligence (AI), Machine Learning (ML), and Zero Trust Architecture (ZTA), positioning the organization at the forefront of innovation in cybersecurity solutions.
- Transformed underperforming teams into high-performing units, fostering a culture of excellence, accountability, and continuous improvement, leading to a significant increase in project win rates and client satisfaction.
- Recognized as a Cybersecurity SME for OT/ICS, leading the development and implementation of advanced security solutions that safeguard critical infrastructure, driving compliance with industry standards such as NIST 800-82 and IEC 62443, and enhancing the cybersecurity posture across diverse industrial environments and business environments.
PROFESSIONAL EXPERIENCE
DMI – Dallas, TX Present
Senior Principal, Industrial Control System (ICS) SME
Senior Principal ICS/OT Subject Matter Expert (SME) for the U.S. Government’s National Institute of Health (NIH) Cybersecurity Modernization Program II and FISMA Program Lead.
- Manage and oversee security projects, assigning responsibilities and optimizing team performance by leveraging individual strengths.
- Lead client-facing ICS/OT/IT cybersecurity teams in Governance, Risk, and Compliance (GRC) efforts, cyber assessments, modernization strategies, cybersecurity resiliency plans, and NIST-based compliance for SSPs, ATOs, POA&M, and A&A.
- Provide strategic insights to Senior Management and Executives on performance issues and recommend improvements to security project approaches, processes, and methodologies.
- Deliver the NIH Modernization II program, focusing on architectural risk mitigation by implementing Zero Trust Architecture (ZTA) principles and Defense in Depth (DID) solutions to enhance IT and OT resiliency.
- Develop and implement NIST-based standard overlays for NIH, addressing emerging technologies such as Robotic Process Automation (RPA), Artificial Intelligence (AI), and Machine Learning (ML) within the Risk Management Framework (RMF).
- Lead and mentor cross-functional teams, providing technical guidance and fostering a culture of continuous knowledge sharing and professional development.
- Collaborate with Engineering, OT Infrastructure Services, and Application Development teams to establish and refine security standards that align with best practices and emerging threats.
- Spearhead internal and external initiatives to advance ICS/OT cybersecurity knowledge, facilitating the exchange of insights between Security and Technology teams to drive innovation and resilience.
ACCENTURE – Dallas, TX 2020-2022
Senior Manager, Technology Security Consulting
Global Practice Lead driving resilient cybersecurity ecosystems for industrial and commercial markets.
- Led client-facing OT cybersecurity teams in business development, sales, and delivery, ensuring alignment with client needs and industry standards.
- Interface directly with client executive management teams to provide cybersecurity strategies, roadmaps, and cybersecurity technology landscapes.
- Focused on OT cyber risk resiliency solutions across multiple sectors, including Oil & Gas (O&G), Transportation Security Administration (TSA), Power & Utilities (P&U), Chemicals, Food & Beverage, Real Estate (BAS/BMS), Healthcare IoMT, High-Tech Semiconductors, Telecom 5G, and Manufacturing (Factory 4.0).
- Delivered comprehensive cybersecurity compliance and risk assessments (SIG), providing clients with risk maturity evaluations, actionable prioritized findings, and detailed remediation roadmaps.
- Developed client RFPs, proposals, Statements of Work (SoW), and pricing strategies for OT cybersecurity solutions, ensuring competitive and value-driven offerings.
- Established and maintained long-term client relationships with key stakeholders through a strategic "land and expand" approach, leading to increased client retention and expanded service engagements.
- Interfaced with client executive teams, spearheading technology discussions to identify needs, translating them into technical requirements, and delivering value-based proposals and services.
ERNST & YOUNG, LLC – Dallas, TX 2016 – 2020
Senior Manager, Technology Consulting, OT Cyber Security
Practice leader, developing and delivering OT / IIoT cybersecurity solutions for industry.
- Coordinate, develop and deliver an ecosystem of cyber security solutions as a team member of a leading Big 4 consulting firm. Exceed margin goals by 5% and revenues at 10% CAGR.
- Focus on strategy roadmaps, technology innovation, and developing market presence. Exceeded margin goals by 5% and revenues at 10% CAGR.
- Organize and develop a cyber security team of diverse subject matter experts (SME) and experiences, leveraging team’s breadth and depth of knowledge to deliver excellence increasing win rate to 80%.
- Collaborate across internal business units to create a comprehensive “Playbook” of cyber security services that demonstrate the strength of the firm enabling multiyear, multi-million-dollar cyber engagements.
- Identify new opportunities in strategic growth markets. Develop strategies, market overview and technology offering.
- Research market demand, outline solutions, developed budgets, marketing collateral and go-to-market strategy. Increasing cyber market share in new markets by over 50%.
- Advise clients on enabling cyber security strategies, factoring not only cyber risks but risks as they relate to business, operations, and overall corporate resiliency increasing client cyber resiliency by 50%.
- Successfully engage client C-suite, Board of Directors and CISO on cyber assessment and audit findings.
- Deliver comprehensive cyber security compliance Audits and Risk Assessments (SIG), providing risk maturity rankings and visibility into cyber blind-spots supported with actionable findings and remediation.
- Facilitate and drive firm’s strategy of developing client relationships and developing a comprehensive cyber security message to establish EY as a leading IT/IoT/OT cyber security thought leader.
SCHNEIDER ELECTRIC – Dallas, TX 2013 - 2016
Director, OT Cyber Security Services 2015–2016
Director, Global Cyber Security Advisory Services. Empowering top performing teams, delivering client value.
- Created and delivered OT-ICS-IoT-IT solutions as part of a leading global manufacturer of industrial controls systems for industry, manufacturing, and energy which increased revenues to $350MM.
- Increased revenue growth promoting cyber life cycle; Assess, Develop, Implement and Manage.
- Negotiated client pricing and contract deliverables as well as addendums and clauses.
- Led cyber team on the development of sector specific cyber security solutions, technology, pricing, proposals, and go-to-market strategies exceeding margin goals by 10%, growing revenue at 12% CAGR.
- Delivered over 500+ cyber security projects, including security control remediation's.
- Spearheaded team budget, utilization, sales quota, margin targets, bi-weekly forecasts and pipeline revenue reporting, project finances and AOP (annual operating plan).
Principal Consultant, OT Cyber Security Consultant 2013-2015
Principal Consultant, Global Cyber Security Advisory Services driving client relationships as trusted advisor.
- Spearheaded cyber security sales strategy and oversaw execution and delivery exceeding $20MM quota.
- Managed cyber security teams from client engagement, proposal, pricing, and final delivery.
- Designed remediation network architectures and oversaw implementation of the designs.
- Oversaw the overall team’s utilization, project schedules, FP&A and invoicing.
INVENSYS Control Systems – Dallas, TX 2010 - 2013
Principal Consultant, OT Cyber Security Solutions
Principal Consultant, Global Cyber Security Advisory Services delivering cross sector value based cyber security solutions.
- Oversaw, managed and executed an aggressive marketing campaign to establish the cybersecurity team’s credibility, with both internal business and external clients.
- Commercialized first cyber turnkey solution. Access control and with industry specific rules in a box
- Created the ‘Cyber Advisor’ monthly newsletter, cyber blog, cyber solution collateral, cyber industry specific mailing campaign as well as team video and webpage presence.
- Created a streamlined proposal and pricing process through the use of automated tools, packaged solutions, and model-based pricing.
- Focused on regulatory based industries; Power (NERC), Nuclear (NEI0809), Water (AWWA), Chemical (CFATS), Oil & Gas (Best Practices, Industrial standards)
EDUCATION
- Bachelor of Electrical Engineering (BSEE), Minor Mathematics, University of South Carolina
CERTIFICATIONS / ORGANIZATIONS
- CISSP Certified Information Systems Security Professional
- ISO-27001 Certified Cyber Security Senior Lead Auditor
- AWS Certified Cloud Practitioner CLF-C01
- AZ-900 Microsoft Azure Cloud Fundamentals
- CWA Certified Wireless Administrator
- DHS - Dept of Homeland Security Chemical-terrorism Vulnerability Information Authorized User (CVI)
- InfraGard Member (in partnership with the FBI)
- ISA - Smart Manufacturing and Industrial Internet of Things division (SMIIoT)
- ISA – Building Automations Systems division (BASD)
CYBER STANDARDS / INDUSTRY FOCUS
- NIST (800-82, 800-53), NIST-CSF, IEC (62443, 61508, 61511), ISO, CIS-20, NERC, CFATS, CSET, OWASP, MITRE, NICE, ICS-CERT, FISMA, ENISA, TSA SD-02C, RMF, Zero Trust (ZTA)
- P&U, O&G TSA, Chemical, Manufacturing, Transportation, Telecom, Real Estate, Data Centers, Life Sciences / Medical IoMT, Financial, Federal Government, Smart Buildings (BAS HVAC), IIoT, Smart Factory / Industry 4.0, Cloud Security, Telecom 5G, Artificial Intelligence (AI), Machine Learning (ML), Robotic Process Automation (RPA)
INDUSTRY SECTOR EMPLOYMENT
- Consulting: DMI, Accenture, EY
- Government / Federal: DMI
- Industrial Control Systems: Schneider Electric, Invensys
- Telecom/Wireless/Datacom: Nortel, Siemens, Ericsson
- Semiconductor Hi-tech Manufacturing: Texas Instruments
- Specialty Chemicals: Ethyl Chemicals